Loopback and jail.conf

Ivailo Tanusheff Ivailo.Tanusheff at skrill.com
Wed Jun 26 07:47:53 UTC 2013 

Mate, I do not need pf or ipfw :)
Maybe I did not describe it well, what I simply need is:

Jail 1:
  Interface em0: 192.168.0.1
  Interface lo0: 127.0.0.1

Jail 2:
  Interface em0: 192.168.0.2
  Interface lo0: 127.0.0.1

Jail 3:
  Interface em0: 192.168.0.3
  Interface lo0: 127.0.0.1

As you can see, there the same address for the loopback, which gives me an error when I start the jail:
Jail 1 starts ok.
Then when I start Jail 2:
jail: jail2: IPv4 addresses clash

What I use in jail.conf:

Jail1: ip4.addr = 192.168.0.1 , 127.0.0.1;
Jail2: ip4.addr = 192.168.0.2 , 127.0.0.1;


-----Original Message-----
From: wishmaster [mailto:artemrts at ukr.net] 
Sent: Wednesday, June 26, 2013 8:24 AM
To: Ivailo Tanusheff
Subject: Re[2]: Loopback and jail.conf


 I've forgotten. You must comment out SCTP option in kernel config and as firewall use ipfw. pf is not ready to use with VIMAGE, in -CURRENT only.

 --- Original message ---
From: "Ivailo Tanusheff" <ivailo.tanusheff at skrill.com>
Date: 25 June 2013, 18:04:37

 
> OK, but how exactly VIMAGE will help me have the same IP address (127.0.0.1) for each jail's loopback adapter (lo0)?
> 
> -----Original Message-----
> From: wishmaster [artemrts at ukr.net]
> Sent: Tuesday, June 25, 2013 5:20 PM
> To: Ivailo Tanusheff
> Subject: Re: Loopback and jail.conf
> 
> 
> You should use VIMAGE in kernel. In 9 it's quite stable.
> 
> 
> --- Original message ---
> From: "Ivailo Tanusheff" <ivailo.tanusheff at skrill.com>
> Date: 25 June 2013, 15:16:06
> 
> 
> > Hi,
> > 
> > I'm trying to use the new jail.conf configuration for several jails on a single host.
> > Due to some software limitations I need to have the loopback set on all jails, e.i. for each jail I need something like:
> > 
> > lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> metric 0 mtu 16384 
> > options=600003<RXCSUM,TXCSUM,RXCSUM_IPV6,TXCSUM_IPV6>
> > inet 127.0.0.1 netmask 0xff000000
> > 
> > How may I achieve this with the new jail.conf configuration.
> > As far as I understand so far the jails have 2 options:
> > - non-overlapping IP addresses (or)
> > - overlapping the only network interface
> > 
> > As I use 2 network interfaces - em0 on 192.168.0.x and 127.0.0.1 on loopback the both options are no good for me.
> > 
> > Is there some way to achieve my goal ?
> > 
> > Best regards,
> > Ivailo Tanusheff
> > 
> > _______________________________________________
> > freebsd-jail at freebsd.org mailing list 
> > http://lists.freebsd.org/mailman/listinfo/freebsd-jail
> > To unsubscribe, send any mail to "freebsd-jail-unsubscribe at freebsd.org"

More information about the freebsd-jail mailing list