From owner-freebsd-questions  Tue Jun 11  6:42:58 2002
Delivered-To: freebsd-questions@freebsd.org
Received: from dylan.digitalspy.co.uk (dylan.digitalspy.co.uk [212.42.1.217])
	by hub.freebsd.org (Postfix) with ESMTP id 52D3A37B40E
	for <freebsd-questions@FreeBSD.ORG>; Tue, 11 Jun 2002 06:42:45 -0700 (PDT)
Received: from mark (host217-36-23-138.in-addr.btopenworld.com [217.36.23.138])
	by dylan.digitalspy.co.uk (Postfix) with SMTP
	id CB6CE93140; Tue, 11 Jun 2002 14:42:44 +0100 (BST)
Message-ID: <063301c2114d$b644ee80$0200a8c0@mark>
From: "Mark Hughes" <mh_lists@digitalspy.co.uk>
To: "Andrea Bacchet" <baccheta@cae.com>
Cc: <freebsd-questions@FreeBSD.ORG>
References: <8A6A2A139700D5118EB6009027B0FF3A0D91D78E@caemsx02.cae.ca>
Subject: Re: Jail single ip network (FreeBSD 4.5)
Date: Tue, 11 Jun 2002 14:41:38 +0100
MIME-Version: 1.0
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

> What I would like to do, is just make the jail invisible
> to the outside world. I mean I have some services running in the
> jail and some outside of it. When users will be asked to login,
> I will give them only the dagobah ip. Depending on what services
> they use, they'll either be logging in to the jail or into the
> host.

I'm pretty sure to do this you'll need to run natd and set up dagobah to act
as a minigateway that can translate and route packets to the jailed
subsystem.

> Therefore I will have to look into natd, to forward the
> requests internally.
>
> If anyone has a quick solution, I'd really appreciate it.
> Until then I'll read into natd.

Think that's where you need to look - although as I've said I don't know
much about jails, I'm just looking at this from a normal networking/freebsd
boxes point of view.

Mark


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message