Date: Sun, 25 Aug 2013 13:43:28 +0100 From: "Miguel C." <miguelmclara@gmail.com> To: galtsev@kicp.uchicago.edu,Valeri Galtsev <galtsev@kicp.uchicago.edu> Cc: freebsd-jail@freebsd.org Subject: Re: connect -1 errno 1 Operation not permitted with specific user (nagios) Message-ID: <8c5f6574-5a12-4e39-b097-0d696671cfee@email.android.com> In-Reply-To: <58331.68.255.103.36.1377403662.squirrel@cosmo.uchicago.edu> References: <52197976.3020405@gmail.com> <58331.68.255.103.36.1377403662.squirrel@cosmo.uchicago.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
Sorry I should have mentioned he did this with ezjails. I have a FreeBSD 9.1 at home with ezjails but I can only test this tomorrow.
Valeri Galtsev <galtsev@kicp.uchicago.edu> wrote:
>Mine was FreeBSD 9.1, amd64, and "per jail" config didn't work for me.
>I
>configure jails in /etc/rc.conf and start them on boot by enabling them
>in
>/etc/rc.conf (jail_enable="YES"), or start, stop, restart using
>
>/etc/rc.d/jail [start|stop|restart]
>
>For those who didn't see previous discussion, it was about suggested by
>one of real experts elegant per jail enabling access to raw sockets
>which
>should work if one does this
>
>>> > Putting this in /etc/rc.conf:
>>> >
>>> > jail_${JailName}_parameters="allow.raw_sockets=1"
>
>For me it didn't work, so I have to enable raw sockets this way:
>
>sysctl security.jail.allow_raw_sockets=1
>
>and restart jail
>
>or by adding into /etc/sysctl.conf
>
>security.jail.allow_raw_sockets=1
>
>downside: raw sockets enabled in all jails.
>
>Thanks.
>Valeri
>
>On Sat, August 24, 2013 10:26 pm, Mike C. wrote:
>> This host is Freebsd 8, and the config "per" jail doesn't work!
>>
>> However, I friend of mine confirmed me it does work on FreeBSD 9
>hosts!
>>
>>
>> --
>> Melhores Cumprimentos // Best Regards
>>
>------------------------------------------------------------------------
>Miguel Clara
>> *nix Sys Admin Freelance
>>
>>
>> http://www.linkedin.com/in/miguelmclara/
>> http://about.me/miguelmclara
>>
>------------------------------------------------------------------------
>_______________________________________________
>> freebsd-jail@freebsd.org mailing list
>> http://lists.freebsd.org/mailman/listinfo/freebsd-jail
>> To unsubscribe, send any mail to
>"freebsd-jail-unsubscribe@freebsd.org"
>>
>
>
>++++++++++++++++++++++++++++++++++++++++
>Valeri Galtsev
>Sr System Administrator
>Department of Astronomy and Astrophysics
>Kavli Institute for Cosmological Physics
>University of Chicago
>Phone: 773-702-4247
>++++++++++++++++++++++++++++++++++++++++
--
Sent from my Android device with K-9 Mail. Please excuse my brevity.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?8c5f6574-5a12-4e39-b097-0d696671cfee>