Date: Sun, 8 Jul 2001 15:47:03 +0100 From: Dominic Marks <dominic_marks@btinternet.com> To: freebsd-stable@FreeBSD.ORG Subject: Re: Jail issues with -STABLE Message-ID: <20010708154703.A54379@btinternet.com> In-Reply-To: <200107081112.NAA61163@lurza.secnetix.de>; from olli@secnetix.de on Sun, Jul 08, 2001 at 01:12:16PM %2B0200 References: <20010708010400.A5653@btinternet.com> <200107081112.NAA61163@lurza.secnetix.de>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi, On Sun, Jul 08, 2001 at 01:12:16PM +0200, Oliver Fromme wrote: > You cannot change interfaces from inside a jail, as this > would have an impact on the whole system. You must set up > the interface from outside of your jails. I think this is > described in the manual page. Ahhh, yes. Its obvious now that I think of it! > Nope, you don't need a /kernel, but you need a /dev/kmem > device inside the jail. If you create it, dmesg and top > will work. However, this might be a security concern. > If you don't really need dmesg and top within jails, don't > do it. You usually don't need them. Yes, tried that and it does work. I was just curious as to why they didn't. > Regards > Oliver I now have things working nicely, however I have one further problem which despite considerable comtemplation, I have been unable to figure out. I have my main machine (A) at ip address 10.0.0.139 and the jail inside it (B) bound to 10.0.0.137. I have started sshd on ip address 10.0.0.137:2022 inside the jail and it appears to be listening correctly. However when I attempt to connection to it the connection stalls and I never get to a prompt. $ ssh -p 2022 dom@10.0.0.137 ... it sits waiting until I interrupt it. (outside jail) $ ifconfig vr0 vr0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500 inet 10.0.0.139 netmask 0xffffff00 broadcast 10.0.0.255 inet 10.0.0.137 netmask 0xffffff00 broadcast 10.0.0.255 ether 00:50:ba:f1:b0:44 media: Ethernet autoselect (10baseT/UTP) status: active (inside jail) $ ifconfig vr0 vr0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500 inet 10.0.0.137 netmask 0xffffff00 broadcast 10.0.0.255 ether 00:50:ba:f1:b0:44 media: Ethernet autoselect (10baseT/UTP) status: active (outside jail) $ sockstat -4l | grep 2022 root sshd 55966 3 tcp4 10.0.0.137:2022 *:* I'm baffled. Thanks Dominic Marks To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010708154703.A54379>