Date: Tue, 7 Aug 2018 19:38:55 +0100 From: Shamim Shahriar <shamim.shahriar@gmail.com> To: Philipp Vlassakakis <freebsd-en@lists.vlassakakis.de> Cc: "freebsd-questions@FreeBSD.org" <freebsd-questions@freebsd.org> Subject: Re: Jails - IPv4 and IPv6 Message-ID: <CAOyJeZT_XKwKU-hdTj_7ZXQDN6=16CxTVQH5fje_-cEWOU2JVA@mail.gmail.com> In-Reply-To: <8ACAABE6-5054-4AFC-81F1-2909F9D69EF8@lists.vlassakakis.de> References: <A7BCF1EF-7E21-4009-8C70-CA13F68B81FF@lists.vlassakakis.de> <5B6895CB.1070004@gmail.com> <8ACAABE6-5054-4AFC-81F1-2909F9D69EF8@lists.vlassakakis.de>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, 7 Aug 2018, 18:24 Philipp Vlassakakis, < freebsd-en@lists.vlassakakis.de> wrote: > > Am 06.08.2018 um 20:21 schrieb Shamim Shahriar <shamim.shahriar@gmail.com > >: > > > Hi Philipp > > I'm using both IPv4 and IPv6 in my vNet jails. The IPv4 gets configured > via the jail.conf, while v6 is via rc.conf from inside the jail, two line= s > to define v6 on epair and the gw as well. If you need, u can send you the > configurations later. > > They are quite stable, the pf on the hosts controls the access, works as > expected. > > Regards > > > I would like to configure the IP addresses outside the jails, because > customers may access these jails and I don't want customers to be able to > simply change the IP addresses which might lead to the Jail being > unreachable from the =E2=80=9Eoutside=E2=80=9C. > Hi Philipp Not sure about the validity of that premise. From within the jail I can always do ifconfig abc0 down or even add more IP in my jail, not to mention all other stupid things I can do and loose connectivity to it. In my limited understanding, I think jails are NOT designed to be a replacement for well known VPS or similar (like esxi or xen). Rather, they are your own personal VPS that share the resources of a physical server to minimize wasted resources within that physical realm. Maybe someone with a better understanding and knowledge can correct my misconceptions and provide a few links so I can correct myself. Best regards
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAOyJeZT_XKwKU-hdTj_7ZXQDN6=16CxTVQH5fje_-cEWOU2JVA>