jail translates destination IP?
Eugene Grosbein
eugen at grosbein.pp.ru
Thu Nov 20 08:47:56 PST 2008
Hi!
For some strange reason, RAW sockets (when allowed) and TCP beheave
very differently in jail (7.1-PRERELEASE). In host's rc.conf:
jail_enable="YES"
jail_list="test"
jail_devfs_enable="YES"
jail_test_rootdir="/mnt/big/jail/test"
jail_test_hostname="myname.ru"
jail_test_ip="192.168.0.1"
jail_test_interface="lo0"
"/etc/rc.d/jail start" does all right and I may rlogin into jail.
In host environment I run tcpdump -np -i lo0.
Inside jail I ping 127.0.0.1, it succeedes and tcpdump shows that requests
go from 192.168.0.1 to 127.0.0.1 really. But when I try to telnet 127.0.0.1 25
from jail, tcpdump shows that TCP SYN are sent to 192.168.0.1, so telnet fails.
There is no NAT here. It it a bug?
Eugene Grosbein
More information about the freebsd-net
mailing list