Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 15 May 2003 09:10:46 +0200
From:      Thomas Spreng <spreng@socket.ch>
To:        questions@freebsd.org
Subject:   Re: jail
Message-ID:  <20030515071046.GA13951@rock.stable.ch>
In-Reply-To: <Law9-F52ka4ZxNIeA8U000216c2@hotmail.com>
References:  <Law9-F52ka4ZxNIeA8U000216c2@hotmail.com>

next in thread | previous in thread | raw e-mail | index | archive | help
hi,

> 2) I am having trouble connecting jail to the internet.
> here is an output of my ifconfig
> harry@requiem:/home/harry# ifconfig rl0
> rl0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
>        inet 209.94.197.222 netmask 0xffffffe0 broadcast 209.94.197.223
>        inet6 fe80::230:f1ff:fe44:9768%rl0 prefixlen 64 scopeid 0x1
>        inet 192.168.1.223 netmask 0xffffff00 broadcast 192.168.1.255
>        ether 00:30:f1:44:97:68
>        media: Ethernet autoselect (10baseT/UTP)
>        status: active

afaik, inet aliases need a netmask of 0xffffffff.

> This is how i start jail
> harry@requiem:/home/harry# cat /usr/local/etc/rc.d/jail.sh
> #!/bin/sh
> mount -t procfs proc /usr/jail1/proc
> jail /usr/jail1 jailhost.requiem.digi-data.com 192.168.1.223 /bin/sh /etc/rc
> -
> I HAD this entry in my ipnat.conf but it hangs my connection
> harry@requiem:/home/harry# cat /etc/ipnat.conf
> map rl0 209.94.197.222/32 -> 192.168.1.223/32

your nat mapping doesn't make much sense to me. You might want to map your internal ip
adress(es) to your external one. Which would result in the following ipnat rule:
map rl0 192.168.1.223/32 -> 0.0.0.0/32

cheers,
	tom



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030515071046.GA13951>