From owner-freebsd-questions@FreeBSD.ORG Fri Mar 23 12:49:15 2007 Return-Path: <owner-freebsd-questions@FreeBSD.ORG> X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 0E67E16A402 for <freebsd-questions@freebsd.org>; Fri, 23 Mar 2007 12:49:15 +0000 (UTC) (envelope-from karol.kwiat@gmail.com) Received: from nf-out-0910.google.com (nf-out-0910.google.com [64.233.182.191]) by mx1.freebsd.org (Postfix) with ESMTP id 90BEA13C457 for <freebsd-questions@freebsd.org>; Fri, 23 Mar 2007 12:49:14 +0000 (UTC) (envelope-from karol.kwiat@gmail.com) Received: by nf-out-0910.google.com with SMTP id k27so1830798nfc for <freebsd-questions@freebsd.org>; Fri, 23 Mar 2007 05:49:13 -0700 (PDT) DKIM-Signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:reply-to:user-agent:mime-version:to:cc:subject:references:in-reply-to:x-enigmail-version:openpgp:content-type; b=lRuRDFp2cgm1DB7MthLx8ywa3j2WwWCREe/YUZ/si0IWz5D/yQdcTzsSXNWRFMB36w7yuqJ5CQKI1cu4oTej7rNHb876xpy+ffIltao+rkrscgq/ykoZKfb6o99pwkSrnx9OOMD5as8wrOhhl9CxLwAaKOZNmEtcEppZiiurmyg= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:reply-to:user-agent:mime-version:to:cc:subject:references:in-reply-to:x-enigmail-version:openpgp:content-type; b=m0+H53SmhAQvVP11jJsBLS9NQ2cRIBKEqRyYrsczV8/H6zj6+ocyHJDHBF9JQeYAhQrSm2H9wMjW23bjUfxI3unn0rTDi0+S07k6Q62ZLi4Y3zBOCHTihkKGVurdoXe/lKXWP5bOZOZyJ68PImtBjw9NRmZLcCEH526XJXfRxRc= Received: by 10.78.151.3 with SMTP id y3mr1548473hud.1174654152572; Fri, 23 Mar 2007 05:49:12 -0700 (PDT) Received: from persephone.orchid.homeunix.org ( [84.10.174.25]) by mx.google.com with ESMTP id a24sm11482225nfc.2007.03.23.05.49.12; Fri, 23 Mar 2007 05:49:12 -0700 (PDT) Message-ID: <4603CCC8.3000702@gmail.com> Date: Fri, 23 Mar 2007 13:49:12 +0100 From: Karol Kwiatkowski <karol.kwiat@gmail.com> User-Agent: Thunderbird 2.0b2 (X11/20070306) MIME-Version: 1.0 To: Robin Becker <robin@reportlab.com> References: <4603C8EF.1020104@chamonix.reportlab.co.uk> In-Reply-To: <4603C8EF.1020104@chamonix.reportlab.co.uk> X-Enigmail-Version: 0.94.3.0 OpenPGP: id=06E09309; url=http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="------------enig76C1798DD8A29BA2D60566E7" Cc: freebsd-questions@freebsd.org Subject: Re: ezjail ip conflicts X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: karol.kwiat@gmail.com List-Id: User questions <freebsd-questions.freebsd.org> List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, <mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe> List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions> List-Post: <mailto:freebsd-questions@freebsd.org> List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help> List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, <mailto:freebsd-questions-request@freebsd.org?subject=subscribe> X-List-Received-Date: Fri, 23 Mar 2007 12:49:15 -0000 This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --------------enig76C1798DD8A29BA2D60566E7 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Robin Becker wrote: > I'm getting these ip conflicts whilst trying to create a jail >=20 > ezjail-admin create ....xxx.xxx.xxx.27 >=20 > Warning: IP xxx.xxx.xxx.27 not configured on a local interface. > Warning: Some services already seem to be listening on all IP, > (including xxx.xxx.xxx.27) > This may cause some confusion, here they are: > mysql mysqld 505 10 tcp4 *:3306 *:* > root syslogd 291 6 udp4 *:514 *:* >=20 >=20 > my rc.conf has >=20 > ifconfig_fxp0=3D"inet xxx.xxx.xxx.26 netmask 255.255.255.248" > defaultrouter=3D"xxx.xxx.xxx.25" > inetd_flags=3D"-wW -a xxx.xxx.xxx.26" >=20 >=20 > so I believe the xxx.xxx.xxx.27 address is OK, but I guess I need to > make mysqld and syslogd listen only on xxx.xxx.xxx.26. I don't actually= > understand what's preventing sshd from listening on all the addresses i= n > range unless it's the inetd flags, but I thought sshd is started by ini= t > nowadays. If you're using sshd as a daemon have a look at "ListenAddress" directive in /etc/ssh/sshd_config. You can have multiple of those. > Anyhow I think I can fix the mysqld problem by having >=20 > mysql_args=3D"--bind-address=3Dxxx.xxx.xxx.26" >=20 > in the rc.conf, but I don't see any easy way to configure syslogd to > start with a -b xxx.xxx.xxx.26 How about adding 'syslogd_flags' in /etc/rc.conf? Those are the defaults:= # grep syslogd /etc/defaults/rc.conf syslogd_enable=3D"YES" # Run syslog daemon (or NO). syslogd_program=3D"/usr/sbin/syslogd" # path to syslogd syslogd_flags=3D"-s" # Flags to syslogd (if enabled). Also, if you don't need it to bind at all it's better to use '-ss'. > how do I fix this or perhaps I don't need to? You could filter traffic at firewall but it's always better to have a simpler setup. HTH, Karol --=20 Karol Kwiatkowski <karol.kwiat at gmail dot com> OpenPGP 0x06E09309 --------------enig76C1798DD8A29BA2D60566E7 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (FreeBSD) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFGA8zPezeoPAwGIYsRCBIJAKCJGv+2ryML5bB3/hAHH+7j8L/B6ACgjJf3 tJi1AJLV9I5n4tDGey+l0R8= =TsCw -----END PGP SIGNATURE----- --------------enig76C1798DD8A29BA2D60566E7--