From owner-freebsd-questions@FreeBSD.ORG Tue Apr 22 00:04:05 2008 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 98DAC106566C for ; Tue, 22 Apr 2008 00:04:05 +0000 (UTC) (envelope-from scain@exgenesis.com) Received: from cmsout01.mbox.net (cmsout01.mbox.net [165.212.64.31]) by mx1.freebsd.org (Postfix) with ESMTP id 741088FC24 for ; Tue, 22 Apr 2008 00:04:05 +0000 (UTC) (envelope-from scain@exgenesis.com) Received: from cmsout01.mbox.net (cmsout01.mbox.net [165.212.64.31]) by cmsout01.mbox.net (Postfix) with ESMTP id 1D31C50AF; Tue, 22 Apr 2008 00:04:00 +0000 (GMT) Received: from cmsapps03.cms.usa.net [165.212.11.132] by cmsout01.mbox.net via smtad (C8.MAIN.3.34P) with ESMTP id XID056mDVaec1900X01; Tue, 22 Apr 2008 00:04:01 -0000 X-USANET-Source: 165.212.11.132 IN scain@exgenesis.com cmsapps03.cms.usa.net X-USANET-MsgId: XID056mDVaec1900X01 Received: from [192.168.13.5] [70.250.199.120] by cmsapps03.cms.usa.net (ESMTPSA/shelby-cain@usa.net) via mtad (C8.MAIN.3.40M) with ESMTPSA id 323mDVaD70273M39; Tue, 22 Apr 2008 00:03:59 -0000 X-USANET-Auth: 70.250.199.120 AUTH shelby-cain@usa.net [192.168.13.5] Message-ID: <480D2B6A.8010303@exgenesis.com> Date: Mon, 21 Apr 2008 19:03:54 -0500 From: Shelby Cain User-Agent: Thunderbird 2.0.0.12 (Windows/20080213) MIME-Version: 1.0 To: Bill Moran References: <480CAABA.2030208@gmail.com> <20080421124510.01853a15.wmoran@potentialtech.com> In-Reply-To: <20080421124510.01853a15.wmoran@potentialtech.com> X-Enigmail-Version: 0.95.6 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Z-USANET-MsgId: XID323mDVaD80273X39 Cc: Rek Jed , freebsd-questions@freebsd.org Subject: Re: openvpn server in a jail X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 22 Apr 2008 00:04:05 -0000 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Bill Moran wrote: | | I couldn't get it to work. The primary problem being that OpenVPN needs | to create a tun device, and you can't do that inside a jail. | | Someone more clever than I may have figured out a way to pull it off ... | I'd be interested to know about it. I know next to nothing about FreeBSD jails, but is there some reason you couldn't add "openvpn --mktun --dev " commands to rc.local (or whatever FreeBSD's equivalent is) to pre-create the tun device nodes prior to running the jailed version of openvpn? Regards, Shelby Cain -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFIDStqFioAnfS4MHQRAojzAJ9ZIfBOM5IPLHtndXeJE/jCHsZ2pwCdHCPe 6mrvSmczdSvAak1pFfH4szU= =VHL1 -----END PGP SIGNATURE-----