Date: Tue, 28 May 2013 16:25:26 +0000 (UTC) From: Mogamat Abrahams <lists@tabits.co.za> To: freebsd-jail@freebsd.org Subject: Re: Cant reach Jailed services from internet. Message-ID: <loom.20130528T180339-694@post.gmane.org> References: <loom.20130527T091739-282@post.gmane.org> <cc5f425486d0fc06e1ddc0a8cbe300ad@nanogene.org> <loom.20130527T215634-190@post.gmane.org> <20130528145629.X55451@sola.nimnet.asn.au> <20130528080719.GA11195@eik.bme.hu>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi
Thanks for the help thus far.
> of four /32s. I would configure a static route on the default gateway
> for 174.x.x.76/30 -> 67.x.x.x, then on the host I'd assign the four /32s
> to lo1..lo4.
>From the internet I can reach services on the host which are bound to these
addresses. Still no luck with the jails.... is there anything else I can to
to diagnose this?
>Packets arrive to the jails because of the /30 static route
> in the neighbouring router, packets leave the jail because of the host's
> already existing default route, and of course traffic between the jails
> and the host are OK because the kernel knows its own interfaces.
> (Actually that's how I run my FreeBSD jails.)
Talking about routes, i take it these are configured by the kernel?
Internet:
Destination Gateway Flags Refs Use Netif Expire
default 67.x.x.33 UGS 0 2319 em0
67.x.x.32/27 link#1 U 0 0 em0
67.x.x.57 link#1 UHS 0 0 lo0
127.0.0.1 link#7 UH 0 94 lo0
174.x.x.76 link#1 UHS 0 0 lo0 =>
174.x.x.76/32 link#1 U 0 0 em0 =>
174.x.x.76/30 link#1 U 0 0 em0
174.x.x.77 link#1 UHS 0 28 lo0 =>
174.x.x.77/32 link#1 U 0 0 em0
174.x.x.78 link#1 UHS 0 0 lo0
---
jls :
JID IP Address Hostname Path
1 174.x.x.76 webhost /usr/jails/webhost
2 174.x.x.77 openerp /usr/jails/openerp
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?loom.20130528T180339-694>