Hi All I installed FBSD 8 and got some jails up using the instructions in the handbook. My question is this. Do you still have to use the alias IP address on the host that you want the jail to have? Example: I want my jail to have ip address 192.168.2.5 I put these entries in rc.conf on the host #Jail Config jail_enable="YES" jail_set_hostname_allow="NO" jail_list="www" jail_www_hostname="www.mydomain.com" jail_www_ip="192.168.2.5" jail_www_rootdir="/usr/home/jails/www" jail_www_devfs_enable="YES" Do I also need this entry below? ifconfig_vr0_alias0="inet 192.168.2.5 netmask 255.255.255.0" I'm asking because I find that if I do not put the above alias entry in, I cannot ssh in to the box and I wasn't sure if I was doing something wrong.
Hi On Mon, Dec 14, 2009 at 9:54 AM, Peter Fraser <petros.fraser@gmail.com> wrote:> Hi All > > I installed FBSD 8 and got some jails up using the instructions in the > handbook. My question is this. Do you still have to use the alias IP > address on the host that you want the jail to have? > > Example: I want my jail to have ip address 192.168.2.5 > > I put these entries in rc.conf on the host > > #Jail Config > jail_enable="YES" > jail_set_hostname_allow="NO" > jail_list="www" > jail_www_hostname="www.mydomain.com" > jail_www_ip="192.168.2.5" > jail_www_rootdir="/usr/home/jails/www" > jail_www_devfs_enable="YES" > > > Do I also need this entry below? > ifconfig_vr0_alias0="inet 192.168.2.5 netmask 255.255.255.0" >No. Alternatively, you can add the following line to rc.conf: jail_www_interface="vr0" That will bind the jail (with the specified IP) to that interface. /etc/defaults/rc.conf has a good listing of all jail(8) options. Regards, -- Glen Barber
You shouldn't need the ifconfig entry no. The default config for a jail doesn't start sshd, do you have that configured in your "jails" /etc/rc.conf? Regards Steve ----- Original Message ----- From: "Peter Fraser" <petros.fraser@gmail.com> ...> Do I also need this entry below? > ifconfig_vr0_alias0="inet 192.168.2.5 netmask 255.255.255.0" > > I'm asking because I find that if I do not put the above alias entry > in, I cannot ssh in to the box and I wasn't sure if I was doing > something wrong.===============================================This e.mail is private and confidential between Multiplay (UK) Ltd. and the person or entity to whom it is addressed. In the event of misdirection, the recipient is prohibited from using, copying, printing or otherwise disseminating it or any information contained in it. In the event of misdirection, illegible or incomplete transmission please telephone +44 845 868 1337 or return the E.mail to postmaster@multiplay.co.uk.