From owner-freebsd-questions Mon Jun 10 13:35:28 2002 Delivered-To: freebsd-questions@freebsd.org Received: from ws4-2.us4.outblaze.com (205-158-62-67.outblaze.com [205.158.62.67]) by hub.freebsd.org (Postfix) with SMTP id 52FF737B40C for ; Mon, 10 Jun 2002 13:35:22 -0700 (PDT) Received: (qmail 31422 invoked by uid 1001); 10 Jun 2002 20:35:22 -0000 Message-ID: <20020610203522.31421.qmail@operamail.com> Content-Type: text/plain; charset="iso-8859-1" Content-Disposition: inline Content-Transfer-Encoding: 7bit MIME-Version: 1.0 X-Mailer: MIME-tools 5.41 (Entity 5.404) Received: from [207.105.193.195] by ws4-2.us4.outblaze.com with http for click46@operamail.com; Tue, 11 Jun 2002 04:35:22 +0800 From: "aaron g" To: Cc: freebsd-questions@freebsd.org Date: Tue, 11 Jun 2002 04:35:22 +0800 Subject: RE: Jail single ip network (FreeBSD 4.5) X-Originating-Ip: 207.105.193.195 X-Originating-Server: ws4-2.us4.outblaze.com Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG :meep: I've become what I loathe - an ignorant poster! My apologies for the obvious lack of intelligence in my previous reponse. I run four jails [web, ftp, db, mail] on my FreeBSD 4.5- RELEASE box and, due to jail's one IP disability, have either disabled inetd all together, or specified which IP it should respond to with the -a flag. There are two things I can think of [which isnt saying much now is it? ;)]: either inetd is getting confused trying to bind to * ip's, which I have seen other programs do. Or you could be running into what I ran into a while ago: the damn thing just hangs. I never did find out why, but telnet and ftp, started from inetd, would hang. I had to kill and rekill the process a number of times before I got lucky. All seemed well when I told it not to default to a username. But then the problem cropped back up eventually regardless of the flags I passed. I believe is has something to do with S/Key but I'm not sure at all. In my jails, sshd is only bound to the jail IP. I've found things tend to work much much better if they are bound to the specific jail IP. YMMV - aarong ----- Original Message ----- From: Andrea Bacchet Date: Mon, 10 Jun 2002 14:50:13 -0400 To: "'aaron g'" Subject: RE: Jail single ip network (FreeBSD 4.5) > Greets again Aaron, > > Oh and from what I have read, it isn't the jail IP > as you mention below, but the host IP that must be entered there. > > cheers, > __ > Andy > > -----Original Message----- > From: aaron g [mailto:click46@operamail.com] > Sent: Monday, June 10, 2002 2:40 PM > To: baccheta@cae.com > Cc: freebsd-questions@freebsd.org > Subject: RE: Jail single ip network (FreeBSD 4.5) > > > You did not follow the jail(8) man page well enough ;) > > > From man 8 jail: > > 'Add the following to /etc/rc.conf in the host environment: > [...] > inetd_flags="-wW -a 192.168.11.23" > [...]' > > > > where 192.168.11.23 is your jail's IP > > - aarong > -- > _______________________________________________ > Download the free Opera browser at http://www.opera.com/ > > Powered by Outblaze > -- _______________________________________________ Download the free Opera browser at http://www.opera.com/ Powered by Outblaze To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message