From owner-freebsd-stable@FreeBSD.ORG Wed Feb 8 16:17:55 2006 Return-Path: X-Original-To: freebsd-stable@FreeBSD.ORG Delivered-To: freebsd-stable@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6E9B016A420 for ; Wed, 8 Feb 2006 16:17:55 +0000 (GMT) (envelope-from scrappy@hub.org) Received: from hub.org (hub.org [200.46.204.220]) by mx1.FreeBSD.org (Postfix) with ESMTP id C54DD43D48 for ; Wed, 8 Feb 2006 16:17:54 +0000 (GMT) (envelope-from scrappy@hub.org) Received: from localhost (unknown [200.46.204.144]) by hub.org (Postfix) with ESMTP id E774462C8FC for ; Wed, 8 Feb 2006 12:17:53 -0400 (AST) Received: from hub.org ([200.46.204.220]) by localhost (av.hub.org [200.46.204.144]) (amavisd-new, port 10024) with ESMTP id 84438-04 for ; Wed, 8 Feb 2006 12:17:53 -0400 (AST) Received: from ganymede.hub.org (blk-222-82-85.eastlink.ca [24.222.82.85]) by hub.org (Postfix) with ESMTP id 82F1B62C8AB for ; Wed, 8 Feb 2006 12:17:53 -0400 (AST) Received: by ganymede.hub.org (Postfix, from userid 1000) id B3EC3392FF; Wed, 8 Feb 2006 12:17:51 -0400 (AST) Received: from localhost (localhost [127.0.0.1]) by ganymede.hub.org (Postfix) with ESMTP id 79CD938C67 for ; Wed, 8 Feb 2006 12:17:51 -0400 (AST) Date: Wed, 8 Feb 2006 12:17:50 -0400 (AST) From: "Marc G. Fournier" To: freebsd-stable@FreeBSD.ORG In-Reply-To: <200602081321.k18DLpjo061917@lurza.secnetix.de> Message-ID: <20060208121704.L3207@ganymede.hub.org> References: <200602081321.k18DLpjo061917@lurza.secnetix.de> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed X-Virus-Scanned: by amavisd-new at hub.org Cc: Subject: Re: OpenVPN within a Jail under 6.x ... X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 08 Feb 2006 16:17:55 -0000 On Wed, 8 Feb 2006, Oliver Fromme wrote: > Marc G. Fournier wrote: > > Is this possible? I'm reading through the man pages for openvpn, and > > doubt that it is with 4.x, since it requires access to /dev, but with 6.x > > using devfs to mount dev into the jail, is it possible to set it up? > > The problem isn't related to /dev. It doesn't matter > whether your device nodes come from devfs (FreeBSD 6) > or have been created manually with MAKEDEV (FreeBSD 4), > both of which can be used for jails. > > The problem is that you need to configure interfaces > (tun(4) or tap(4)) to set up the VPN, but ifconfig(8) > does not work inside a jail. That means you cannot > set up a VPN inside a jail. However, you can _use_ > it within a jail, of course, if you assign the IP of > the VPN connection to the jail 'k, how would you do that? I thought you could only assign one IP to a jail, both in 4.x and 6.x? ---- Marc G. Fournier Hub.Org Networking Services (http://www.hub.org) Email: scrappy@hub.org Yahoo!: yscrappy ICQ: 7615664