From owner-freebsd-questions@FreeBSD.ORG  Wed May  7 22:15:08 2014
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115])
 (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTPS id 95C6C29E
 for <freebsd-questions@freebsd.org>; Wed,  7 May 2014 22:15:08 +0000 (UTC)
Received: from relay.mailchannels.net (ar-005-i201.relay.mailchannels.net
 [162.253.144.83]) by mx1.freebsd.org (Postfix) with ESMTP id BB80C6B8
 for <freebsd-questions@freebsd.org>; Wed,  7 May 2014 22:15:06 +0000 (UTC)
X-Sender-Id: _forwarded-from|107.201.34.133
Received: from mail-24.name-services.com (unknown [10.218.133.212])
 by relay.mailchannels.net (Postfix) with ESMTPA id 4968B1218E4;
 Wed,  7 May 2014 22:15:04 +0000 (UTC)
X-Sender-Id: _forwarded-from|107.201.34.133
Received: from mail-24.name-services.com (mail-24.name-services.com
 [10.244.170.26]) (using TLSv1 with cipher AES128-SHA)
 by 0.0.0.0:2500 (trex/5.1.2); Wed, 07 May 2014 22:15:05 GMT
X-MC-Relay: Forwarding
X-MailChannels-SenderId: _forwarded-from%7C107.201.34.133
X-MailChannels-Auth-Id: demandmedia
Received: from [10.0.10.1] (107-201-34-133.lightspeed.bcvloh.sbcglobal.net
 [107.201.34.133]) by mail-24.name-services.com with SMTP; 
 Wed, 7 May 2014 15:14:57 -0700
Message-ID: <536AB05F.1030306@a1poweruser.com>
Date: Wed, 07 May 2014 18:14:55 -0400
From: Fbsd8 <fbsd8@a1poweruser.com>
User-Agent: Thunderbird 2.0.0.17 (Windows/20080914)
MIME-Version: 1.0
To: Jesse Gooch <lists@gooch.io>
Subject: Re: bootstrapping  /usr/sbin/pkg inside a jail
References: <5369407E.9060008@a1poweruser.com>
 <53694241.6050207@my.hennepintech.edu> <536A39E4.8090202@a1poweruser.com>
 <536AA8B8.2030504@gooch.io>
In-Reply-To: <536AA8B8.2030504@gooch.io>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Cc: freebsd-questions@freebsd.org
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.18
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions/>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 07 May 2014 22:15:08 -0000

Jesse Gooch wrote:
> Hi Andrew,
> 
> On 07/05/14 06:49 AM, Fbsd8 wrote:
>> Andrew Berg wrote:
>>> On 2014.05.06 15:05, Fbsd8 wrote:
>>> Does your jail have working internet connectivity and DNS resolution?
>> Yes of course
>>
>> It's not a question of getting to the internet which ping shows works.
> 
> Have you enabled raw sockets on your jails? Ping should not normally
> work on a jail. For example on one of my jails ping does this:
> 
>> root@www:/ # ping 4.2.2.1
>> ping: socket: Operation not permitted
> 
> I commonly encounter your error when I forget to add a new pf nat rule
> when creating a new jail. Are you assigning the jail an alias on the
> local network or using NAT with a loopback address?


Yes I enabled raw sockets and yes I use auto alias and no nat rules 
necessary.