Unable to get jail paramters values
Andrew Hotlab
andrew.hotlab at hotmail.com
Tue Oct 24 18:34:42 UTC 2017
Sorry for the stupid question, but I just realised that I'm unable
to know the real value of a specific parameter. For example,
I know that the allow.raw_sockets is set to "1" for the jail "jtest01",
because I set so in the /etc/jail.conf file, but when I type the sysctl
command inside the jail, it tells me that the value is "0" (which
I guess is the default value).
root at jtest01:~ # sysctl security.jail.jailed
security.jail.jailed: 1
root at jtest01:~ # sysctl security.jail.param.allow.raw_sockets
security.jail.param.allow.raw_sockets: 0
root at jtest01:~ # ping -c2 8.8.8.8
PING 8.8.8.8 (8.8.8.8): 56 data bytes
64 bytes from 8.8.8.8: icmp_seq=0 ttl=55 time=11.310 ms
64 bytes from 8.8.8.8: icmp_seq=1 ttl=55 time=9.525 ms
--- 8.8.8.8 ping statistics ---
2 packets transmitted, 2 packets received, 0.0% packet loss
round-trip min/avg/max/stddev = 9.525/10.418/11.310/0.892 ms
I noticed the same behaviour on both FreeBSD 10.3 and 11.1.
How can I get real jail.param values for a specific running jail?
Thanks.
Andrew
More information about the freebsd-jail
mailing list