From owner-freebsd-current@FreeBSD.ORG Tue Mar 17 19:06:44 2009 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D8C7F1065670 for ; Tue, 17 Mar 2009 19:06:44 +0000 (UTC) (envelope-from julian@elischer.org) Received: from outR.internet-mail-service.net (outr.internet-mail-service.net [216.240.47.241]) by mx1.freebsd.org (Postfix) with ESMTP id C0DEA8FC23 for ; Tue, 17 Mar 2009 19:06:44 +0000 (UTC) (envelope-from julian@elischer.org) Received: from idiom.com (mx0.idiom.com [216.240.32.160]) by out.internet-mail-service.net (Postfix) with ESMTP id DE3BCC075; Tue, 17 Mar 2009 12:06:44 -0700 (PDT) X-Client-Authorized: MaGic Cook1e X-Client-Authorized: MaGic Cook1e Received: from julian-mac.elischer.org (nat.ironport.com [63.251.108.100]) by idiom.com (Postfix) with ESMTP id 4DC482D601A; Tue, 17 Mar 2009 12:06:44 -0700 (PDT) Message-ID: <49BFF4CC.5050505@elischer.org> Date: Tue, 17 Mar 2009 12:06:52 -0700 From: Julian Elischer User-Agent: Thunderbird 2.0.0.19 (Macintosh/20081209) MIME-Version: 1.0 To: Harald Schmalzbauer References: <49BFEBAE.7090703@omnilan.de> In-Reply-To: <49BFEBAE.7090703@omnilan.de> Content-Type: text/plain; charset=ISO-8859-15; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-current@freebsd.org Subject: Re: FIB (routing table) question with jailed service X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 17 Mar 2009 19:06:45 -0000 Harald Schmalzbauer wrote: > Hello, > > I set up a second routingtable and told rc.d/jail to use the FIB1. > Now I wonder why the SSHd in the jail isn't responding. I set the > default router to a local address and the second default router in FIB1 > to the ISP router, reachable via a second NIC. > Does the FIb only work for outgoing, intiating connections? no, it is supposed to work for listen sockets too. What version of FreeBSD? I assume current because of the mailing list. I say "supposed to" because I have not tested it in -current for a while, and there have been quite a few changes in that area. I'll try check it myself later and get back to you. (It does work correctly in Ironport's 6.x based systems where it came from) > > Best regards, > > -Harry > > > > > ------------------------------------------------------------------------ > > _______________________________________________ > freebsd-current@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-current > To unsubscribe, send any mail to "freebsd-current-unsubscribe@freebsd.org"