From owner-freebsd-questions Sun Jan 5 4:13:32 2003 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id EE29037B401 for ; Sun, 5 Jan 2003 04:13:14 -0800 (PST) Received: from angelfish.lewiz.org (dialup.212-50-180-211.karoo.KCOM.COM [212.50.180.211]) by mx1.FreeBSD.org (Postfix) with SMTP id 2193F43EC2 for ; Sun, 5 Jan 2003 04:13:07 -0800 (PST) (envelope-from lewiz@turtle.lewiz.org) Received: (qmail 81685 invoked by uid 85); 5 Jan 2003 12:12:41 -0000 Received: from lewiz@turtle.lewiz.org by angelfish by uid 0 with qmail-scanner-1.14 (sophie: 2.10/3.62. spamassassin: 2.43. Clear:SA:0(-4.3/5.0):. Processed in 1.905347 secs); 05 Jan 2003 12:12:41 -0000 X-Spam-Status: No, hits=-4.3 required=5.0 Received: from turtle.lewiz.org (192.168.0.9) by angelfish.lewiz.org with SMTP; 5 Jan 2003 12:12:36 -0000 Received: (nullmailer pid 50224 invoked by uid 1001); Sun, 05 Jan 2003 12:13:03 -0000 Date: Sun, 5 Jan 2003 12:13:03 +0000 From: lewiz To: Talon Cc: freebsd-questions@FreeBSD.ORG Subject: Re: Jail Message-ID: <20030105121303.GG48290@lewiz.org> Mail-Followup-To: lewiz , Talon , freebsd-questions@FreeBSD.ORG References: <3E180E8E.5080704@datastorm.kicks-ass.org> <20030105113711.GF48290@lewiz.org> <3E181D22.3080500@datastorm.kicks-ass.org> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="cyV/sMl4KAhiehtf" Content-Disposition: inline In-Reply-To: <3E181D22.3080500@datastorm.kicks-ass.org> X-GPG-Fingerprint: 90A4 939E 3847 A3E4 8103 2A48 22DA B428 542F ED3F X-GPG-Info: http://www.westwood.karoo.net/pgpkey / horowitz.surfnet.nl User-Agent: Mutt/1.5.1i Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG --cyV/sMl4KAhiehtf Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Sun, Jan 05, 2003 at 10:55:14PM +1100, Talon wrote: > I still seem to have the prob with no rl0 interface in the jail .. > and cannot make any outbound conection from inside the jail. Ahh, sorry. I missed this question. The way I have it setup is using NAT and a gateway. If you're using the same IP in the jail as your host environment you don't need the NAT -- just set the host up as a gateway and then in the jail add a default route pointing to the host. This way all traffic goes through the host. If you're using different IPs though you'll need to start using NAT to rewrite the packet headers. All of this stuff can be found in the handbook (although I doubt whether it mentions it specifically about jails). > I am running ipf with default block from the kernel > but allow all packets in and out from rl0 lo0 >=20 > Is there a good doc on jail setup or troubleshooter on the www that > anyone knows of ? Hope that's a bit more help, -lewiz. --=20 "I just need enough to tide me over until I need more." -- Bill Hoest ------------------------------------------------------------------------ --|| url: http://lewiz.info/ | http://www.westwood.karoo.net/pgpkey ||-- --cyV/sMl4KAhiehtf Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (FreeBSD) iD8DBQE+GCFPItq0KFQv7T8RApDyAJ9TQw37ort/jioIAhsxajahgNlwDwCg7Wbp EhIkrE2IMN+LiR7dVgjauCw= =Jb0J -----END PGP SIGNATURE----- --cyV/sMl4KAhiehtf-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message