problems with jail

Harald Schmalzbauer h.schmalzbauer at omnisec.de
Fri Feb 23 19:17:06 UTC 2007 

Am Freitag, 23. Februar 2007 20:07 schrieb Jim Stapleton:
> Jail:
> sjss at elrond 14:04:11 (0) ~  > sudo jail /jail/ legolas 192.168.1.85
> /bin/csh %telnet 192.168.1.4 25
> Trying 192.168.1.4...
> ^Z
> Suspended
> %kill %1
> [1]    Terminated                    telnet 192.168.1.4 25
> %ifconfig -a
> nve0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
>         ether 00:13:d4:2e:2f:62
>         media: Ethernet autoselect (100baseTX <full-duplex>)
>         status: active
> plip0: flags=108810<POINTOPOINT,SIMPLEX,MULTICAST,NEEDSGIANT> mtu 1500
> lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384
>
>
> OK, from host:
> sjss at elrond 14:02:11 (0) ~  > ifconfig -a
> nve0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
>         inet 192.168.1.84 netmask 0xffffff00 broadcast 192.168.1.255
>         ether 00:13:d4:2e:2f:62
>         media: Ethernet autoselect (100baseTX <full-duplex>)
>         status: active

You are missing ifconfig_nve0_alias0="192.168.1.85/32" in rc.conf.
The host hast to have the ip of a jail, network stak is not virtualized (yet?)

-Harry

> plip0: flags=108810<POINTOPOINT,SIMPLEX,MULTICAST,NEEDSGIANT> mtu 1500
> lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384
>         inet6 fe80::1%lo0 prefixlen 64 scopeid 0x3
>         inet6 ::1 prefixlen 128
>         inet 127.0.0.1 netmask 0xff000000
> sjss at elrond 14:04:08 (0) ~  > jls
>    JID  IP Address      Hostname                      Path
>      1  192.168.1.85    legolas                       /jail
>
>
>
> Is that what you needed
>
> Thanks,
> -Jim Stapleton
>
> > Jim Stapleton wrote:
> > > Thank you, that's at least useful testing, but it did not work. Jail
> > > is definetly not getting any network action.
> > >
> > > Would a host netstat output be useful? I looks pretty cryptic.
> >
> > Can you please post the output of ifconfig and jls. From your rc.conf it
> > seems the ipaddr. for the jail is not or wrong configured on your
> > interface.
> >
> > greetings,
> > philipp
>
> _______________________________________________
> freebsd-questions at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to
> "freebsd-questions-unsubscribe at freebsd.org"

-- 
OmniSEC  -  UNIX und Windows Netzwerke - Sicher
Harald Schmalzbauer
Flintsbacher Str. 3
80686 München
+49 (0) 89 18947781
+49 (0) 160 93860101

More information about the freebsd-questions mailing list