From owner-freebsd-jail@FreeBSD.ORG  Mon Jan 10 15:45:54 2011
Return-Path: <owner-freebsd-jail@FreeBSD.ORG>
Delivered-To: freebsd-jail@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id B0AF81065670
	for <freebsd-jail@freebsd.org>; Mon, 10 Jan 2011 15:45:54 +0000 (UTC)
	(envelope-from stb@lassitu.de)
Received: from gilb.zs64.net (gilb.zs64.net [IPv6:2001:470:1f0b:105e::1ea])
	by mx1.freebsd.org (Postfix) with ESMTP id 761158FC19
	for <freebsd-jail@freebsd.org>; Mon, 10 Jan 2011 15:45:54 +0000 (UTC)
Received: by gilb.zs64.net (Postfix, from stb@lassitu.de) id C4EFC75537;
	Mon, 10 Jan 2011 16:45:52 +0100 (CET)
Mime-Version: 1.0 (Apple Message framework v1082)
Content-Type: text/plain; charset=iso-8859-1
From: Stefan Bethke <stb@lassitu.de>
In-Reply-To: <4D2B179C.8000408@pean.org>
Date: Mon, 10 Jan 2011 16:45:51 +0100
Content-Transfer-Encoding: quoted-printable
Message-Id: <E0642C16-03E9-4CBC-BADA-4ABC78B6C218@lassitu.de>
References: <4D2B179C.8000408@pean.org>
To: =?iso-8859-1?Q?Peter_Ankerst=E5l?= <peter@pean.org>
X-Mailer: Apple Mail (2.1082)
Cc: freebsd-jail@freebsd.org
Subject: Re: Multiple interfaces
X-BeenThere: freebsd-jail@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Discussion about FreeBSD jail\(8\)" <freebsd-jail.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-jail>,
	<mailto:freebsd-jail-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-jail>
List-Post: <mailto:freebsd-jail@freebsd.org>
List-Help: <mailto:freebsd-jail-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-jail>,
	<mailto:freebsd-jail-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 10 Jan 2011 15:45:54 -0000

Am 10.01.2011 um 15:28 schrieb Peter Ankerst=E5l:

> I want access to a public and a private network from a jail.
>=20
> Can I configure a jail with multiple interfaces?

Yes, see rc.conf(5):
     jail_<jname>_ip
                 (str) Unset by default.  Set to the (primary) IPv4 =
and/or
                 IPv6 address(es) assigned to the jail.  The argument =
can be a
                 sole address or a comma separated list of addresses.  =
Addi-
                 tionally each address can be prefixed by the name of an
                 interface followed by a pipe to overwrite
                 jail_<jname>_interface or jail_interface and/or =
suffixed by a
                 netmask, prefixlen or prefix.  In case no netmask, =
prefixlen
                 or prefix is given, `/32' will be used for IPv4 and =
`/128'
                 will be used for an IPv6 address.  If no address is =
given for
                 the jail then the jail will be started with no =
networking
                 support.

Assuming that the private and the public networks are attached to em0 =
and em1, respectively, you'd set
 jail_myjail_ip=3D"em0|172.17.43.3,em1|192.0.2.27"
in rc.conf.


Stefan

--=20
Stefan Bethke <stb@lassitu.de>   Fon +49 151 14070811