Date: Tue, 08 Jul 2008 10:09:44 -0700 From: Chris St Denis <chris@smartt.com> To: Daniel Gerzo <danger@freebsd.org> Cc: Mel <fbsd.questions@rachie.is-a-geek.net>, David Allen <the.real.david.allen@gmail.com>, freebsd-questions@freebsd.org Subject: Re: Jails and IP Aliasing Message-ID: <48739F58.8070507@smartt.com> In-Reply-To: <5587447de8c610cd6e2a0a3ee7685f8d@78.47.53.106> References: <2daa8b4e0807070951u607ff031v98b5b96103fdab4@mail.gmail.com> <200807081124.33377.fbsd.questions@rachie.is-a-geek.net> <2daa8b4e0807080903o609d6b7ag831845b7939c20c8@mail.gmail.com> <4873973D.1080402@infracaninophile.co.uk> <5587447de8c610cd6e2a0a3ee7685f8d@78.47.53.106>
next in thread | previous in thread | raw e-mail | index | archive | help
Daniel Gerzo wrote: > Hello, > > >> * Something like a loopback address inside the jail. It may be >> 127.0.0.2 instead of 127.0.0.1 but most software can be persuaded >> to use it for loopback style things. >> >> * The ability to map several IPs onto the jailed system by use of >> NAT and redirect within firewall rules >> >> * The ability to have a jail with /no/ external IP for when the >> paranoia becomes unbearable[*]. >> > > Most of this is actually implemented by bz@. You can find some patches > at http://sources.zabbadoz.net/freebsd/jail.html > These patches (in various forms) have been around since version 4.x. Why has none of this functionality ever been committed to head?
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?48739F58.8070507>