Date: Tue, 10 Jan 2017 09:04:06 -0800 (PST) From: Robroy Gregg <robroy@robroygregg.com> To: Ernie Luzar <luzar722@gmail.com> Cc: freebsd-questions@FreeBSD.org Subject: Re: /dev/bpf in a jail Message-ID: <alpine.BSF.2.20.1701100900360.8120@beak.h.net> In-Reply-To: <5874C8F9.5020103@gmail.com> References: <5874C8F9.5020103@gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Good day Ernie,
On Tue, 10 Jan 2017, Ernie Luzar wrote:
> I trying to run tcpdump inside of a jail.
> Get following error message
> tcpdump: (cannot open device) /dev/bpf: No such file or directory
>
> Is it technical possible to do this?
Yeah, I have tcpdump working in a jail on 10.3-RELEASE, named "beak."
Here's the jail.conf for it:
exec.start = "/bin/sh /etc/rc";
exec.stop = "/bin/sh /etc/rc.shutdown";
exec.clean;
mount.devfs;
host.hostname = $name;
path = /j/$name;
interface = igb0;
beak {
allow.raw_sockets;
devfs_ruleset = 7;
enforce_statfs = 1;
ip4.addr = 192.168.32.10;
}
And here's the /etc/devfs.conf for it:
[devfsrules_jail_bpf=7]
add include $devfsrules_hide_all
add include $devfsrules_unhide_basic
add include $devfsrules_unhide_login
add path 'bpf*' unhide
Wellbeing to you, Ernie.
Robroy
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?alpine.BSF.2.20.1701100900360.8120>