Cant reach Jailed services from internet.
Ian Smith
smithi at nimnet.asn.au
Wed May 29 14:33:24 UTC 2013
On Tue, 28 May 2013, JÁKÓ András wrote:
>> That's a worry .. you won't do any good trying to use the broadcast
>> address. Mats is right, you only get 2 usable addresses with a /30.
> Assigning a /30 for four jails is perfectly valid, if it's an
> aggregate of four /32s. I would configure a static route on the
> default gateway for 174.x.x.76/30 -> 67.x.x.x, then on the host I'd
> assign the four /32s to lo1..lo4. Packets arrive to the jails because
> of the /30 static route in the neighbouring router, packets leave the
> jail because of the host's already existing default route, and of
> course traffic between the jails and the host are OK because the
> kernel knows its own interfaces. (Actually that's how I run my
> FreeBSD jails.)
> Regards,
> András
Ok, thanks, that's interesting. Maybe I can squeeze more from my /29 ..
cheers, Ian
More information about the freebsd-jail
mailing list