Date: Sat, 24 Nov 2012 23:52:53 +1100 From: Morgan Reed <morgan.s.reed@gmail.com> To: Dewayne Geraghty <dewayne.geraghty@heuristicsystems.com.au>, freebsd-stable@freebsd.org Subject: Re: natd in a jail Message-ID: <CAKnh_YtWzGN_JKvv-ha6T1eMmqXEdaThBcuYj7ALCym59Wvs6Q@mail.gmail.com> In-Reply-To: <CAKnh_Yt4TiPEgdaZQ0J=meKDP_WiUWgUwodEMBqdzCNBNcOAHQ@mail.gmail.com> References: <CAKnh_YtF5f_0-vuGO0ov%2BJDKa_gxF%2Bf80-DCcfxPYyew0_ZG7Q@mail.gmail.com> <D0670FDB8ED04E92BD4A44BB347E786F@white> <CAKnh_YtaY8uMo0W=LQ8L=Ntz6j9bVv8bOkQ_xFoAtz86qLZKDA@mail.gmail.com> <CAKnh_YteQ8YO5HFWGeFNgZqBx6-EK0BX7uujnAoqLi-JJ-yk_g@mail.gmail.com> <CAKnh_Yt4TiPEgdaZQ0J=meKDP_WiUWgUwodEMBqdzCNBNcOAHQ@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, Nov 24, 2012 at 5:44 PM, Morgan Reed <morgan.s.reed@gmail.com> wrote: > Works like a charm, just one last thing I'd like to get squared away > here though, currently OpenVPN is using a dynamically created tun > device, I'd like to have a static /dev/tun0 exist prior to the > /etc/rc.d/natd start launching (because as it is I have to restart > natd after the openvpn tunnel comes up), not sure what the best way to > achieve this is in a jailed environment though. Scratch that, I definitely need a holiday... natd_enable removed from rc.conf, appropriate ipfw script being run by openvpn prior to dropping its privs (by way of the up directive) and it "just works" (tm)
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAKnh_YtWzGN_JKvv-ha6T1eMmqXEdaThBcuYj7ALCym59Wvs6Q>