From owner-freebsd-jail@FreeBSD.ORG Thu Jan 3 10:59:47 2008 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id BD69416A41B for ; Thu, 3 Jan 2008 10:59:47 +0000 (UTC) (envelope-from michel@douyere.com) Received: from smtp4-g19.free.fr (smtp4-g19.free.fr [212.27.42.30]) by mx1.freebsd.org (Postfix) with ESMTP id 8296413C461 for ; Thu, 3 Jan 2008 10:59:47 +0000 (UTC) (envelope-from michel@douyere.com) Received: from smtp4-g19.free.fr (localhost.localdomain [127.0.0.1]) by smtp4-g19.free.fr (Postfix) with ESMTP id 216B13EA12F for ; Thu, 3 Jan 2008 11:59:46 +0100 (CET) Received: from cyan.douyere.com (laf31-3-82-225-216-24.fbx.proxad.net [82.225.216.24]) by smtp4-g19.free.fr (Postfix) with ESMTP id 110F63EA0B1 for ; Thu, 3 Jan 2008 11:59:45 +0100 (CET) From: Michel To: FreeBSD-Jail Date: Thu, 3 Jan 2008 11:59:44 +0100 User-Agent: KMail/1.9.7 References: <20080102141019.3a0c9b1d@deskjail> <477CB87D.3050304@gmail.com> In-Reply-To: <477CB87D.3050304@gmail.com> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline Message-Id: <200801031159.44964.michel@douyere.com> Subject: Re: web services in host and jailed systems X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 03 Jan 2008 10:59:47 -0000 Le jeudi 3 janvier 2008, Yong Taro a =E9crit=A0: > hello, > you can welcome another jail-user. > > So far have some confusions, and need to clarify them out. > > On the host system I want to have a webserver IP1:80 that expose some > static content with not {POST,CGI} support. > On the jailed system I want to have another webserver IP2:80 that expose > some blogging services that has full HTTP support. > > Question: once the IP2 is on the same network card (alias to the IP1 - > if I got it right. IP1 is a real IP) how those two services > will serve the right users ? Did I missed something ? > > thanks. > _______________________________________________ Yes : from the man page The following frequently deployed ser- vices must have their individual configuration files modified to limit the application to listening to a specific IP address: To configure sshd(8), it is necessary to modify /etc/ssh/sshd_config. To configure sendmail(8), it is necessary to modify /etc/mail/sendmail.cf. For named(8), it is necessary to modify /etc/namedb/named.conf. And for Apache you must have a look at hpptd.conf and change=20 Listen 80 for Listen IP1:80