thr3ads.net - freebsd security - Filtering jail IP traffic [Aug 2005]

If this information is useful, please help other people find it:
Share via:

Anders Nordby

2005-Aug-26 12:08 UTC

Filtering jail IP traffic

Hi,

IP traffic from one jail to another jail, arrives on destination jail on
lo0 having the destination jails IP as source IP. Why not the source
jail's IP address?

How can I filter traffic from one jail to another, using ipfw of ipf?

Cheers,

-- 
Anders.

Attila Nagy

2005-Aug-26 14:41 UTC

head link

Filtering jail IP traffic

Anders Nordby wrote:> IP traffic from one jail to another jail, arrives on destination jail on
> lo0 having the destination jails IP as source IP. Why not the source
> jail's IP address?
> How can I filter traffic from one jail to another, using ipfw of ipf?AFAIK (at least with pf), you can't really filter on loopback 
interfaces. Last time I tried, I could not filter on TCP or UDP ports, 
filtering from and to IP and protocol worked.

-- 
Attila Nagy                                   e-mail: Attila.Nagy@fsn.hu
Adopt a directory on our free software   phone @work: +361 371 3536
server! http://www.fsn.hu/?f=brick             cell.: +3630 306 6758

Seemingly Similar Threads

Search for more apparently analagous threads

freebsd security - Aug 2005 - Filtering jail IP traffic

Filtering jail IP traffic

Filtering jail IP traffic

Seemingly Similar Threads