Date: Tue, 15 Jul 2003 12:23:03 +0300 From: peter dunaskin <bonifaktuura@inbox.lv> To: gemini@geminix.org Cc: freebsd-security@freebsd.org Subject: Re: jails, ipfilter & stunnel Message-ID: <1058260983.3f13c7f786469@www1.inbox.lv> In-Reply-To: <20030715091211.GK4973@garage.freebsd.pl> References: <8213881.1058211676830.JavaMail.nobody@beaker.psp.pas.earthlink.net> <20030714211518.GD4973@garage.freebsd.pl> <3F13A975.7020508@geminix.org> <20030715091211.GK4973@garage.freebsd.pl>
next in thread | previous in thread | raw e-mail | index | archive | help
did i miss something or why noone mentioned of using private [unreal, localhost, whatever..] addresses for all jails? for example you can bind nat ips for your second nic [or loopback], different ip's for different jails. then you can portforward whatever you want to jails. in my case, all jails are firewalled out and i let in only traffic i need to get in/out. i can send config files [jail scripts, firewall rules..] p. --- This message contains no viruses. Guaranteed by Kaspersky Anti-Virus. www.antivirus.lv
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1058260983.3f13c7f786469>