From owner-freebsd-questions@FreeBSD.ORG Wed Mar 6 01:03:37 2013 Return-Path: Delivered-To: questions@freebsd.org Received: from mx1.freebsd.org (mx1.FreeBSD.org [8.8.178.115]) by hub.freebsd.org (Postfix) with ESMTP id 74F724E2 for ; Wed, 6 Mar 2013 01:03:37 +0000 (UTC) (envelope-from fbsd8@a1poweruser.com) Received: from mail-03.name-services.com (mail-03.name-services.com [69.64.155.195]) by mx1.freebsd.org (Postfix) with ESMTP id 61E09844 for ; Wed, 6 Mar 2013 01:03:37 +0000 (UTC) Received: from [10.0.10.1] ([173.88.202.176]) by mail-03.name-services.com with Microsoft SMTPSVC(6.0.3790.4675); Tue, 5 Mar 2013 17:03:37 -0800 Message-ID: <513695E7.8090201@a1poweruser.com> Date: Tue, 05 Mar 2013 20:03:35 -0500 From: Fbsd8 User-Agent: Thunderbird 2.0.0.17 (Windows/20080914) MIME-Version: 1.0 To: Matthias Petermann Subject: Re: Jailed process listening to broadcast address of host system - possible? References: <20130305184202.Horde.eDUXhBWXINRGxbZx4ZcRCQ2@d2ux.org> In-Reply-To: <20130305184202.Horde.eDUXhBWXINRGxbZx4ZcRCQ2@d2ux.org> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-OriginalArrivalTime: 06 Mar 2013 01:03:37.0907 (UTC) FILETIME=[6F426030:01CE1A06] X-Sender: fbsd8@a1poweruser.com X-Authenticated-Sender: fbsd8@a1poweruser.com X-EchoSenderHash: [fbsd8]-[a1poweruser*com] Cc: "questions@freebsd.org" X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 06 Mar 2013 01:03:37 -0000 Matthias Petermann wrote: > > Hello, > > is there any way to listen to a networks broadcast adress from within a > Jail? > > Given ist the following setup: > > * The host (IP 192.168.2.127) > * The jail (same IP as host, 192.168.2.127) > > When I do: > > $ nc -l 192.168.2.255 9999 > > I got the following results: > > root@host # nc -l 192.168.2.255 9999 > > > root@jail # nc -l 192.168.2.255 9999 > nc: Can't assign requested address > > The latter is the problem. I already sat security.jail.allow_raw_sockets=1 > and now not sure if I am trying to do something which is not allowed by > design? > > Thanks in advance, > Matthias > > > > # Additional Information: > > ## ifconfig (host): > > root@host # ifconfig -a > em0: flags=8843 metric 0 mtu 1500 > options=9b > ether 08:00:27:b3:64:f2 > inet 192.168.2.127 netmask 0xffffff00 broadcast 192.168.2.255 > nd6 options=29 > media: Ethernet autoselect (1000baseT ) > status: active > lo0: flags=8049 metric 0 mtu 16384 > options=600003 > inet6 ::1 prefixlen 128 > inet6 fe80::1%lo0 prefixlen 64 scopeid 0x3 > inet 127.0.0.1 netmask 0xff000000 > inet 10.0.0.1 netmask 0xffffffff > inet 10.0.0.2 netmask 0xffffffff > inet 10.0.0.3 netmask 0xffffffff > inet 10.0.0.4 netmask 0xffffffff > inet 10.0.0.5 netmask 0xffffffff > nd6 options=21 > pflog0: flags=141 metric 0 mtu 33152 > nd6 options=21 > > ## ifconfig (jail): > > root@jail # ifconfig -a > em0: flags=8843 metric 0 mtu 1500 > options=9b > ether 08:00:27:b3:64:f2 > inet 192.168.2.127 netmask 0xffffff00 broadcast 192.168.2.255 > media: Ethernet autoselect (1000baseT ) > status: active > lo0: flags=8049 metric 0 mtu 16384 > options=600003 > pflog0: flags=141 metric 0 mtu 33152 > Since your talking about a jail process, you really need to provide details on how you configured the jail and if your using the interface parameter?