From owner-freebsd-jail@FreeBSD.ORG Sat Nov 1 16:27:01 2008 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 2DBCC106568D for ; Sat, 1 Nov 2008 16:27:01 +0000 (UTC) (envelope-from christer.edwards@gmail.com) Received: from rv-out-0506.google.com (rv-out-0506.google.com [209.85.198.229]) by mx1.freebsd.org (Postfix) with ESMTP id F17AA8FC16 for ; Sat, 1 Nov 2008 16:27:00 +0000 (UTC) (envelope-from christer.edwards@gmail.com) Received: by rv-out-0506.google.com with SMTP id b25so1667718rvf.43 for ; Sat, 01 Nov 2008 09:27:00 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:date:from:to:subject :message-id:mime-version:content-type:content-disposition:user-agent; bh=DDyIkyCo+0MN6KlQBYXHXdNU23x1PF7pqFyEpL6Bfzo=; b=HuNfi4r9BsCrD7F1BMTZjx2HI4YH4YdvCsbSaf0xTIhVsNzX+2dGp7KwXWxH0uViYj xvlY2BTCMhYD2S8vshgKq4Pf1gUbAh+oSrzGICJB2M3JUatIWMbbgZrzdJGmRuD8PYUG PixwydYfgP3uc14ButfMBkhDK+n212uA9VvNM= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=date:from:to:subject:message-id:mime-version:content-type :content-disposition:user-agent; b=hlpwZ3SNnjRPEkN+yN1PuzCQrc3TUHQmyNDStjHkuWnlCQaN0+3YfoZ/jw0seWIy4B +yQ47paaQlrj8iqtT+LBF7hmUY4AMj4OmnOxF+w8p2pVfuC95VkfLBEBxGN0rbSgbMPA 2nxx19n7b5urONeul8/Zd3imzCiUcthr4+Erw= Received: by 10.142.222.21 with SMTP id u21mr6087931wfg.318.1225554825358; Sat, 01 Nov 2008 08:53:45 -0700 (PDT) Received: from parkman.zelut.org (kuyaedz.dsl.xmission.com [166.70.56.51]) by mx.google.com with ESMTPS id 27sm8804998wff.3.2008.11.01.08.53.41 (version=TLSv1/SSLv3 cipher=RC4-MD5); Sat, 01 Nov 2008 08:53:44 -0700 (PDT) Date: Sat, 1 Nov 2008 09:52:05 -0600 From: Christer Edwards To: freebsd-jail@freebsd.org Message-ID: <20081101155205.GD90953@parkman.zelut.org> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="cmJC7u66zC7hs+87" Content-Disposition: inline User-Agent: Mutt/1.5.18 (2008-05-17) Subject: dhcpd possible within jail? X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 01 Nov 2008 16:27:01 -0000 --cmJC7u66zC7hs+87 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable I recently set up a few jails for internal network services (sshd, bind, dhcpd, etc.) The only issue I have so far is that dhcpd doesn't seem to work within the jail env. It appears to start properly, and the process shows in top, but no leases are ever given out. I have the following in my jail /etc/rc.conf: ## dhcpd options dhcpd_enable=3D"YES" dhcpd_flags=3D"-q" dhcpd_conf=3D"/usr/local/etc/dhcpd.conf" dhcpd_ifaces=3D"hme0" dhcpd_withumask=3D"022" dhcpd_chuser_enable=3D"YES" dhcpd_withuser=3D"dhcpd" dhcpd_withgroup=3D"dhcpd" dhcpd_chroot_enable=3D"NO" dhcpd_devfs_enable=3D"NO" #dhcpd_makedev_enable=3D"YES" dhcpd_rootdir=3D"/var/db/dhcpd" dhcpd_includedir=3D"" #dhcpd_jail_enable=3D"YES" dhcpd_hostname=3D"hostname.domain.tld" dhcpd_ipaddress=3D"192.168.0.13" =20 I have also allowed raw_sockets from the host (unless there is another way to accomplish this). If anyone can tell me what I'm missing, or if its simply a jail limitation I'd appreciate it. thanks in advance, christer --cmJC7u66zC7hs+87 Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.9 (FreeBSD) iQEcBAEBAgAGBQJJDHskAAoJEJfgcHkNCE4TLLcIAIa+dtFg5QkV2FrSCs7lW9DQ JMja6WvtAPOb545gzGTEq5OIxb/WJAWRlcXC9j/OJZhkZxqFhzIvqTbxvZrmuZEz 7FQvg2cgaLNS15YdvA6hlLf10LHR1gZVN6P7UBu3Wcyf0XLFDp58g8Eh1kcwjtL0 eRcYX5G7G/WCV47WIoLECcn+C+pqdLPQyZsYfF6X9jSW2sCyZUeVXZFDplbkAiO/ sJOr87UbxTlKV6k9Dyn70C4RV0MzinPIeo+Yt986hSFhYDLEzXlRs4b0tSvqKg7u U3z9zirfdorOkuTljkKzBQlXEYj71GgFUNpWVBhQpkeNIbTw7f2SztVYfJFkXKg= =d0kp -----END PGP SIGNATURE----- --cmJC7u66zC7hs+87--