Date: Thu, 30 May 2013 12:50:56 +0000 (UTC) From: Mogamat Abrahams <lists@tabits.co.za> To: freebsd-jail@freebsd.org Subject: Re: Cant reach Jailed services from internet. Message-ID: <loom.20130530T144859-588@post.gmane.org> References: <loom.20130527T091739-282@post.gmane.org> <cc5f425486d0fc06e1ddc0a8cbe300ad@nanogene.org> <loom.20130527T215634-190@post.gmane.org> <20130528145629.X55451@sola.nimnet.asn.au> <20130528080719.GA11195@eik.bme.hu> <loom.20130528T180339-694@post.gmane.org> <loom.20130529T091557-794@post.gmane.org> <51A5F743.7080307@a1poweruser.com>
next in thread | previous in thread | raw e-mail | index | archive | help
> > Do you have gateway_enable="YES" statement in the host's rc.conf? Added it and not difference. > > Is the jails /etc/resolv.conf populated with the correct info? > Yes, name resolution works ok - i can reach out from the jail to other services on the internet. > You said "Netstat on the host and jail also show services > listening on those addresses on the correct ports." > > If what you mean is the host has processes listening on the SAME > ip address / ports as the jails are listening on, then your jails > will never get any unsolicited traffic because the host always gets > access to that traffic first and processes it without the jail ever > knowing about it. I only have sshd configured on the host, that on the 67. ip address. So I assume those listening ports are coming from the jail as its on the same IP and ports 80 and 81 Any other suggestions? M
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?loom.20130530T144859-588>