From owner-freebsd-questions@FreeBSD.ORG  Sat Feb 24 21:32:49 2007
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id 10F4416A400
	for <freebsd-questions@freebsd.org>;
	Sat, 24 Feb 2007 21:32:49 +0000 (UTC)
	(envelope-from cryx-freebsd@h3q.com)
Received: from mail.h3q.com (mail.h3q.com [217.13.206.148])
	by mx1.freebsd.org (Postfix) with ESMTP id 5495413C49D
	for <freebsd-questions@freebsd.org>;
	Sat, 24 Feb 2007 21:32:48 +0000 (UTC)
	(envelope-from cryx-freebsd@h3q.com)
Received: (qmail 56878 invoked from network); 24 Feb 2007 21:32:46 -0000
Received: from unknown (HELO ?192.168.23.150?) (cryx@85.179.26.99)
	by mail.h3q.com with AES256-SHA encrypted SMTP;
	24 Feb 2007 21:32:46 -0000
Message-ID: <45E0AEFE.4080403@h3q.com>
Date: Sat, 24 Feb 2007 22:32:46 +0100
From: Philipp Wuensche <cryx-freebsd@h3q.com>
User-Agent: Thunderbird 1.5.0.9 (Macintosh/20061207)
MIME-Version: 1.0
To: Jim Stapleton <stapleton.41@gmail.com>
References: <80f4f2b20702231107p1cf7f4f3n5896aa7e8ef0ecaf@mail.gmail.com>	<200702240408.40222.h.schmalzbauer@omnisec.de>	<80f4f2b20702231921x603c759g9b143b24edfaa7d5@mail.gmail.com>	<200702240430.09674.h.schmalzbauer@omnisec.de>	<80f4f2b20702231936m9725099v6e638685273630f0@mail.gmail.com>	<80f4f2b20702231943j3fea9f4fxb3919898ad4dfc21@mail.gmail.com>	<20070224055350.GA2587@idoru.cepheid.org>
	<80f4f2b20702240505o6c7f1e36r87389f645bc86238@mail.gmail.com>
In-Reply-To: <80f4f2b20702240505o6c7f1e36r87389f645bc86238@mail.gmail.com>
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Cc: freebsd-questions@freebsd.org
Subject: Re: problems with jail
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 24 Feb 2007 21:32:49 -0000

Jim Stapleton wrote:
> 
> Issue not confused, but it did give me some "try this" tests.
> Unfortunately I still cant connect to anything outside of the jail,
> not even to the host.
> SSHing into jail does not work, into host does.
> root@elrond 07:54:40 (0) /usr/ports  > jail /jail/ legolas 92.168.1.85
> /bin/csh
> %ssh -x 192.168.1.84
> ^C
> 
> And as a last test I should have thought of before:
> root@elrond 07:59:13 (0) /usr/ports  > sysctl
> security.jail.allow_raw_sockets
> security.jail.allow_raw_sockets: 1
> root@elrond 07:59:26 (0) /usr/ports  > jail /jail/ legolas 92.168.1.85
> /bin/csh
> %ping 127.0.0.1
> PING 127.0.0.1 (127.0.0.1): 56 data bytes
> ^C

There is missing a 1 in front of 92.168.1.85

If you do ifconfig inside the jail and you don't see the ipaddr. of the
jail configured on any of the network interfaces, you did something
wrong. Either forgot to configure the ipaddr. or used the wrong in the
jail command.

greetings,
philipp