Skip site navigation (1)Skip section navigation (2) 
Date:      Mon, 06 Apr 2015 18:38:55 +0300
From:      Artem Kuchin <artem@artem.ru>
To:        freebsd-questions@freebsd.org
Subject:   Re: how to do interval jail ips
Message-ID:  <5522A88F.4020500@artem.ru>
In-Reply-To: <5522A559.8050407@infracaninophile.co.uk>
References:  <552297B5.1030203@artem.ru> <55229C4E.5050504@gmail.com> <55229DE1.5050700@artem.ru> <5522A559.8050407@infracaninophile.co.uk>
next in thread | previous in thread | raw e-mail | index | archive | help 
06.04.2015 18:25, Matthew Seaman пишет:
> On 06/04/2015 15:53, Artem Kuchin wrote:
>> 06.04.2015 17:46, Ernie Luzar пишет:
>>> Artem Kuchin wrote:
>>>> Hello!
>>>>
>>>> I have several jails and some of the use real ips, some are just
>>>> internal for the server like 10.0.0.x
>>>> However, i assigned all ips to the external em0 interface.
>>>> This causes problems, because of server in the same lan have 10.0.0.x
>>>> address of their interfaces too.
>>>> So, there is a conflict.
>>>> This is just a colocation, so, i cannot control the ip assignment.
>>>>
>>>> What is the correct way to assign ip address which are seen only
>>>> withing a host?
>>>> (some kind of virtual NIC)
>>>>
>>>> Artem
>>>>
>>> xl0,10.0.10.2   for lan on device xl0
>>>
>>> em0,x.x.x.x   for rl0 device facing pubic internet
>>>
>>> use the correct device names for you network configuration
>>>
>> i don't get it. I do not have xl0 device
>> I only have em0
>> Or i can specify whatever device i like even if it is not installed in
>> the server?
> You can create jail IPs bound to the loopback interface lo0 exactly as
> you would for a standard NIC.

Need a little clarification. Do you mean i need to specify ip aliases 
on  lo0 interfaces
in rc.conf and then specify that ip in jail conf??

> Be aware though that if you assign your internal IPs from, say,
> 10.11.0.0/24 that will mean you would have trouble reaching anything on
> that particular subnet via your network interface.
This is understood. It is a colocation server. No need to access 
anything localy. VPN
is also not up.

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5522A88F.4020500>