From owner-freebsd-stable@freebsd.org Wed Oct 7 14:15:37 2015 Return-Path: Delivered-To: freebsd-stable@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 8512A9D0EE7 for ; Wed, 7 Oct 2015 14:15:37 +0000 (UTC) (envelope-from marko.cupac@mimar.rs) Received: from smtp.mimar.rs (smtp.mimar.rs [193.53.106.135]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 3A6EB8C4 for ; Wed, 7 Oct 2015 14:15:36 +0000 (UTC) (envelope-from marko.cupac@mimar.rs) Received: from vscan.mimar.rs (vscan.mimar.rs [193.53.106.134]) by smtp.mimar.rs (Postfix) with ESMTP id 8C8CE89AB8 for ; Wed, 7 Oct 2015 16:15:27 +0200 (CEST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=mimar.rs; h= content-transfer-encoding:content-type:content-type:mime-version :x-mailer:organization:message-id:subject:subject:from:from:date :date:received:received; s=mimar-0901; t=1444227326; x= 1446041727; bh=7hTXvpsax588B1k6BYLBrg01V6rNoMBjGZEFWqiIiZ8=; b=C sbXjS7t9jJwrXQLoz8+cqcJZTou6h0OMmc8uMz7tTVUGJogEJyaaa6KkK6HtaLCG b9/IN29xYRqOFhEKXp18z2pfVHPEoDs6ikLQ4wTzdCiP+3Tu4Mc4e6QF73xecyfp 6bKu0CW+ICtaNAYLFfaanJLYbsuHFrEN91cqBxubqA= X-Virus-Scanned: amavisd-new at mimar.rs Received: from smtp.mimar.rs ([193.53.106.135]) by vscan.mimar.rs (vscan.mimar.rs [193.53.106.134]) (amavisd-new, port 10026) with ESMTP id xBTLbcrsV-ZX for ; Wed, 7 Oct 2015 16:15:26 +0200 (CEST) Received: from efreet.kappastar.com (nat-nat.kappastar.com [193.53.106.34]) (using TLSv1.2 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) (Authenticated sender: marko.cupac@mimar.rs) by smtp.mimar.rs (Postfix) with ESMTPSA id 74271898D7 for ; Wed, 7 Oct 2015 16:15:26 +0200 (CEST) Date: Wed, 7 Oct 2015 16:15:25 +0200 From: Marko =?UTF-8?B?Q3VwYcSH?= To: freebsd-stable@freebsd.org Subject: bind host service to jail ip? Message-ID: <20151007161525.1beca1eb@efreet.kappastar.com> Organization: mimar X-Mailer: Claws Mail 3.9.3 (GTK+ 2.24.23; x86_64-pc-linux-gnu) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 07 Oct 2015 14:15:37 -0000 Hi, I am moving some hosts from physical to jail environment. I have dozens of hosts on local lan syncing time with two ntp servers which also happen to be dns servers. Changing IPs of those hosts would be major PITA. If I run openntpd in jail, I get messages such as: Oct 7 16:05:37 ns1 ntpd[43188]: adjtime failed: Operation not permitted Oct 7 16:05:37 ns1 ntpd[43188]: ntp_adjtime (3) failed: Operation not perm= itted I know jails sync time with host, and are not allowed to adjust time. However, I'd like to serve ntp clients from these addresses. So my 2 questions are: - Does openntpd serve (correct) local time from jail even though it can't adjust local time? - If I ran openntpd in host and bound it to jails' ip addresses, would clients be able to sync? If so, are there any negative implications to this? Thank you in advance, --=20 Before enlightenment - chop wood, draw water. After enlightenment - chop wood, draw water. Marko Cupa=C4=87 https://www.mimar.rs/