From owner-freebsd-jail@FreeBSD.ORG Wed Jan 4 11:09:13 2012 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id BCA251065670 for ; Wed, 4 Jan 2012 11:09:13 +0000 (UTC) (envelope-from andrew.hotlab@hotmail.com) Received: from dub0-omc1-s37.dub0.hotmail.com (dub0-omc1-s37.dub0.hotmail.com [157.55.0.236]) by mx1.freebsd.org (Postfix) with ESMTP id 516338FC0C for ; Wed, 4 Jan 2012 11:09:13 +0000 (UTC) Received: from DUB112-DS50 ([157.55.0.237]) by dub0-omc1-s37.dub0.hotmail.com with Microsoft SMTPSVC(6.0.3790.4675); Wed, 4 Jan 2012 03:09:12 -0800 X-Originating-IP: [81.174.54.98] X-Originating-Email: [andrew.hotlab@hotmail.com] Message-ID: From: "Andrew Hotlab" To: =?iso-8859-1?Q?Eirik_=D8verby?= References: <78A52A88-CE31-4450-BB8D-3D5BC9D20456@anduin.net> In-Reply-To: <78A52A88-CE31-4450-BB8D-3D5BC9D20456@anduin.net> Date: Wed, 4 Jan 2012 12:09:11 +0100 MIME-Version: 1.0 Content-Type: text/plain; format=flowed; charset="iso-8859-1"; reply-type=original Content-Transfer-Encoding: 8bit X-Priority: 3 X-MSMail-Priority: Normal Importance: Normal X-Mailer: Microsoft Windows Live Mail 15.4.3538.513 X-MimeOLE: Produced By Microsoft MimeOLE V15.4.3538.513 X-OriginalArrivalTime: 04 Jan 2012 11:09:12.0232 (UTC) FILETIME=[49D12280:01CCCAD1] Cc: FreeBSD-Jail Subject: Re: jailed process listening on host addresses X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 04 Jan 2012 11:09:13 -0000 -----Original Message----- From: Eirik Øverby Sent: Wednesday, January 04, 2012 11:35 AM To: Andrew Hotlab Cc: FreeBSD-Jail Subject: Re: jailed process listening on host addresses > On 4. jan. 2012, at 02:10, "Andrew Hotlab" > wrote: > > > I noticed a strange behavior some days ago, but I can't say how much > > long it have been happening for. Some processes which are > running in > > different jails on the same host seems to be listening on all host IPs. > > > > It's happening on several host right now (all are running FreeBSD/amd64 > > 8.2-RELEASE-p5), with both UDP and TCP listeners. Any > > jail is using a single unicast IP address. I really hope to miss > > something important... or should I guess that these processes are > > "escaping" from the jails?! :S > > Did you try to actually connect to any of those listeners? I see the same > here, but I cannot actually connect to the ports on anything > but the > jail IP.. > I've just tried to connect to the TCP port 2049 (the unfsd daemon is running in a jail), and actually I can only telnet to the address assigned to the jail where the daemon is running, even if sockstat(1) tells me that the process is listening on all IP addresses. Thus the sockstat(1) command might not be able to display correctly the actual sockets used by some jailed processes?! It sounds pretty strange to me... maybe these processes are sharing something with the host because they are using SysV IPC or something else I ignore? Andrew