ICMP RAW socket error
Beeblebrox
zaphod at berentweb.com
Fri Nov 9 10:38:35 UTC 2012
My jail used to work fine but it seems a recent update broke some things. My
kernel/world has INET6 disblad and there are already 2 threads re the error
that setting causes with jails. Now this error - is it a bug or am I missing
something?
My /etc/sysctl.conf has
security.jail.allow_raw_sockets=1
I even confirm it separately before starting the jail:
# sysctl security.jail.allow_raw_sockets
* I start the jail but isc-dhcpd cannot start: unable to create icmp socket:
Operation not permitted
* I cannot ping from the jail: ping: socket: Operation not permitted
* This error also, but inetd starts: inetd[50866]: madvise() failed:
Operation not permitted
No point in setting up a dhcp debug log, the error is in the network
setting.
/etc/devfs.rules has: add path net unhide, add path 'net/*' unhide
My system is not exposed to the outside so it does not have pf / nat running
on it.
--
View this message in context: http://freebsd.1045724.n5.nabble.com/ICMP-RAW-socket-error-tp5759501.html
Sent from the freebsd-jail mailing list archive at Nabble.com.
More information about the freebsd-jail
mailing list