From owner-freebsd-questions@FreeBSD.ORG Mon Apr 14 13:11:35 2014 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 0998BBC9 for ; Mon, 14 Apr 2014 13:11:35 +0000 (UTC) Received: from mail-wi0-x22f.google.com (mail-wi0-x22f.google.com [IPv6:2a00:1450:400c:c05::22f]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 92EC71661 for ; Mon, 14 Apr 2014 13:11:34 +0000 (UTC) Received: by mail-wi0-f175.google.com with SMTP id cc10so3988783wib.2 for ; Mon, 14 Apr 2014 06:11:32 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=googlemail.com; s=20120113; h=from:to:date:mime-version:subject:message-id:priority:in-reply-to :references:content-type:content-transfer-encoding :content-description; bh=8Lq8/jFS8jbH7f8pnaXeicAXwQvU/ES17jgFpw258uY=; b=SsXaQEPxG+FsTJxopV5GH41Qg7Uj3WsvqFdt4xcDgzIcSZeHP6n8YfpWODye2LSLnE dQc0Mgdzax7fbXvhI4oNW2sibes4HvXrs/GqpQ+7UqM+Eaj0CuhGHD0WnV+1bgkfYW4z JuAOQhu/t/poovp2Jitgj0pCJnjdTmWU8DM2PgfDQHh82M+4VKppZKLgJklTcZSMGQfd zYOkJBjPoFtvv/QDjL+r//QCTfVZYgk8ST6Oouok417vkPm+DCp9pyeDSH0oX8BKwW4M HBnU5OsEQQjTNAK6k2k6bJeiTEhRLgXLuZdGSCluL4V+TeieVmLK1Jb1b6Joc4r9+pYG iltQ== X-Received: by 10.180.13.8 with SMTP id d8mr9613676wic.13.1397481092769; Mon, 14 Apr 2014 06:11:32 -0700 (PDT) Received: from [192.168.16.70] ([217.41.35.220]) by mx.google.com with ESMTPSA id dr2sm23200918wid.2.2014.04.14.06.11.31 for (version=TLSv1 cipher=RC4-SHA bits=128/128); Mon, 14 Apr 2014 06:11:31 -0700 (PDT) X-Google-Original-From: "Dave B" From: Dave B To: freebsd-questions@freebsd.org Date: Mon, 14 Apr 2014 14:11:30 +0100 MIME-Version: 1.0 Subject: Re: numerous questions: ssh and jails, installation with YASR support, migration, and development Message-ID: <534BDE82.24576.EA16E29@g8kbvdave.gmail.com> Priority: normal In-reply-to: <534B24D0.8050903@tysdomain.com> References: <534B24D0.8050903@tysdomain.com> X-mailer: Pegasus Mail for Windows (4.62) Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Content-description: Mail message body X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 14 Apr 2014 13:11:35 -0000 > Hello all: > I had a few questions. I'm sorry for the long email, but I wanted to > lump them all together so I wasn't sending 90 emails. > > 1) I have a bunch of different jails configured on my BSD system. > right now I have PF doing RDR from port 30000+ to the port on the > internal jail IP. Obviously having 90 different ssh ports is a bit > messy, is there a way around this? Can I somehow set up SSH on the > host to let me log into the jail provided a username and password? > > Thanks in advance for the help, > > -- > Take care, > Ty Hi. I only know qjail (I'm running on 9.2 release) with that setup you can... SSH into the main host in the usual way, then # su - root (& enter the realy serious password etc.) Then: # qjail console ~jailname~ Where ~jailname~ is the name of the target jail.. And you're in, as though you SSH'd there to it's IP address as it's root.. ^d (Ctrl+D) gets you out of there when done, returning you to the host root account. Again (I only know QJail, I think other jail topologies allow the same or similar) you can login to the main host, and as root, navigate to the jail directories to examine logfiles and so on. In essance to "reach into a jail" from the host. (Obviously, care is needed, if you ever suspect any "funny business" has been going on!) Regards. Dave B.