From owner-freebsd-questions@FreeBSD.ORG Thu Sep 29 03:25:52 2005 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 403DC16A41F for ; Thu, 29 Sep 2005 03:25:52 +0000 (GMT) (envelope-from glenn@antimatter.net) Received: from cobalt.antimatter.net (cobalt.antimatter.net [69.55.224.239]) by mx1.FreeBSD.org (Postfix) with ESMTP id F314643D4C for ; Thu, 29 Sep 2005 03:25:51 +0000 (GMT) (envelope-from glenn@antimatter.net) Received: from glenn-mobile.antimatter.net (cpe-66-91-227-82.san.res.rr.com [66.91.227.82]) (authenticated bits=0) by cobalt.antimatter.net (8.13.4/8.13.4) with ESMTP id j8T3Pm2E022915 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Wed, 28 Sep 2005 20:25:51 -0700 X-MailKey: purple frogs are falling from the sky Message-Id: <6.2.3.4.2.20050928201905.063cce00@cobalt.antimatter.net> X-Mailer: QUALCOMM Windows Eudora Version 6.2.3.4 Date: Wed, 28 Sep 2005 20:24:31 -0700 To: tsuraan , freebsd-questions@freebsd.org From: Glenn Dawson In-Reply-To: <84fb38e305092816084fdb6667@mail.gmail.com> References: <84fb38e305092816084fdb6667@mail.gmail.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Cc: Subject: Re: strange routing (?) issues with a jail X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 29 Sep 2005 03:25:52 -0000 At 04:08 PM 9/28/2005, tsuraan wrote: >I have a freebsd 5.3 machine, with a jailed off machine running in it. > Let's call them host and slave (they have seperate IP addresses and >hostnames). Within the slave, I have sshd and apache running. In the >host, I just have sshd running. From within the slave machine, I can >connect to localhost ports 80 and 22, with the expected results. From >within the host machine, I can connect to the slave's ports 80 and 22 >correctly as well. From outside that machine, I can only connect to >port 22 on the slave. Attempts to connect to port 80 on the slave >time out. > >The slave is running apache version 1.33+modssl from ports. I have it >configured with a basic vhosting setup, and it seems to work perfectly >from within the physical machine the jail is running on. Pf is >totally disabled, and it's a fresh install with no strange services >running or unnecessary packages installed. Can anyone give a hint as >to why someone external would be unable to connect to port 80, but >able to connect to port 22? Are the IP's for the host and the jail on the same network? A look at the relevant portions of rc.conf from both the host and the jail would be most helpful in troubleshooting the problem. You'll also want to make sure that sshd in the host is being told to listen only to it's IP. If you don't and there's no sshd running in the jail, you'll get a connection to the host instead of the jail. -Glenn >_______________________________________________ >freebsd-questions@freebsd.org mailing list >http://lists.freebsd.org/mailman/listinfo/freebsd-questions >To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"