From owner-freebsd-jail@FreeBSD.ORG Thu Oct 2 14:45:59 2014 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id B73B1C1A for ; Thu, 2 Oct 2014 14:45:59 +0000 (UTC) Received: from mx1.scaleengine.net (beauharnois2.bhs1.scaleengine.net [142.4.218.15]) by mx1.freebsd.org (Postfix) with ESMTP id 91786CF7 for ; Thu, 2 Oct 2014 14:45:59 +0000 (UTC) Received: from [192.168.1.2] (Seawolf.HML3.ScaleEngine.net [209.51.186.28]) (Authenticated sender: allanjude.freebsd@scaleengine.com) by mx1.scaleengine.net (Postfix) with ESMTPSA id E90DA5813D for ; Thu, 2 Oct 2014 14:45:57 +0000 (UTC) Message-ID: <542D6539.4020904@freebsd.org> Date: Thu, 02 Oct 2014 10:46:17 -0400 From: Allan Jude User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:31.0) Gecko/20100101 Thunderbird/31.1.2 MIME-Version: 1.0 To: freebsd-jail@freebsd.org Subject: Re: no network connection from inside a jail References: <20141002180506.4965760b@X220.alogt.com> In-Reply-To: <20141002180506.4965760b@X220.alogt.com> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="TSTpHgLbk08LJVQtK31RDkR0iE1B3knBr" X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 02 Oct 2014 14:45:59 -0000 This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --TSTpHgLbk08LJVQtK31RDkR0iE1B3knBr Content-Type: text/plain; charset=windows-1252 Content-Transfer-Encoding: quoted-printable On 2014-10-02 06:05, Erich Dollansky wrote: > Hi, >=20 > I recently upgraded to 10.1 BETA3 via sources. All seemed to be fine > until I started jails which connect to the Internet. It simply does not= > work anymore. When the browser from the jail connects to another jail > on the same machine via HTTP, it all works. Accesses to the ouside of > the machine fails. >=20 > Even a ping to a local device does not work. >=20 > ping 192.168.yyy.xxx > ping: socket: Operation not permitted >=20 > despite having >=20 > security.jail.allow_raw_sockets: 1 >=20 > Just to make sure, I upgraded also the world in all jails without any > difference. >=20 > UPDATING did not mention any changes since BETA1. >=20 > I feel a bit lost now. >=20 > What could have caused the problems? >=20 > Erich > _______________________________________________ > freebsd-jail@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-jail > To unsubscribe, send any mail to "freebsd-jail-unsubscribe@freebsd.org"= >=20 Isn't allow_raw_sockets a per-jail setting via the new jail.conf system n= ow? When you upgraded to 10.1 was it from 9? --=20 Allan Jude --TSTpHgLbk08LJVQtK31RDkR0iE1B3knBr Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.22 (MingW32) iQIcBAEBAgAGBQJULWU7AAoJEJrBFpNRJZKfJJwP/i3/uxE0CU/0P6X1wdmISbew 8GyCOwEqbUbs6ap8trmHpce4u7IeHxmH14lS/y2U3KzsZmMbfBqc9ySLij0tMm5y TjUpGEdqcVmWVBFKF8DJ4oue/VZwyhFV/1MXLUleOim+xiQ+6NuhzG8jHUHTJz7Z zeR1IvBS6S08yOxB7cPgNjgiPiMTKpeMJJAsFkCRYffzwYVs4imCV6T2OttJnrL9 vAej+u7oqEqlGNWis0kf5jk3qS2/q3NEmIA/JEJzadK3wkcBeobLsQqkwXEtza5a STZmuTpZ/NvawjbaAyjYwz7Ys1St09hvyHQWUpx+8Xf98Q4UQIXL5q0m0ndNxG5r RQuxvKBHFkDS1SCYsXrqnbH59LspTF+fIzNZ8TVPJe7BGnRyb5PECqIo+clhXqVy thAK88/32NDUDf69qJGYwizlSRrqygefeGiSVqtnNfv0X0I2a7+MlpJfc9rtYpK+ sfzYvcaldHwTcV+RzF+i0MITp78vjcyqI997O0hIizbCiMortzMBbMfG5xzeEbWx 5JFO/qlO7POAEALNy3M79RDptXJRqEProoKzTPIvsAthAroYMNVKIp/Efa0O5vbL ns8x9mJEsQhWOFZAcLRx8rebOzImlBF4PXMw7OeT4s4Nl3lvAtX6hDc/ZcwzHg8l DPlGqKu2SIM6UG7VoENI =rSkg -----END PGP SIGNATURE----- --TSTpHgLbk08LJVQtK31RDkR0iE1B3knBr--