From owner-freebsd-jail@freebsd.org Wed Dec 14 17:45:39 2016 Return-Path: Delivered-To: freebsd-jail@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 73C7EC80677 for ; Wed, 14 Dec 2016 17:45:39 +0000 (UTC) (envelope-from ike@blackskyresearch.net) Received: from out3-smtp.messagingengine.com (out3-smtp.messagingengine.com [66.111.4.27]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 449CF691 for ; Wed, 14 Dec 2016 17:45:38 +0000 (UTC) (envelope-from ike@blackskyresearch.net) Received: from compute1.internal (compute1.nyi.internal [10.202.2.41]) by mailout.nyi.internal (Postfix) with ESMTP id 5DE05209DC; Wed, 14 Dec 2016 12:45:37 -0500 (EST) Received: from frontend1 ([10.202.2.160]) by compute1.internal (MEProxy); Wed, 14 Dec 2016 12:45:37 -0500 DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d= blackskyresearch.net; h=cc:content-transfer-encoding :content-type:date:from:in-reply-to:message-id:mime-version :references:subject:to:x-me-sender:x-me-sender:x-sasl-enc :x-sasl-enc; s=mesmtp; bh=KiJ8a1xt+I8sfkcp5iiWj2J1I3M=; b=x440n0 YsGajASx9COKanZc7Bmt0vbGQk0ia7pCswgzB+r3qGv/n7ygJGyenisXfDhjojxq libNd6og+7Cm6CQhx1blcQCLTCX6akGTf1j/iCQomkoa0W1Vnz1HArP6AgBmL3or BwURsat3PkNtQbivafTxA/WaH4gDriieTcEz4= DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-transfer-encoding:content-type :date:from:in-reply-to:message-id:mime-version:references :subject:to:x-me-sender:x-me-sender:x-sasl-enc:x-sasl-enc; s= smtpout; bh=KiJ8a1xt+I8sfkcp5iiWj2J1I3M=; b=lAbR/ZFAPEu7iIs9QdWg TMMVOrvgr78ezBoQP2BZYf4OJSHGBO0YF6JTJzOH1pqJiHHgd+MzR5i1Rrh3RuEa LuZ82tEHtrPPm5WZ3v0mZWVPB7sbsOwclWlU8n41p9vRVrvcrkAT+dIaLZDFTFBp UkZuN4Z7Dd2H5mNwpqNrnLA= X-ME-Sender: X-Sasl-enc: UyLRZ+6YpdJ8ozhSh/yzGHplBgswLmr4mF5bIaK45xsg 1481737537 Received: from [192.168.0.11] (cpe-24-90-224-248.nyc.res.rr.com [24.90.224.248]) by mail.messagingengine.com (Postfix) with ESMTPA id 18E9F7EE98; Wed, 14 Dec 2016 12:45:37 -0500 (EST) Subject: Re: multiple interfaces for jail.conf(1) and jail_set(2) Mime-Version: 1.0 (Mac OS X Mail 9.3 \(3124\)) Content-Type: text/plain; charset=utf-8 From: "Isaac (.ike) Levy" X-Priority: 3 (Normal) In-Reply-To: <61526.69.209.225.31.1481722314.squirrel@cosmo.uchicago.edu> Date: Wed, 14 Dec 2016 12:45:35 -0500 Cc: freebsd-jail@freebsd.org Content-Transfer-Encoding: quoted-printable Message-Id: References: <0ED7F403-F14E-4A72-8E54-AF74AAE15061@blackskyresearch.net> <11488.128.135.52.6.1481666606.squirrel@cosmo.uchicago.edu> <61526.69.209.225.31.1481722314.squirrel@cosmo.uchicago.edu> To: galtsev@kicp.uchicago.edu X-Mailer: Apple Mail (2.3124) X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 14 Dec 2016 17:45:39 -0000 > On Dec 14, 2016, at 8:31 AM, Valeri Galtsev = wrote: >=20 >>> no, this is not possible. Jail can only have one IP address (in = addition >>> to loopback addresses). >>=20 >> Do you mean this just for jail.conf configuration/usage? >=20 > No, that was earlier, in /etc/rc.conf. Since then I've heard that it = can > be done on jail command line, though I never tried as I kind of prefer = all > my stuff done "generic" and uniform way, something done on command = line > what does not work in central configuration files be it /etc/rc.conf = or > /etc/jail.conf feels like hack to me, so I tend to avoid it. >=20 > Valeri Thanks for clarifying Valeri- that makes complete sense. My first impression of jail.conf is simply that it=E2=80=99s not quite = complete in all the ways I need, yet it is certainly quite simple, = UNIX-ish, and clean! After hacking around with it, think that jail.conf = is only a few features away from being something I=E2=80=99d consider to = be an excellent base utility for starting/stopping my jailed systems. Best, .ike