OpenVPN within a Jail under 6.x ...
Vlad GALU
vladgalu at gmail.com
Wed Feb 8 08:37:18 PST 2006
On 2/8/06, Marc G. Fournier <scrappy at hub.org> wrote:
> On Wed, 8 Feb 2006, Oliver Fromme wrote:
>
> > Marc G. Fournier <scrappy at hub.org> wrote:
> > > Is this possible? I'm reading through the man pages for openvpn, and
> > > doubt that it is with 4.x, since it requires access to /dev, but with 6.x
> > > using devfs to mount dev into the jail, is it possible to set it up?
> >
> > The problem isn't related to /dev. It doesn't matter
> > whether your device nodes come from devfs (FreeBSD 6)
> > or have been created manually with MAKEDEV (FreeBSD 4),
> > both of which can be used for jails.
> >
> > The problem is that you need to configure interfaces
> > (tun(4) or tap(4)) to set up the VPN, but ifconfig(8)
> > does not work inside a jail. That means you cannot
> > set up a VPN inside a jail. However, you can _use_
> > it within a jail, of course, if you assign the IP of
> > the VPN connection to the jail
>
> 'k, how would you do that? I thought you could only assign one IP to a
> jail, both in 4.x and 6.x?
I think he meant binding OpenVPN to that jail's IP.
>
>
> ----
> Marc G. Fournier Hub.Org Networking Services (http://www.hub.org)
> Email: scrappy at hub.org Yahoo!: yscrappy ICQ: 7615664
> _______________________________________________
> freebsd-stable at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-stable
> To unsubscribe, send any mail to "freebsd-stable-unsubscribe at freebsd.org"
>
--
If it's there, and you can see it, it's real.
If it's not there, and you can see it, it's virtual.
If it's there, and you can't see it, it's transparent.
If it's not there, and you can't see it, you erased it.
More information about the freebsd-stable
mailing list