FreeBSD 11.2-RELEASE-p9 jail ping: ssend socket: Operation not permitted
David Christensen
dpchrist at holgerdanske.com
Fri Feb 15 17:57:44 UTC 2019
On 2/15/19 12:16 AM, Arthur Chance wrote:
<snip>
> Read the manual entry for jail(8). Specifically this bit
>
> allow.raw_sockets
<snip>
On 2/15/19 6:21 AM, Ernie Luzar wrote:
<snip>
> The allow_raw_sockets option has to be inside of the samba jail
> definition in jail.conf.
>
> defaultrouter="192.168.5.1" is not needed in the jails rc.conf file.
Thank you both for the help.
I removed "security.jail.allow_raw_sockets" from both the host and the
jailed sysctl.conf.
I added "allow.raw_sockets" in the host jail.conf:
root at beastie:~ # cat /etc/jail.conf
samba {
allow.raw_sockets=1;
exec.clean;
exec.start="sh /etc/rc";
exec.stop="sh /etc/rc.shutdown";
host.hostname="samba.tracy.holgerdanske.com";
ip4.addr="192.168.5.8";
mount.devfs;
path="/jail/samba";
}
And I removed "defaultrouter" from the jailed rc.conf.
After rebooting, ping now works inside the jail.
David
More information about the freebsd-questions
mailing list