Date: Tue, 18 Sep 2001 13:45:38 -0400 From: "Andrew Penniman" <apenniman@adelphia.net> To: <freebsd-security@freebsd.org> Subject: ipfw in a jail-centric environment? Message-ID: <003701c14069$bb1d2e00$7811a8c0@GANDALF>
next in thread | raw e-mail | index | archive | help
[-- Attachment #1 --] I'm playing with jails for the first time and am not sure how to handle packet filtering in this scenario. Should the host and jail environments each handle their own packet filtering or is all filtering handled by the host? Is natd required? I have tried to locate information on this subject but haven't found anything useful.... Thanks much, Andrew Penniman [-- Attachment #2 --] <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <HTML><HEAD> <META http-equiv=Content-Type content="text/html; charset=iso-8859-1"> <META content="MSHTML 6.00.2600.0" name=GENERATOR> <STYLE></STYLE> </HEAD> <BODY bgColor=#ffffff> <DIV><FONT face=Arial size=2>I'm playing with jails for the first time and am not sure how to handle packet filtering in this scenario.</FONT></DIV> <DIV><FONT face=Arial size=2></FONT> </DIV> <DIV><FONT face=Arial size=2>Should the host and jail environments each handle their own packet filtering or is all filtering handled by the host? Is natd required?</FONT></DIV> <DIV><FONT face=Arial size=2></FONT> </DIV> <DIV><FONT face=Arial size=2>I have tried to locate information on this subject but haven't found anything useful....</FONT></DIV> <DIV><FONT face=Arial size=2></FONT> </DIV> <DIV><FONT face=Arial size=2>Thanks much,</FONT></DIV> <DIV><FONT face=Arial size=2>Andrew Penniman</FONT></DIV></BODY></HTML>
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?003701c14069$bb1d2e00$7811a8c0>