Skip site navigation (1)Skip section navigation (2) 
Date:      Sat, 24 Aug 2013 23:07:42 -0500 (CDT)
From:      "Valeri Galtsev" <galtsev@kicp.uchicago.edu>
To:        "Mike C." <miguelmclara@gmail.com>
Cc:        freebsd-jail@freebsd.org
Subject:   Re: connect -1 errno 1 Operation not permitted with specific user   (nagios)
Message-ID:  <58331.68.255.103.36.1377403662.squirrel@cosmo.uchicago.edu>
In-Reply-To: <52197976.3020405@gmail.com>
References:  <52197976.3020405@gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help 
Mine was FreeBSD 9.1, amd64, and "per jail" config didn't work for me. I
configure jails in /etc/rc.conf and start them on boot by enabling them in
/etc/rc.conf (jail_enable="YES"), or start, stop, restart using

/etc/rc.d/jail [start|stop|restart]

For those who didn't see previous discussion, it was about suggested by
one of real experts elegant per jail enabling access to raw sockets which
should work if one does this

>> > Putting this in /etc/rc.conf:
>> >
>> > jail_${JailName}_parameters="allow.raw_sockets=1"

For me it didn't work, so I have to enable raw sockets this way:

sysctl security.jail.allow_raw_sockets=1

and restart jail

or by adding into /etc/sysctl.conf

security.jail.allow_raw_sockets=1

downside: raw sockets enabled in all jails.

Thanks.
Valeri

On Sat, August 24, 2013 10:26 pm, Mike C. wrote:
> This host is Freebsd 8, and the config "per" jail doesn't work!
>
> However, I friend of mine confirmed me it does work on FreeBSD 9 hosts!
>
>
> --
> Melhores Cumprimentos // Best Regards
> ------------------------------------------------------------------------
Miguel Clara
> *nix Sys Admin Freelance
>
>
> http://www.linkedin.com/in/miguelmclara/
> http://about.me/miguelmclara
> ------------------------------------------------------------------------
_______________________________________________
> freebsd-jail@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-jail
> To unsubscribe, send any mail to "freebsd-jail-unsubscribe@freebsd.org"
>


++++++++++++++++++++++++++++++++++++++++
Valeri Galtsev
Sr System Administrator
Department of Astronomy and Astrophysics
Kavli Institute for Cosmological Physics
University of Chicago
Phone: 773-702-4247
++++++++++++++++++++++++++++++++++++++++

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?58331.68.255.103.36.1377403662.squirrel>