Date: Wed, 4 Dec 2002 11:23:47 -0500 From: "Jeff MacDonald" <jeff@interchange.ca> To: "Dan Pelleg" <daniel+bsd@pelleg.org> Cc: <freebsd-questions@FreeBSD.ORG> Subject: RE: Another Jail Question Message-ID: <HJEPJELDKPJEEIIFNLNHCECACBAA.jeff@interchange.ca> In-Reply-To: <u2sadjl4vji.fsf@gs166.sp.cs.cmu.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi, I run proftpd which aready allows jailed processes in a matter of speaking that is, it chroots particular users. but i have a spare sparc laying here, that is gonna do nat just fine, so i might as well use it as a dedicated firewall as well. jeff. > -----Original Message----- > From: dpelleg@gs166.sp.cs.cmu.edu [mailto:dpelleg@gs166.sp.cs.cmu.edu]On > Behalf Of Dan Pelleg > Sent: Wednesday, December 04, 2002 11:08 AM > To: Jeff MacDonald > Cc: freebsd-questions@FreeBSD.ORG > Subject: Re: Another Jail Question > > > "Jeff MacDonald" <jeff@interchange.ca> writes: > > > Hi, > > > > I have been thinking about running 2 jails on my home server > > one for "work sensitive" data, the other for personal fun stuff. > > > > However i only have 1 ip at my house [static]. > > > > Could i take the server taht will have jails on it, put it behind > > a natd box so it has 2 ip's [192.168.0.1 and .2] and just make > > the nat box, forward packets to teh appropriate jail based upon > > what port they come in on ? > > > > Yes, and you don't even need a separate box to do NAT - the jail host can > do it by itself. Here's a how-to for a jailed FTP process configured like > this: > > http://ezine.daemonnews.org/200212/ftpjail.html > > -- > > Dan Pelleg > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?HJEPJELDKPJEEIIFNLNHCECACBAA.jeff>