From owner-freebsd-questions  Mon Nov 19 22:11:38 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from falcon.prod.itd.earthlink.net (falcon.mail.pas.earthlink.net [207.217.120.74])
	by hub.freebsd.org (Postfix) with ESMTP id 7025437B405
	for <freebsd-questions@freebsd.org>; Mon, 19 Nov 2001 22:11:36 -0800 (PST)
Received: from dialup-209.244.107.81.dial1.sanjose1.level3.net ([209.244.107.81] helo=blossom.cjclark.org)
	by falcon.prod.itd.earthlink.net with esmtp (Exim 3.33 #1)
	id 166487-00022n-00; Mon, 19 Nov 2001 22:11:35 -0800
Received: (from cjc@localhost)
	by blossom.cjclark.org (8.11.6/8.11.3) id fAK6B8M02620;
	Mon, 19 Nov 2001 22:11:08 -0800 (PST)
	(envelope-from cjc)
Date: Mon, 19 Nov 2001 22:11:08 -0800
From: "Crist J. Clark" <cristjc@earthlink.net>
To: francisv@dagupan.com
Cc: freebsd-questions@FreeBSD.ORG
Subject: Re: Help with setting up jail
Message-ID: <20011119221108.X69555@blossom.cjclark.org>
Reply-To: cjclark@alum.mit.edu
References: <10F29E27A956D511B0940050DA8D86A9340BAA@apmail.dagupan.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <10F29E27A956D511B0940050DA8D86A9340BAA@apmail.dagupan.com>; from francisv@dagupan.com on Tue, Nov 20, 2001 at 10:42:59AM +0800
X-URL: http://people.freebsd.org/~cjc/
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

On Tue, Nov 20, 2001 at 10:42:59AM +0800, francisv@dagupan.com wrote:
> Hi,
> 
> This is my first time to configure a jailed environment on FreeBSD
> 4.4-STABLE. I have read the `man jail(8)' and successfully installed the
> jail directory tree:
> 
>      D=/here/is/the/jail
>      cd /usr/src
>      make world DESTDIR=$D
>      cd etc
>      make distribution DESTDIR=$D NO_MAKEDEV=yes
>      cd $D/dev
>      sh MAKEDEV jail
>      cd $D
>      ln -sf dev/null kernel
> 
> But once inside the jail environment, I could not ping nor contact the
> outside world (even the parent environment). It displays an error:
> 
> 	ping: socket: Operation not permitted
> 
> How can I install other packages if I can't even ping the parent host?

ping(8) send out the ICMP echo datagram on a raw socket. You can't
open raw sockets in a jailed environment. You cannot ping(8). Opening
TCP connections or sending UDP datagrams should work fine. Try
traceroute(8) or telnet(1).
-- 
Crist J. Clark                     |     cjclark@alum.mit.edu
                                   |     cjclark@jhu.edu
http://people.freebsd.org/~cjc/    |     cjc@freebsd.org

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message