From owner-freebsd-questions@FreeBSD.ORG  Wed Aug  7 11:50:17 2013
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTP id 9AC714A7
 for <freebsd-questions@freebsd.org>; Wed,  7 Aug 2013 11:50:17 +0000 (UTC)
 (envelope-from fbsd8@a1poweruser.com)
Received: from mailch-2.name-services.com (mailch-2.name-services.com
 [98.124.252.184])
 by mx1.freebsd.org (Postfix) with ESMTP id 855D9255B
 for <freebsd-questions@freebsd.org>; Wed,  7 Aug 2013 11:50:17 +0000 (UTC)
Received: from mailch.name-services.com (localhost [127.0.0.1])
 by mailch.name-services.com (Postfix) with SMTP id 1A28C64BD7E;
 Wed,  7 Aug 2013 04:50:12 -0700 (PDT)
X-Sender-Id: 173.88.196.224
Received: from mail-24.name-services.com (sjl0vwsmail09.prod.dm.local
 [10.7.17.59]) by 0.0.0.0:2500 (trex/4.8.23);
 Wed, 07 Aug 2013 11:50:12 GMT
X-Pool-Id: 3
Received: from [10.0.10.1] (cpe-173-88-196-224.neo.res.rr.com
 [173.88.196.224]) by mail-24.name-services.com with SMTP; 
 Wed, 7 Aug 2013 04:50:00 -0700
Message-ID: <52023467.4030609@a1poweruser.com>
Date: Wed, 07 Aug 2013 07:49:59 -0400
From: Fbsd8 <fbsd8@a1poweruser.com>
User-Agent: Thunderbird 2.0.0.17 (Windows/20080914)
MIME-Version: 1.0
To: Karl Pielorz <kpielorz_lst@tdx.co.uk>
Subject: Re: Static Jail ID's (JID's) for use with IPFW?
References: <6AEEAD32A5BF3013464C98A1@Mail-PC.tdx.co.uk>
In-Reply-To: <6AEEAD32A5BF3013464C98A1@Mail-PC.tdx.co.uk>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Cc: freebsd-questions@freebsd.org
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.14
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 07 Aug 2013 11:50:17 -0000

Karl Pielorz wrote:
> 
> Hi,
> 
> I have a number of jailed systems running - and I've been setting up 
> ipfw rules for them.
> 
> This is on FBSD 9.1.
> 
> 'ipfw' lets you match on traffic to/from a Jail ID (JID) - however every 
> time jails get started / stopped their JID changes [thus breaking the 
> firewall rules].
> 
> I can't see anywhere to 'statically' configure a JID to a Jail (i.e. in 
> /etc/rc.conf).
> 
> Is this possible? / How?
> 
> Thanks,
> 
> -Karl 


Use the jails IP address in the hosts IPFW rules.