Date: Thu, 11 Nov 2010 10:31:12 +0200 From: Andrei Kolu <antik@bsd.ee> Cc: freebsd-jail@freebsd.org Subject: Re: loopback in jail Message-ID: <AANLkTikHsjvm%2BuT9-n=XrgaOAUQe424%2BSVoGM2uHWbLy@mail.gmail.com> In-Reply-To: <4CDADA88.5000706@secnap.com> References: <AANLkTinVQ8=9O9Vm4rH_OpQhsX3YotTtGZM=nV-em_EX@mail.gmail.com> <4CDADA88.5000706@secnap.com>
next in thread | previous in thread | raw e-mail | index | archive | help
2010/11/10 Michael Scheidell <michael.scheidell@secnap.com> > > for amavisd-new, right? > > > On 11/10/10 12:16 PM, Andrei Kolu wrote: > > Hi, > > I have problem with binding port to localhost inside of jail (ezjail). > > can only have one '127.0.0.1'.=A0 even with vnet, I am sure. > > > /usr/local/etc/amavisd.conf:$inet_socket_port =3D 10024; > should be fine. > however, you also need this: > > @inet_acl =3D ( qw [ 0.0.0.0/0 ] ); > > plus a lot of things.=A0 We have a commercial hosted email security produ= ct with multiple dozens of amavisd based VPS's and it took a while to get i= t to work. > try the amavisd users group as well. > > -- > Michael Scheidell, CTO I see. But I am testing right now kernel with "options VIMAGE" and here is the results: # ifconfig epair create # jail -c vnet name=3Dtest1 host.hostname=3Dtest1 path=3D/ persist # ifconfig epair0b vnet 1 # jexec 1 ifconfig epair0b 192.168.11.2 # jexec 1 ifconfig lo0: flags=3D8008<LOOPBACK,MULTICAST> metric 0 mtu 16384 options=3D3<RXCSUM,TXCSUM> epair0b: flags=3D8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu = 1500 ether 02:62:68:00:05:0b inet 192.168.11.2 netmask 0xffffff00 broadcast 192.168.11.255 inet6 fe80::62:68ff:fe00:50b%epair0b prefixlen 64 scopeid 0x2 nd6 options=3D3<PERFORMNUD,ACCEPT_RTADV> Now I'll try to configure localhost! # jexec 1 ifconfig lo0 localhost Let me see what's happened # jexec 1 ifconfig lo0: flags=3D8049<UP,LOOPBACK,RUNNING,MULTICAST> metric 0 mtu 16384 options=3D3<RXCSUM,TXCSUM> inet 127.0.0.1 netmask 0xff000000 inet6 ::1 prefixlen 128 inet6 fe80::1%lo0 prefixlen 64 scopeid 0x1 nd6 options=3D3<PERFORMNUD,ACCEPT_RTADV> epair0b: flags=3D8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu = 1500 ether 02:62:68:00:05:0b inet6 fe80::62:68ff:fe00:50b%epair0b prefixlen 64 scopeid 0x2 inet 192.168.11.2 netmask 0xffffff00 broadcast 192.168.11.255 nd6 options=3D3<PERFORMNUD,ACCEPT_RTADV> Wow, I have local ip address now. Can't do same thing without VIMAGE # ifconfig lo0 localhost ifconfig: ioctl (SIOCDIFADDR): permission denied This is only preliminary testing but things are looking quite different I g= uess. FreeBSD 8.1-STABLE #1: Thu Nov 11 09:36:29 EET 2010
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?AANLkTikHsjvm%2BuT9-n=XrgaOAUQe424%2BSVoGM2uHWbLy>