Jails and IP Aliasing
Chris St Denis
chris at smartt.com
Tue Jul 8 17:09:41 UTC 2008
Daniel Gerzo wrote:
> Hello,
>
>
>> * Something like a loopback address inside the jail. It may be
>> 127.0.0.2 instead of 127.0.0.1 but most software can be persuaded
>> to use it for loopback style things.
>>
>> * The ability to map several IPs onto the jailed system by use of
>> NAT and redirect within firewall rules
>>
>> * The ability to have a jail with /no/ external IP for when the
>> paranoia becomes unbearable[*].
>>
>
> Most of this is actually implemented by bz at . You can find some patches
> at http://sources.zabbadoz.net/freebsd/jail.html
>
These patches (in various forms) have been around since version 4.x. Why
has none of this functionality ever been committed to head?
More information about the freebsd-questions
mailing list