Date: Tue, 07 Mar 2006 13:02:58 -0300 From: "Ricardo A. Reis" <ricardo_bsd@yahoo.com.br> To: Cyril Jaouich <cjaouich@yahoo.ca> Cc: freebsd-security@freebsd.org Subject: Re: Jails and loopback interfaces Message-ID: <440DAEB2.3030102@yahoo.com.br> In-Reply-To: <20060307150703.75574.qmail@web30609.mail.mud.yahoo.com> References: <20060307150703.75574.qmail@web30609.mail.mud.yahoo.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi Cyril, For access loopback inside the jail, is necessary configure in host server alias for loopback and start jail using loopback. Remember loopback address is all 127/8 ! Ex. rc.conf ifconfig_lo0_alias0="inet 127.0.0.2 netmask 0xffffffff" jail_packages_rootdir="/jail/packages" jail_packages_hostname="packages.xxx.xxx" jail_packages_ip="127.0.0.2" jail_packages_exec_start="/bin/sh /etc/rc" jail_packages_exec_stop="/bin/sh /etc/rc.shutdown" jail_packages_devfs_enable="YES" jail_packages_fdescfs_enable="NO" jail_packages_procfs_enable="NO" jail_packages_mount_enable="YES" jail_packages_devfs_ruleset="devfsrules_jail" jail_packages_fstab="/etc/fstab.packages" Ricardo A. Reis UNIFESP Unix and Network Admin > Hi, > > Running: Freebsd 6.0 > > I am wondering if it is possible to have acces to loopback ip in a jail. I > currently have a server running a jail. In the jail, there is a database and a > web server. I would like to be able to have the database only bind on a > loopback address and not on the jail's ip. > > Can this be done and how? > > Thanks > > -Cyril > > > > > > > __________________________________________________________ > Lèche-vitrine ou lèche-écran ? > magasinage.yahoo.ca > _______________________________________________ > freebsd-security@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-security > To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org" > >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?440DAEB2.3030102>