From owner-freebsd-security@FreeBSD.ORG Tue Aug 5 07:48:38 2003 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7DDDE37B401 for ; Tue, 5 Aug 2003 07:48:38 -0700 (PDT) Received: from ns1.via-net-works.net.ar (ns1.via-net-works.net.ar [200.61.12.10]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6EEFC43F85 for ; Tue, 5 Aug 2003 07:48:36 -0700 (PDT) (envelope-from hnunez@vianetworks.com.ar) Received: from pchnunez (admin-red1.via-net-works.net.ar [200.61.12.51]) h75EmTVp000852 for ; Tue, 5 Aug 2003 11:48:30 -0300 (ART) (envelope-from hnunez@vianetworks.com.ar) From: Hernan Nunez Message-ID: <02be01c35b60$948136b0$330c3dc8@ms.vianetworks.net.ar> To: References: <53210.81.7.109.95.1060089623.squirrel@mail.impress.lt><200308051631.52531.cox@rosnet.ru> <00f701c35b57$cf704670$0900a8c0@ss> Date: Tue, 5 Aug 2003 11:48:05 -0300 MIME-Version: 1.0 Content-Type: text/plain; charset="koi8-r" Content-Transfer-Encoding: 8bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2800.1158 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165 Subject: Re: Problems with JAIL in 4.8R X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: hnunez@vianetworks.com.ar List-Id: Security issues [members-only posting] List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 05 Aug 2003 14:48:38 -0000 Try using sshd in debug mode [SSHD(8)]. Inside the jail run sshd -ddd, setting up ListenAddress jail.ip.addr in your sshd_config .,., Tip: If you are using , in your jail, an ip addr (alias address) from the same network than outside you must use a host mask 255.255.255.255 in your alias addrs.,., Hernan ----- Original Message ----- From: "stakys" To: "Konstantin M Volevatch" ; Sent: Tuesday, August 05, 2003 10:45 AM Subject: Re: Problems with JAIL in 4.8R > Didn't help. Any more suggesstions about solving this problem? > ----- Original Message ----- > From: "Konstantin M Volevatch" > To: ; > Sent: Tuesday, August 05, 2003 3:31 PM > Subject: Re: Problems with JAIL in 4.8R > > > > Try this: > > ipfw add 52 allow ip from any to me via rl0 > > > > В сообщении от 5 Август 2003 17:20 stakys@punktas.lt написал: > > > On Tue, Aug 05, 2003 at 12:56:36PM -0000, stakys@punktas.lt wrote: > > > > Hi, i've set the outside ip for the jail..It works.. When i try to ssh > to > > > > jail'ed system from the main system (in which is created jail) the > > > > connection is successful, but when i try to connect to jailed system > from > > > > anywhere else i get this message: > > > > ssh: connect to host IP_NUMBER port 22: Operation timed out > > > > What can be wrong here? How to solve this problem? > > > > > > > >>Are you running some sort of firewall on the main system? You might > > > >>have to add additional rules allowing SSH into the jailed one... > > > >> > > > >>G'luck, > > > >>Peter > > > > > > I'm running IPFW but i put such a lines to ipfw.rules to be sure that > it's > > > not firewall's fault, about connecting to jail'ed system from outside. > > > Here are the lines: > > > ipfw add 50 allow ip from any to any via lo0 > > > ipfw add 51 allow ip from any to any via rl0 > > > _______________________________________________ > > > freebsd-security@freebsd.org mailing list > > > http://lists.freebsd.org/mailman/listinfo/freebsd-security > > > To unsubscribe, send any mail to > "freebsd-security-unsubscribe@freebsd.org" > > > > -- > > Konstantin M. Volevatch > > Internet Service Division, RosNet JSC, Moscow > > (095) 7813332 [local:4341] > > > > _______________________________________________ > freebsd-security@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-security > To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org" >