IP address assignments to jails using ezjail
James B. Byrne
byrnejb at harte-lyne.ca
Fri Dec 23 20:52:10 UTC 2016
On Thu, December 22, 2016 22:25, Ernie Luzar wrote:
>
> 3. Take ubound out of the mix by not starting that jail. Then use only
> ip addresses in your host to jail ssh command.
>
> 4. What is output of issuing host ssh command to a jail? Does host
> answer?
>
Inbound ssh to the jail works:
$ ssh -vv 192.168.216.196
OpenSSH_5.3p1, OpenSSL 1.0.1e-fips 11 Feb 2013
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Applying options for *
debug2: ssh_connect: needpriv 0
debug1: Connecting to 192.168.216.196 [192.168.216.196] port 22.
debug1: Connection established.
. . .
Password for user1 at hlldrupal:
Outbound ssh from the jail does not:
# ssh -vv 192.168.216.22
OpenSSH_7.2p2, OpenSSL 1.0.2j-freebsd 26 Sep 2016
debug1: Reading configuration data /etc/ssh/ssh_config
debug2: resolving "192.168.216.22" port 22
debug2: ssh_connect_direct: needpriv 0
debug1: Connecting to 192.168.216.22 [192.168.216.22] port 22.
debug1: connect to address 192.168.216.22 port 22: Operation timed out
ssh: connect to host 192.168.216.22 port 22: Operation timed out
There is no firewall running on either the jail or the jail host.
--
*** e-Mail is NOT a SECURE channel ***
Do NOT transmit sensitive data via e-Mail
Do NOT open attachments nor follow links sent by e-Mail
James B. Byrne mailto:ByrneJB at Harte-Lyne.ca
Harte & Lyne Limited http://www.harte-lyne.ca
9 Brockley Drive vox: +1 905 561 1241
Hamilton, Ontario fax: +1 905 561 0757
Canada L8E 3C3
More information about the freebsd-questions
mailing list