From owner-freebsd-current@freebsd.org Fri Aug 28 02:13:54 2015 Return-Path: Delivered-To: freebsd-current@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id A63B49C3371 for ; Fri, 28 Aug 2015 02:13:54 +0000 (UTC) (envelope-from julian@freebsd.org) Received: from vps1.elischer.org (vps1.elischer.org [204.109.63.16]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "vps1.elischer.org", Issuer "CA Cert Signing Authority" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 80DA5CA0 for ; Fri, 28 Aug 2015 02:13:54 +0000 (UTC) (envelope-from julian@freebsd.org) Received: from Julian-MBP3.local (ppp121-45-243-143.lns20.per4.internode.on.net [121.45.243.143]) (authenticated bits=0) by vps1.elischer.org (8.15.2/8.15.2) with ESMTPSA id t7S2CUir001168 (version=TLSv1.2 cipher=DHE-RSA-AES128-SHA bits=128 verify=NO); Thu, 27 Aug 2015 19:12:33 -0700 (PDT) (envelope-from julian@freebsd.org) Subject: Re: Why does netstat not work in jails? To: Chris H , FreeBSD CURRENT References: From: Julian Elischer Message-ID: <55DFC388.6080100@freebsd.org> Date: Fri, 28 Aug 2015 10:12:24 +0800 User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.10; rv:38.0) Gecko/20100101 Thunderbird/38.2.0 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=windows-1252; format=flowed Content-Transfer-Encoding: 7bit X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 28 Aug 2015 02:13:54 -0000 On 8/28/15 9:54 AM, Chris H wrote: > I've been attempting to run jails on an 11-CURRENT > for the purpose of building world/kernel && ports > for all of our 9-STABLE production servers. I'm using > standard/classic jail setup(s) -- not using any > of the "convenience" ports/applications that abstract > the process in any way. > While everything seemed to go as intended/anticipated, > I'm seeing things I *didn't* expect. > The host network get's it's "public" IP from the router > in front of it. From the router, I insure that it is > allocated the same non-public IP everytime. So DHCP > assigns it 192.168.0.100. I assigned the jail 192.168.0.103. > SSHD is started within the jail, root IS allowed login. > But any attempt to ssh to 192.168.0.103 from the host, > returns: > ssh_exchange_identification: Connection closed by remote host. > > SSHD id NOT running on the host. > > inetd_flags="-wW -a 192.168.0.100" and syslogd_flags="-ss" > is set on the host via rc.conf what does netstat -aAn show (on the main host). > second issue; loging into the jail, via jexex. If I perform: > netstat -nr > The following is returned: > netstat: kvm not available: /dev/mem: No such file or directory is there a /dev in the jail? if you have set it up, have you allowed mem to be one of the exported devices? I forget the exact details on how to set this but hopefully it's a hint. I have to look it up every time. > Routing tables > rt_tables: symbol not in namelist > > Any thought's jump out at anyone? > > Thanks! > > --Chris > > -- > > > _______________________________________________ > freebsd-current@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-current > To unsubscribe, send any mail to "freebsd-current-unsubscribe@freebsd.org" >