[fbsd] Re: jail addresses and default bindings
Jeremie Le Hen
jeremie at le-hen.org
Wed Dec 27 08:14:45 PST 2006
On Sat, Dec 16, 2006 at 10:13:00AM +0000, Bjoern A. Zeeb wrote:
> >this way it's hard to distingvish in a packet filter(let's say pf),
> >among connections originating from within the jail itself or
> >from the host system to the jail.
>
> I won't ask why you would want to do that if you control it
> from the "host" system anyway...
Additionally, ipfw(8) has the "jail" keyword, though it is easier to
work with IP addresses since jail ids are bumped whenever you restart
a jail.
Regards,
--
Jeremie Le Hen
< jeremie at le-hen dot org >< ttz at chchile dot org >
More information about the freebsd-net
mailing list