resend: multiple routing table roadmap (format fix)
Julian Elischer
julian at elischer.org
Sun Jan 6 09:56:46 PST 2008
Mykola Dzham wrote:
> Julian Elischer wrote:
>> setfib 3 /bin/sh
>>
>> now by default everythign you do uses table 3.
>> or even
>>
>> setfib 3 jail {blah}
>>
>> and all the procs in the jail use table 3. You also need to do
>> setfib 3 jexec xxx
>> for extra processes you add to the jail afterwards.
>
> Is it possible to deny setfib after setfib N /bin/sh ? Or call setfib
> from jail? If yes this can be usable for restriction jail on some
> different fib
>
I hadn't considered that..
though possibly what you want is vimage().
More information about the freebsd-net
mailing list