Date: Wed, 17 May 2023 15:58:42 +0000 (UTC) From: Paul Pathiakis <pathiaki2@yahoo.com> To: Odhiambo Washington <odhiambo@gmail.com>, Dale Scott <dalescott@shaw.ca> Cc: Matthias Fechner <idefix@fechner.net>, FreeBSD Questions <freebsd-questions@freebsd.org>, Steven Friedrich <freebsdlouisville@gmail.com> Subject: Re: State of virtualization on FreeBSD Message-ID: <1465595584.3498118.1684339122635@mail.yahoo.com> In-Reply-To: <b7d9700a-1821-45b0-8508-fe64404d8fe3@email.android.com> References: <CAAdA2WMxctaG6OSX77iVf2HDZQ48p=HZjCoJJea=76uU3iD0DQ@mail.gmail.com> <b7d9700a-1821-45b0-8508-fe64404d8fe3@email.android.com>
next in thread | previous in thread | raw e-mail | index | archive | help
------=_Part_3498117_1104944039.1684339122634 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable If you set up pf correctly, you can redirect any traffic to any virtual IP= .=C2=A0 However, you may need to redirect the ports to get to the correct m= achine. I used to have about 10 jails setup for things like DNS, Apache, mail, etc.= =C2=A0 Incoming and outgoing went across the usual ports... however, after = entering the GW, it would redirect to the correct machine onto, sometimes, = a different port. Paul On Wednesday, May 17, 2023 at 07:40:17 AM PDT, Dale Scott <dalescott@sh= aw.ca> wrote: =20 =20 =20 I also just encountered iocage today. Going to compare. Is it possible to make VMs/Jails externally/publicly accessible when you ha= ve only 1 public IP address? I don't know about jails, but vm's may require configuring a virtual networ= k, a DHCP server and a firewall with NAT rules if you only have one public = IP address. This will be required with a bhyve vm, but it built-in with vir= tualbox-ose. If you used an external NAT router, you could configure the guest vm to bri= dge the host Ethernet interface (the default for bhyve), which would allow = both the host and guest vm to access the internet, but only one would be re= achable from the internet (by configuring the "pass-thru" feature on the NA= T router). =20 ------=_Part_3498117_1104944039.1684339122634 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: 7bit <html><head></head><body><div class="ydp4000e836yahoo-style-wrap" style="font-family:Helvetica Neue, Helvetica, Arial, sans-serif;font-size:13px;"><div></div> <div dir="ltr" data-setdir="false">If you set up pf correctly, you can redirect any traffic to any virtual IP. However, you may need to redirect the ports to get to the correct machine.</div><div dir="ltr" data-setdir="false"><br></div><div dir="ltr" data-setdir="false">I used to have about 10 jails setup for things like DNS, Apache, mail, etc. Incoming and outgoing went across the usual ports... however, after entering the GW, it would redirect to the correct machine onto, sometimes, a different port.</div><div dir="ltr" data-setdir="false"><br></div><div dir="ltr" data-setdir="false">Paul</div><div><br></div> </div><div id="ydp5608dd41yahoo_quoted_4949983209" class="ydp5608dd41yahoo_quoted"> <div style="font-family:'Helvetica Neue', Helvetica, Arial, sans-serif;font-size:13px;color:#26282a;"> <div> On Wednesday, May 17, 2023 at 07:40:17 AM PDT, Dale Scott <dalescott@shaw.ca> wrote: </div> <div><br></div> <div><br></div> <div><div id="ydp5608dd41yiv6558837906"><div><div><div><div class="ydp5608dd41yiv6558837906gmail_extra"><div class="ydp5608dd41yiv6558837906gmail_quote"><blockquote style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;" class="ydp5608dd41yiv6558837906quote"><div id="ydp5608dd41yiv6558837906yqtfd30115" class="ydp5608dd41yiv6558837906yqt2993727782"><div dir="ltr"><div>I also just encountered iocage today. Going to compare.<br clear="none"></div><div>Is it possible to make VMs/Jails externally/publicly accessible when you have only 1 public IP address?</div></div></div> </blockquote></div><br clear="none"></div><div class="ydp5608dd41yiv6558837906gmail_extra">I don't know about jails, but vm's may require configuring a virtual network, a DHCP server and a firewall with NAT rules if you only have one public IP address. This will be required with a bhyve vm, but it built-in with virtualbox-ose.</div><div class="ydp5608dd41yiv6558837906gmail_extra"><br clear="none"></div><div class="ydp5608dd41yiv6558837906gmail_extra">If you used an external NAT router, you could configure the guest vm to bridge the host Ethernet interface (the default for bhyve), which would allow both the host and guest vm to access the internet, but only one would be reachable from the internet (by configuring the "pass-thru" feature on the NAT router).</div><div id="ydp5608dd41yiv6558837906yqtfd58059" class="ydp5608dd41yiv6558837906yqt2993727782"><div class="ydp5608dd41yiv6558837906gmail_extra"><br clear="none"></div></div></div></div></div></div></div> </div> </div></body></html> ------=_Part_3498117_1104944039.1684339122634--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1465595584.3498118.1684339122635>