From owner-freebsd-hackers Sun Feb 2 7:11:33 2003 Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4290F37B405 for ; Sun, 2 Feb 2003 07:11:32 -0800 (PST) Received: from altertech.net (alpha.altertech.net [66.111.55.160]) by mx1.FreeBSD.org (Postfix) with SMTP id CD26843FB1 for ; Sun, 2 Feb 2003 07:11:31 -0800 (PST) (envelope-from yashka@exebook.com) Received: (qmail 89304 invoked by uid 0); 2 Feb 2003 15:11:26 -0000 Received: from unknown (HELO PIKA) (trilluser@194.149.227.156) by web.altertech.net with SMTP; 2 Feb 2003 15:11:26 -0000 Message-ID: <00cf01c2cacd$4c786420$01e6a8c0@homenet> From: "Yakov Sudeikin" To: Subject: Routing within a Jail Date: Sun, 2 Feb 2003 21:10:58 +0600 MIME-Version: 1.0 Content-Type: text/plain; charset="koi8-r" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2800.1106 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 Sender: owner-freebsd-hackers@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Hi freebsd-hackers, Jail with multiple LAN cards accessible from within? I have my 4.7 box serving a lot of things, and I have a Linux box routing the network packets for people in my block. I am not an administraotr of the router. I want to get rid of the Linux station, I want to create a jail on my FreeBSD box and start a router + firewall there. As far as I know this is not possible, jail is started binded to single IP. And I need to route between different interfaces and even differend LAN cards. One of them is WaveLan, others are Ethernet rl0 like. I want the router to be in the jail for security purposes, and have all my services also in the other jails (mysql, apache, ftp, mail, named, samba etc). And I want the host system ONLY serve jails and do nothing else by itself. Is FreeBSD jail subsystem mature enough to accomplish this? Thank you, Yakov Sudeikin Exebook.com - create secure, nice looking ebooks. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message