From owner-freebsd-questions@FreeBSD.ORG Wed Feb 20 18:59:59 2013 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.FreeBSD.org [8.8.178.115]) by hub.freebsd.org (Postfix) with ESMTP id C2C17284 for ; Wed, 20 Feb 2013 18:59:59 +0000 (UTC) (envelope-from Devin.Teske@fisglobal.com) Received: from mx1.fisglobal.com (mx1.fisglobal.com [199.200.24.190]) by mx1.freebsd.org (Postfix) with ESMTP id 91266CB7 for ; Wed, 20 Feb 2013 18:59:59 +0000 (UTC) Received: from smtp.fisglobal.com ([10.132.206.15]) by ltcfislmsgpa07.fnfis.com (8.14.5/8.14.5) with ESMTP id r1KIxv5A019908 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=NOT); Wed, 20 Feb 2013 12:59:57 -0600 Received: from LTCFISWMSGMB21.FNFIS.com ([10.132.99.23]) by LTCFISWMSGHT04.FNFIS.com ([10.132.206.15]) with mapi id 14.02.0309.002; Wed, 20 Feb 2013 12:59:57 -0600 From: "Teske, Devin" To: Bernt Hansson , Jeff Tipton Subject: RE: jail and networking Thread-Topic: jail and networking Thread-Index: AQHOD4SVocHfXKmkP0qgJ0SlOgMpJ5iC7bDLgAB7SgCAAAbqgIAABF0A//+lAL0= Date: Wed, 20 Feb 2013 18:59:56 +0000 Message-ID: <13CA24D6AB415D428143D44749F57D7201EABC1F@ltcfiswmsgmb21> References: <5124F505.4040906@bananmonarki.se> <13CA24D6AB415D428143D44749F57D7201EABA71@ltcfiswmsgmb21> <51250B20.4000308@bananmonarki.se> <512510ED.6080807@mail.com>,<51251496.4050701@bananmonarki.se> In-Reply-To: <51251496.4050701@bananmonarki.se> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: x-originating-ip: [10.132.253.120] Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10432:5.9.8327, 1.0.431, 0.0.0000 definitions=2013-02-20_06:2013-02-20,2013-02-20,1970-01-01 signatures=0 Cc: "freebsd-questions@freebsd.org" , "Teske, Devin" X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 20 Feb 2013 18:59:59 -0000 On Wed, 20 Feb 2013, Bernt Hansson wrote: > On 2013-02-20 19:07, Jeff Tipton wrote: > > On 02/20/2013 19:42, Bernt Hansson wrote: > >> On 2013-02-20 17:23, Teske, Devin wrote: > >>> On Wed, 20 Feb 2013, Bernt Hansson wrote: > >>> > >>>> Hello list! > >>>> > >>>> I dont seem to get net working in a test jail. > >>>> > >>>> These I've tried; > >>>> > >>>> ftp, fetch, telnet > >>>> > >>>> They time out. > >>>> > >>>> Ssh sort of work. > >>>> > >>>> 32bit# ssh 10.0.0.3 > >>>> ssh_askpass: exec(/usr/local/bin/ssh-askpass): No such file or > >>>> directory > >>>> Host key verification failed. > >>>> > >>>> jail is 8.3-STABLE i386 GENERIC > >>>> > >>>> host is FreeBSD 8.3-STABLE amd64 GENERIC > >>>> > >>>> I'm sure you want more info so just tell me what info. > >>> > >>> Commonly the problem is that you are "jexec'd" into the jail and I > >>> find that tools like ssh, ftp, telnet, etc. don't work when you're in > >>> the jail via "jexec" but instead what works way better is if you ssh > >>> into the jail (via the jail'd ssh process of course). > >>> > >>> Does that seem to be the case in your situation? > >> > >> If you mean this sshd IsJ 0:00,00 /usr/sbin/sshd > >> > >> Then no. > >> > >> %ssh 10.0.0.10 ssh: connect to host 10.0.0.10 port 22: Operation timed > >> out > >> > >> I did have an alias on the host to the jail's ip. > >> Tried to restart the jail it went fine, but now I can't jexec in to > >> the jail. > >> > >> testbox# jexec 1 tcsh > >> jexec: jail_attach(1): Invalid argument > >> > >> Sooo... I'm kind of out of ideas. >=20 > > What does "jls" command say? If you have restarted your jail, it's ID > > most likely has changed. >=20 > The ID did change, didn't know about that, thank you. >=20 > But still, sshd isn't running in the jail >=20 > 32bit# ps ax > PID TT STAT TIME COMMAND > 2385 ?? IsJ 0:00,00 sendmail: Queue runner@00:30:00 for > /var/spool/clientmqueue (sendmail) > 2391 ?? SsJ 0:00,00 /usr/sbin/cron -s > 2464 0 SJ 0:00,01 tcsh > 2482 0 R+J 0:00,00 ps ax >=20 > testbox# ps ax | grep J > 2385 ?? IsJ 0:00,00 sendmail: Queue runner@00:30:00 for > /var/spool/clientmqueue (sendmail) > 2391 ?? SsJ 0:00,00 /usr/sbin/cron -s > 2488 0 S+ 0:00,00 grep J >=20 > testbox is the host. A stab in the dark, but... Did you add sshd_enable=3D"YES" to the jail's rc.conf(5)? --=20 Devin _____________ The information contained in this message is proprietary and/or confidentia= l. If you are not the intended recipient, please: (i) delete the message an= d all copies; (ii) do not disclose, distribute or use the message in any ma= nner; and (iii) notify the sender immediately. In addition, please be aware= that any message addressed to our domain is subject to archiving and revie= w by persons other than the intended recipient. Thank you.