Date: Fri, 09 Jul 2010 14:55:35 -0700 From: merlyn@stonehenge.com (Randal L. Schwartz) To: Michael <mlmichael70@gmail.com> Cc: freebsd-questions@freebsd.org Subject: Re: ipfw nat and jails on loopback - is it possible? Message-ID: <864og89v6w.fsf@red.stonehenge.com> In-Reply-To: <4C378D58.5010404@gmail.com> (Michael's message of "Fri, 09 Jul 2010 21:58:00 %2B0100") References: <4C378D58.5010404@gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
>>>>> "Michael" == Michael <mlmichael70@gmail.com> writes: Michael> Does anybody has a working configuration with ipfw nated jails Michael> on loopback interface? I noticed in my pf.conf that I had "set skip on lo". I changed that to "set skip on lo0" (still advisable), and then created an "lo1" using ipv4_addrs_lo1=127.1.0.1/24 in my /etc/rc.conf, and I can now route in and out just fine. I don't know if ipfw has a similar "don't apply rules to lo0" option, but if that's the case, create an lo1 instead. -- Randal L. Schwartz - Stonehenge Consulting Services, Inc. - +1 503 777 0095 <merlyn@stonehenge.com> <URL:http://www.stonehenge.com/merlyn/>; Smalltalk/Perl/Unix consulting, Technical writing, Comedy, etc. etc. See http://methodsandmessages.vox.com/ for Smalltalk and Seaside discussion
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?864og89v6w.fsf>