Date: Sat, 17 Jan 2004 09:30:20 -0800 (PST) From: Pawel Malachowski <pawmal-posting@freebsd.lublin.pl> To: freebsd-bugs@FreeBSD.org Subject: Re: kern/61483: Jail security is not honored using IP Filter Message-ID: <200401171730.i0HHUKBd002443@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
The following reply was made to PR kern/61483; it has been noted by GNATS. From: Pawel Malachowski <pawmal-posting@freebsd.lublin.pl> To: Andrew Kolchoogin <andrew@rinet.ru> Cc: FreeBSD-gnats-submit@freebsd.org Subject: Re: kern/61483: Jail security is not honored using IP Filter Date: Sat, 17 Jan 2004 18:25:27 +0100 On Sat, Jan 17, 2004 at 07:52:18PM +0300, Andrew Kolchoogin wrote: > >How-To-Repeat: > 1) Set up any jail: > > mkdir /usr/jail > cd /usr/src > make buildworld > make DESTDIR=/usr/jail installworld > cd etc > make DESTDIR=/usr/jail distribution Please show /dev content and consult with jail(8). > 2) Run shell inside jail: > > jail /usr/jail localhost 127.0.0.1 /bin/tcsh > > 3) Start 'ipfstat' command: > > ipfstat -io > > And you will see all of your IP filter rules set up outside jail. -- Paweł Małachowski
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200401171730.i0HHUKBd002443>