From owner-freebsd-questions@freebsd.org  Thu Jul 19 20:38:29 2018
Return-Path: <owner-freebsd-questions@freebsd.org>
Delivered-To: freebsd-questions@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 638A11049D2F
 for <freebsd-questions@mailman.ysv.freebsd.org>;
 Thu, 19 Jul 2018 20:38:29 +0000 (UTC)
 (envelope-from freebsd-en@lists.vlassakakis.de)
Received: from dd14614.kasserver.com (dd14614.kasserver.com [85.13.136.14])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id F3BC47ACD7
 for <freebsd-questions@freebsd.org>; Thu, 19 Jul 2018 20:38:28 +0000 (UTC)
 (envelope-from freebsd-en@lists.vlassakakis.de)
Received: from [192.168.3.57] (p5496E1D0.dip0.t-ipconnect.de [84.150.225.208])
 by dd14614.kasserver.com (Postfix) with ESMTPSA id BE5B643C17B1;
 Thu, 19 Jul 2018 22:38:27 +0200 (CEST)
Content-Type: text/plain;
	charset=utf-8
Mime-Version: 1.0 (Mac OS X Mail 11.5 \(3445.9.1\))
Subject: Re: FreeBSD-11.1 Jails and SSL
From: Philipp Vlassakakis <freebsd-en@lists.vlassakakis.de>
X-Priority: 3 (Normal)
In-Reply-To: <56bbc3069975ec09b4771e57d138de64.squirrel@webmail.harte-lyne.ca>
Date: Thu, 19 Jul 2018 22:38:27 +0200
Cc: freebsd-questions@freebsd.org
Content-Transfer-Encoding: quoted-printable
Message-Id: <39F372AB-BCCB-4A38-A351-F0F3ECCDEA21@lists.vlassakakis.de>
References: <b09a213c9018244d79763c7d65e98e1c.squirrel@webmail.harte-lyne.ca>
 <A820DA67-87FA-4638-B5D4-F87D63CB22C0@lists.vlassakakis.de>
 <56bbc3069975ec09b4771e57d138de64.squirrel@webmail.harte-lyne.ca>
To: byrnejb@harte-lyne.ca
X-Mailer: Apple Mail (2.3445.9.1)
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions/>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 19 Jul 2018 20:38:29 -0000


> Am 19.07.2018 um 22:29 schrieb James B. Byrne <byrnejb@harte-lyne.ca>:
>=20
> UseDNS=3DYES in /etc/ssh/sshd_config

Does the problem persists, if you disable this option?

Regards,
Philipp

> Am 19.07.2018 um 22:29 schrieb James B. Byrne <byrnejb@harte-lyne.ca>:
>=20
>=20
> On Thu, July 19, 2018 16:22, Philipp Vlassakakis wrote:
>> Does DNS work in the jail without any delay/issue? Maybe there are
>> problems with dns resolution?
>> Is =C3=A2=C2=80=C2=9EUseDNS=C3=A2=C2=80=C2=9C turned on? ->
>> https://www.freebsd.org/cgi/man.cgi?sshd_config(5)
>=20
> UseDNS=3DYES in /etc/ssh/sshd_config
>=20
>=20
> DNS works fine insofar as I can tell:
>=20
> # time drill mx32.harte-lyne.ca
> ;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 25300
> ;; flags: qr rd ra ; QUERY: 1, ANSWER: 1, AUTHORITY: 4, ADDITIONAL: 4
> ;; QUESTION SECTION:
> ;; mx32.harte-lyne.ca.	IN	A
>=20
> ;; ANSWER SECTION:
> mx32.harte-lyne.ca.	157365	IN	A	216.185.71.32
>=20
> ;; AUTHORITY SECTION:
> harte-lyne.ca.	70959	IN	NS	dns03.harte-lyne.ca.
> harte-lyne.ca.	70959	IN	NS	dns04.harte-lyne.ca.
> harte-lyne.ca.	70959	IN	NS	dns02.harte-lyne.ca.
> harte-lyne.ca.	70959	IN	NS	dns01.harte-lyne.ca.
>=20
> ;; ADDITIONAL SECTION:
> dns01.harte-lyne.ca.	157359	IN	A	216.185.71.33
> dns02.harte-lyne.ca.	157359	IN	A	209.47.176.33
> dns03.harte-lyne.ca.	157359	IN	A	216.185.71.34
> dns04.harte-lyne.ca.	157359	IN	A	209.47.176.34
>=20
> ;; Query time: 0 msec
> ;; SERVER: 127.0.0.1
> ;; WHEN: Thu Jul 19 16:27:47 2018
> ;; MSG SIZE  rcvd: 196
>=20
> real	0m0.006s
> user	0m0.000s
> sys	0m0.005s
>=20
> No delay there.
>=20
> --=20
> ***          e-Mail is NOT a SECURE channel          ***
>        Do NOT transmit sensitive data via e-Mail
> Do NOT open attachments nor follow links sent by e-Mail
>=20
> James B. Byrne                mailto:ByrneJB@Harte-Lyne.ca
> Harte & Lyne Limited          http://www.harte-lyne.ca
> 9 Brockley Drive              vox: +1 905 561 1241
> Hamilton, Ontario             fax: +1 905 561 0757
> Canada  L8E 3C3