From owner-freebsd-questions@FreeBSD.ORG Thu Sep 29 00:05:10 2005 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4819016A421 for ; Thu, 29 Sep 2005 00:05:10 +0000 (GMT) (envelope-from tsuraan@gmail.com) Received: from qproxy.gmail.com (qproxy.gmail.com [72.14.204.203]) by mx1.FreeBSD.org (Postfix) with ESMTP id BCB0643D49 for ; Thu, 29 Sep 2005 00:05:09 +0000 (GMT) (envelope-from tsuraan@gmail.com) Received: by qproxy.gmail.com with SMTP id a39so218096qbd for ; Wed, 28 Sep 2005 17:05:07 -0700 (PDT) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:reply-to:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=kVc5TVUoEKkHG62TCAks+lIkog70x0j0jdITVeJHFSJJT/bkWeVdj89mJQY7cba0lOrp5qAS8fMrOay7M4v3oZRqDyr5gHvFSlH5zuUCdbiKMBbeVXVKOFIo3C0E6xAer6xlv02OtoQRTNX7leKqMk4n07/bVB3/uR4I1f0A3Mw= Received: by 10.65.98.20 with SMTP id a20mr36337qbm; Wed, 28 Sep 2005 16:08:10 -0700 (PDT) Received: by 10.65.135.12 with HTTP; Wed, 28 Sep 2005 16:08:10 -0700 (PDT) Message-ID: <84fb38e305092816084fdb6667@mail.gmail.com> Date: Wed, 28 Sep 2005 18:08:10 -0500 From: tsuraan To: freebsd-questions@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline Subject: strange routing (?) issues with a jail X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: tsuraan List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 29 Sep 2005 00:05:10 -0000 I have a freebsd 5.3 machine, with a jailed off machine running in it. Let's call them host and slave (they have seperate IP addresses and hostnames). Within the slave, I have sshd and apache running. In the host, I just have sshd running. From within the slave machine, I can connect to localhost ports 80 and 22, with the expected results. From within the host machine, I can connect to the slave's ports 80 and 22 correctly as well. From outside that machine, I can only connect to port 22 on the slave. Attempts to connect to port 80 on the slave time out. The slave is running apache version 1.33+modssl from ports. I have it configured with a basic vhosting setup, and it seems to work perfectly from within the physical machine the jail is running on. Pf is totally disabled, and it's a fresh install with no strange services running or unnecessary packages installed. Can anyone give a hint as to why someone external would be unable to connect to port 80, but able to connect to port 22?