From owner-freebsd-stable@FreeBSD.ORG Thu Jan 8 11:14:32 2009 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 2FF2F106564A for ; Thu, 8 Jan 2009 11:14:32 +0000 (UTC) (envelope-from lists@peter.de.com) Received: from nemesis.charlie.mouhaha.de (nemesis.charlie.mouhaha.de [78.47.10.193]) by mx1.freebsd.org (Postfix) with ESMTP id D98C68FC19 for ; Thu, 8 Jan 2009 11:14:31 +0000 (UTC) (envelope-from lists@peter.de.com) Received: from localhost (nemesis.charlie.mouhaha.de [78.47.10.193]) by nemesis.charlie.mouhaha.de (Postfix) with ESMTP id 70922D32F for ; Thu, 8 Jan 2009 10:54:54 +0000 (GMT) X-Virus-Scanned: amavisd-new at mouhaha.de Received: from nemesis.charlie.mouhaha.de ([78.47.10.193]) by localhost (nemesis.charlie.mouhaha.de [78.47.10.193]) (amavisd-new, port 10024) with ESMTP id qJB81sZkFrRE for ; Thu, 8 Jan 2009 10:54:52 +0000 (GMT) Received: from nemesis.charlie.mouhaha.de (nemesis.charlie.mouhaha.de [78.47.10.193]) by nemesis.charlie.mouhaha.de (Postfix) with SMTP id 22FB3D322 for ; Thu, 8 Jan 2009 10:54:52 +0000 (GMT) Received: from dilbert.office.centralnic.com (office.centralnic.net [82.68.174.118]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by nemesis.charlie.mouhaha.de (Postfix) with ESMTPSA id B1C93D2EE; Thu, 8 Jan 2009 10:54:50 +0000 (GMT) Date: Thu, 8 Jan 2009 10:54:48 +0000 From: Oliver Peter To: spil.oss@gmail.com Message-ID: <20090108105448.4cd6dcfe@dilbert.office.centralnic.com> In-Reply-To: <5fbf03c20901080207y4b0b18beod775a8ef2887f147@mail.gmail.com> References: <5fbf03c20901080207y4b0b18beod775a8ef2887f147@mail.gmail.com> X-Mailer: Claws Mail 3.0.2 (GTK+ 2.10.4; i386-redhat-linux-gnu) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Cc: ezjail@erdgeist.org, freebsd-stable@freebsd.org, spil.oss@googlemail.com Subject: Re: Problems with network in jail X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: lists@peter.de.com List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 08 Jan 2009 11:14:32 -0000 On Thu, 8 Jan 2009 11:07:04 +0100 "Spil Oss" wrote: > Early this week, I upgraded from 7.0 to 7.1 (not having 'used' jails > on 7.0). After creating the jail with > `ezjail-admin update -i` > I created a 'ports build' jail > `ezjail-admin create build 127.0.0.3` > and forgot to add the alias to lo0, so no networking off-course. So I > added the 127.0.0.3 alias to lo0 > `ifconfig lo0 inet 127.0.0.3 alias` > and restarted the jail If you use the loopback device for your jails you have to add NAT rules to your host machine, this documentation is very useful: http://www.rootforum.de/wiki/freebsd/04_jail_infrastructure#packet_filter_einrichten (The article is in German, but the configuration stuff should be understandable anyway) -- Oliver PETER, email: oliver@peter.de.com, ICQ# 113969174 "If it feels good, you're doing something wrong." -- Coach McTavish