From owner-freebsd-questions@freebsd.org Thu Jul 19 20:30:17 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 3B381104975A for ; Thu, 19 Jul 2018 20:30:17 +0000 (UTC) (envelope-from byrnejb@harte-lyne.ca) Received: from mx32.harte-lyne.ca (mx32.harte-lyne.ca [216.185.71.32]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mx32.harte-lyne.ca", Issuer "CA_HLL_ISSUER_2016" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id D78037A48B for ; Thu, 19 Jul 2018 20:30:16 +0000 (UTC) (envelope-from byrnejb@harte-lyne.ca) Received: from mx32.harte-lyne.ca (unknown [127.0.32.1]) by mx32.harte-lyne.ca (Postfix) with ESMTP id 19B2416253; Thu, 19 Jul 2018 16:29:46 -0400 (EDT) X-Virus-Scanned: amavisd-new at harte-lyne.ca Received: from mx32.harte-lyne.ca ([127.0.32.1]) by mx32.harte-lyne.ca (mx32.harte-lyne.ca [127.0.32.1]) (amavisd-new, port 10024) with ESMTP id v3zl7cBobzRu; Thu, 19 Jul 2018 16:29:25 -0400 (EDT) Received: from webmail.harte-lyne.ca (inet04.hamilton.harte-lyne.ca [216.185.71.24]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mx32.harte-lyne.ca (Postfix) with ESMTPSA id 15F7116248; Thu, 19 Jul 2018 16:29:25 -0400 (EDT) Received: from 216.185.71.44 (SquirrelMail authenticated user byrnejb_hll) by webmail.harte-lyne.ca with HTTP; Thu, 19 Jul 2018 16:29:25 -0400 Message-ID: <56bbc3069975ec09b4771e57d138de64.squirrel@webmail.harte-lyne.ca> In-Reply-To: References: Date: Thu, 19 Jul 2018 16:29:25 -0400 Subject: Re: FreeBSD-11.1 Jails and SSL From: "James B. Byrne" To: "Philipp Vlassakakis" Cc: freebsd-questions@freebsd.org Reply-To: byrnejb@harte-lyne.ca User-Agent: SquirrelMail/1.4.22-5.el6 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.27 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 19 Jul 2018 20:30:17 -0000 On Thu, July 19, 2018 16:22, Philipp Vlassakakis wrote: > Does DNS work in the jail without any delay/issue? Maybe there are > problems with dns resolution? > Is „UseDNS“ turned on? -> > https://www.freebsd.org/cgi/man.cgi?sshd_config(5) UseDNS=YES in /etc/ssh/sshd_config DNS works fine insofar as I can tell: # time drill mx32.harte-lyne.ca ;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 25300 ;; flags: qr rd ra ; QUERY: 1, ANSWER: 1, AUTHORITY: 4, ADDITIONAL: 4 ;; QUESTION SECTION: ;; mx32.harte-lyne.ca. IN A ;; ANSWER SECTION: mx32.harte-lyne.ca. 157365 IN A 216.185.71.32 ;; AUTHORITY SECTION: harte-lyne.ca. 70959 IN NS dns03.harte-lyne.ca. harte-lyne.ca. 70959 IN NS dns04.harte-lyne.ca. harte-lyne.ca. 70959 IN NS dns02.harte-lyne.ca. harte-lyne.ca. 70959 IN NS dns01.harte-lyne.ca. ;; ADDITIONAL SECTION: dns01.harte-lyne.ca. 157359 IN A 216.185.71.33 dns02.harte-lyne.ca. 157359 IN A 209.47.176.33 dns03.harte-lyne.ca. 157359 IN A 216.185.71.34 dns04.harte-lyne.ca. 157359 IN A 209.47.176.34 ;; Query time: 0 msec ;; SERVER: 127.0.0.1 ;; WHEN: Thu Jul 19 16:27:47 2018 ;; MSG SIZE rcvd: 196 real 0m0.006s user 0m0.000s sys 0m0.005s No delay there. -- *** e-Mail is NOT a SECURE channel *** Do NOT transmit sensitive data via e-Mail Do NOT open attachments nor follow links sent by e-Mail James B. Byrne mailto:ByrneJB@Harte-Lyne.ca Harte & Lyne Limited http://www.harte-lyne.ca 9 Brockley Drive vox: +1 905 561 1241 Hamilton, Ontario fax: +1 905 561 0757 Canada L8E 3C3