Jail on 2 interfaces?
Mel Flynn
mel.flynn+fbsd.hackers at mailing.thruhere.net
Wed Dec 23 02:34:12 UTC 2009
Hi,
I don't see this documented in jail(8) nor rc(8) nor defaults/rc.conf, so is
it possible to have 2 IP's on 2 ethernet interfaces? And if so, is it settable
for rc(8)?
The usage case is to have the same jailed proxy server on two seperate
internal networks. Ideally, the proxy will use one address for outgoing, so I
guess I'll need a default route or dive into the squid config.
At present I have:
ifconfig_bge0="inet 192.168.177.60 netmask 255.255.255.0"
ifconfig_em0="inet 192.168.176.60 netmask 255.255.255.0"
ifconfig_em0_alias0="inet 192.168.176.62 netmask 255.255.255.255"
jail_squid_rootdir="/usr/squid"
jail_squid_ip="192.168.177.62"
jail_squid_ip_multi0="192.168.176.62"
jail_squid_interface="bge0"
But this created the IP on bge0 even though one exists on em0. Is it as simple
as not specifying the interface and add the 177.62 alias on bge0?
Ideally I'd have a jail_$jail_ip_multi$aliasno_interface="foo0", but my main
worry is that the jail infrastructure understands the routing involved.
--
Mel
More information about the freebsd-hackers
mailing list