From owner-freebsd-net@FreeBSD.ORG Wed Dec 17 07:07:10 2014 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id CF6B970D for ; Wed, 17 Dec 2014 07:07:10 +0000 (UTC) Received: from mail-ig0-x22d.google.com (mail-ig0-x22d.google.com [IPv6:2607:f8b0:4001:c05::22d]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 933DE351 for ; Wed, 17 Dec 2014 07:07:10 +0000 (UTC) Received: by mail-ig0-f173.google.com with SMTP id r2so8278042igi.6 for ; Tue, 16 Dec 2014 23:07:10 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc:content-type; bh=RIQQKJLvdSQ8cX9Uw4+SaGZehSkVQXPLjDMyKMfAaSc=; b=GDMvtvecass8AMJr3ZqBkqYOmUlce+MSesu8VaM7O4YRnWaZcH5pLr0lwitdDSgF03 y0UM9GZ8XWnv0ESsf2RoKBGyKusNhiR7aQ7HDgI5a2MqDYRKfvpDgwugDZA0nUh36Z7K tRBALajcD5E+sbX1vy5sK8IqV4Jf7bNwh2Of0EZFYGw78Ek9LpoTv2GNJTkUaedw0k9M OpFcxbemhMd0dTYfbl6us/O66HMxw9DajmYzIYhP7ykY1c1tL0nQhV7zQ2k8Nl8E6Q1v LGv7FJjcjkv8K0GBrbKy4oqNKOvPqgXVGlp/+ntlZjC1+yAD2Tpiyi5RBAqWt7kx2vsB F/jQ== X-Received: by 10.50.138.76 with SMTP id qo12mr6659558igb.49.1418800029725; Tue, 16 Dec 2014 23:07:09 -0800 (PST) MIME-Version: 1.0 Received: by 10.50.252.39 with HTTP; Tue, 16 Dec 2014 23:06:49 -0800 (PST) In-Reply-To: References: From: Alexander Lunev Date: Wed, 17 Dec 2014 11:06:49 +0400 Message-ID: Subject: Re: only lo0 interface inside jail, no default gw To: Kevin Oberman Content-Type: text/plain; charset=UTF-8 X-Content-Filtered-By: Mailman/MimeDel 2.1.18-1 Cc: "freebsd-net@freebsd.org" X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 17 Dec 2014 07:07:10 -0000 On Wed, Dec 17, 2014 at 12:47 AM, Kevin Oberman wrote: > You lack a default route, so nothing will be reachable other than > 10.1.1.206 and 127.0.0.2. > > I just learned today that the handbook has a very nice tutorial on jailing > BIND. It will probably save a lot of time if you check it out at > https://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/jails-ezjail.html#jails-ezjail-example-bind > > As the handbook makes obvious, you really will find it a lot easier if you > use ezjail. It massively simplified working with jails. > > Now, i've made jail with ezjail and it's all the same - i have no default route in jail: # ezjail-admin console test Last login: Wed Dec 17 07:03:05 on pts/1 FreeBSD 10.1-RELEASE (GENERIC) #0 r274401: Tue Nov 11 21:02:49 UTC 2014 root@test:~ # netstat -rn Routing tables Internet: Destination Gateway Flags Netif Expire 10.1.1.206 link#4 UHS lo0 127.0.1.1 link#5 UH lo1 10.1-R/amd64, if it matters. -- your sweet isn't ready yet