From owner-freebsd-questions@FreeBSD.ORG  Thu Aug 21 03:16:20 2014
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTPS id E872D2D6
 for <questions@freebsd.org>; Thu, 21 Aug 2014 03:16:20 +0000 (UTC)
Received: from m2.gritton.org (gritton.org [63.246.134.121])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id B68483998
 for <questions@freebsd.org>; Thu, 21 Aug 2014 03:16:20 +0000 (UTC)
Received: œ(authenticated bits=0)
	by m2.gritton.org (8.14.9/8.14.9) with ESMTP id s7L2oid1026382;
	Wed, 20 Aug 2014 22:50:44 -0400 (EDT)
	(envelope-from jamie@gritton.org)
Message-ID: <53F55E7D.7030206@gritton.org>
Date: Wed, 20 Aug 2014 20:50:37 -0600
From: James Gritton <jamie@gritton.org>
User-Agent: Mozilla/5.0 (Windows NT 6.3; WOW64;
 rv:24.0) Gecko/20100101 Thunderbird/24.6.0
MIME-Version: 1.0
To: questions@freebsd.org
Subject: Re: putting jails on public addresses
References: <53F52D26.6070600@tysdomain.com>
In-Reply-To: <53F52D26.6070600@tysdomain.com>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Cc: tyler@tysdomain.com
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.18-1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions/>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 21 Aug 2014 03:16:21 -0000

On 8/20/2014 5:20 PM, Littlefield, Tyler wrote:
> Hello:
> I'd really like to put a couple of jails on publically accessible IP 
> addresses. I have 5 that my provider has assigned to me. Could anyone 
> possibly shed
> some light on how to do this? I know of epairs, but I'm not sure 
> exactly how this works: does each interface (a and b) get an address? 
> I presume one would
> be 192.168.0.8 and the other would be x.x.x.x (where x.x.x.x is the 
> public address)? Which one should i set the gateway on?
> Thanks a lot for the help,

You shouldn't need to mess with epair for most jails.  Just specify the 
jails' addresses (ip4.addr=x.x.x.x) in your jail.conf, and be sure to 
have an "interface=foo0" global line.  The simplest jail setup is one 
using publicly available addresses on a single interface, which sounds 
like what you have.

- Jamie