From owner-freebsd-stable@freebsd.org Tue Jul 11 17:01:36 2017 Return-Path: Delivered-To: freebsd-stable@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id D13D6DA6612 for ; Tue, 11 Jul 2017 17:01:36 +0000 (UTC) (envelope-from softwareinforjam@gmail.com) Received: from mail-pf0-x230.google.com (mail-pf0-x230.google.com [IPv6:2607:f8b0:400e:c00::230]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id A38CB7C465 for ; Tue, 11 Jul 2017 17:01:36 +0000 (UTC) (envelope-from softwareinforjam@gmail.com) Received: by mail-pf0-x230.google.com with SMTP id c73so2617160pfk.2 for ; Tue, 11 Jul 2017 10:01:36 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:from:date:message-id:subject:to; bh=aAKONRu1rfnwiYYB5XRN4No2sloLlck3lfVlsj/xd5s=; b=N7z+yduxv1hq9MNzSzGLyVz/TfUw1CzIa60psqlBja+ueocfSqFMr5FTpevQGy/6tY W8md4wnxs118ttXRZsGVCOOn9E7IskRT6U4UtxSJjb8BoedcLazgaO8zyigwrRY/WgRZ vcgVLUYug6KcYKKgA3YsF8VnOa3mSGr9QSIHENJNjuSQhIUJvsy2ok9Owas0L091rWlk kHcfsc1sLkswPj2wXpF1W/N0lI4gCJB77xodU8Xy84ou+3/N3hJKaAynZy7H+RF2nQUO 6K67sXbwcSFIpPCvUW7/tO8M8F+2wYIWzkNxlRvZ0WTYpQhpwMCTs+oeTZEgr/bIrdqx h9IQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=aAKONRu1rfnwiYYB5XRN4No2sloLlck3lfVlsj/xd5s=; b=AbtrgULgUNoNrSKOpqJN7VfkGCDLj2UnRHG1CrEQBh392M8VmVoLY0OHvTn0kO5XpO h6iAw99fy69XfY/zSJefwH6cBz5jEkr5NekCW/r3D/idZ3traZIedpjXBCpG0S0UGVEg YRk7HD/72r028vSL9Tcylp1336CTRDWuy/DTzCImGyiHHtxxm9p1cFhx7XmCjrDaxgyI UQlz2Wv6lP8Lu+4ef+wv14ZVraai/VicPiFZpF7bKsFJoRS5E96SXpfTBA4oj3D9oOpq WQ0e4/rGR+L0nqxjJeei5gRYqBtlzSilSmS4xtLQz0a28ZR7qqgqqn1bfglCjbPlfBuS Dk2g== X-Gm-Message-State: AIVw113iNq7Go43S2wLRXSQwSZAvLkFhfSpsw1I7ijdzfyj/YCk6C2+3 SrSQqwmS0QLaslp/XzbgtIJeQxOZSlr/bok= X-Received: by 10.84.131.109 with SMTP id 100mr903089pld.151.1499792496048; Tue, 11 Jul 2017 10:01:36 -0700 (PDT) MIME-Version: 1.0 Received: by 10.100.170.12 with HTTP; Tue, 11 Jul 2017 10:01:35 -0700 (PDT) From: Software Information Date: Tue, 11 Jul 2017 12:01:35 -0500 Message-ID: Subject: Little issue with Jails To: freebsd-stable@freebsd.org Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.23 X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 11 Jul 2017 17:01:36 -0000 Hi All I am using FreeBSD 11 and have created a new jail using the following steps 1. make buildworld DESTDIR=/here/is/the/jail 2. make installworld DESTDIR=/here/is/the/jail 3. make distribution DESTDIR=/here/is/the/jail 4. mount -t devfs devfs /here/is/the/jail/dev I have the following in my host rc.conf jail_enable="YES" # Set to NO to disable starting of any jails jail_list="www" # Space separated list of names of jails Note: Jail names in jail_list should contain alphanumeric characters only. For each jail listed in jail_list, a group of rc.conf(5) settings, which describe the particular jail, should be added: jail_www_rootdir="/usr/jail/www" # jail's root directory jail_www_hostname="jailname.org" # jail's hostname jail_www_ip="IP_Address" # jail's IP address jail_www_devfs_enable="YES" # mount devfs in the jail On the host, I did sysctl security.jail.allow_raw_sockets=1 In /etc/jail.conf, in the config section for that jail, I entered the line *allow.raw.sockets = 1 * and I also did an *echo 'security.jail.allow_raw_sockets=1' >> /etc/sysctl.conf *inside the jail. >From what I can tell, I should be able to ping inside the jail now but it still doesn't work. Does anyone see anything I may have left out?