From owner-freebsd-stable@FreeBSD.ORG Wed Oct 26 07:53:14 2011 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id F1892106564A for ; Wed, 26 Oct 2011 07:53:14 +0000 (UTC) (envelope-from carlopmart@gmail.com) Received: from mail-wy0-f182.google.com (mail-wy0-f182.google.com [74.125.82.182]) by mx1.freebsd.org (Postfix) with ESMTP id 85C378FC12 for ; Wed, 26 Oct 2011 07:53:14 +0000 (UTC) Received: by wyi40 with SMTP id 40so1776659wyi.13 for ; Wed, 26 Oct 2011 00:53:13 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:content-type:content-transfer-encoding; bh=1fwwuC/NJxmhbJgW8XzOypyhJPp8QrWRFFlt0gRXBoI=; b=sJJN+9SGux2sU+MvavxkNdqhNBdGLkPuBA2ivcmTHkiaBAByWHBxWmROEAxq5Nq4lX y21r4BBYgtLBG7TZyiPnWsciv3d49msvZdG0hl8dzA2lJQ7nBcMjW0rDVOS0682iP4cC uWc5aUVYJ+tC1ozPJlVYVeIKeNiu1sv4K6QH0= Received: by 10.216.82.136 with SMTP id o8mr9648104wee.31.1319615593465; Wed, 26 Oct 2011 00:53:13 -0700 (PDT) Received: from silmaril.hpulabs.org (46.Red-88-24-104.staticIP.rima-tde.net. [88.24.104.46]) by mx.google.com with ESMTPS id eu16sm1555262wbb.7.2011.10.26.00.53.11 (version=SSLv3 cipher=OTHER); Wed, 26 Oct 2011 00:53:12 -0700 (PDT) Message-ID: <4EA7BC66.3090304@gmail.com> Date: Wed, 26 Oct 2011 09:53:10 +0200 From: carlopmart User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.2.23) Gecko/20110929 Red Hat/3.1.15-1.el6_1 Lightning/1.0b2 Thunderbird/3.1.15 MIME-Version: 1.0 To: freebsd-stable@freebsd.org References: <4EA721A7.8050905@gmail.com> <20111026031202.2a8780f9@davenulle.org> In-Reply-To: <20111026031202.2a8780f9@davenulle.org> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit Subject: Re: Some questions about jails on FreeBSD9.0-RC1 X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 26 Oct 2011 07:53:15 -0000 On 10/26/2011 03:12 AM, Patrick Lamaiziere wrote: > Le Tue, 25 Oct 2011 22:52:55 +0200, > carlopmart a écrit : > > Hello, > >> I have installed one FreeBSD 9.0-RC1 host to run different services >> (dns, smtp and www only) using jails. This host has two physical >> nics: em0 and em1. em0 is assigned to pyhiscal host, and I would like >> to assign em1 to jails. But em0 and em1 are on different networks: >> em0 is on 192.168.1.0/24 and em1 in 192.168.2.0/29. >> >> I have setup one jail using ezjail. My first surprise is that >> ezjail only installs -RELEASE versions and not RC versions. Ok, I >> supouse that it is normal. But my first question is: can I install a >> FreeBSD 8.2 jail under a FreeBSD 9.0 host?? > > You may run 8.2 installed ports on 9.0 by using the port > /usr/ports/misc/compat8x/ > > But I suggest to upgrade the port ASAP. > >> And the real question: How do I need to configure network under >> this jail to access it? I have configured ifconfig param for em1 on >> host's rc.conf, but what about the default route under this jail?? I >> thought to use pf rules, but I am not sure. > > jail enforces the use of the jail IP address in the jail, but that's > all. Just enable routing on the host. > But, that is not possible. Between host and jail exists a firewall ... I can't do simple routing with the host. Maybe a posible solution is to use policy source routing ?? -- CL Martinez carlopmart {at} gmail {d0t} com