jail

Thomas Spreng spreng at socket.ch
Thu May 15 00:10:55 PDT 2003


hi,

> 2) I am having trouble connecting jail to the internet.
> here is an output of my ifconfig
> harry at requiem:/home/harry# ifconfig rl0
> rl0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
>        inet 209.94.197.222 netmask 0xffffffe0 broadcast 209.94.197.223
>        inet6 fe80::230:f1ff:fe44:9768%rl0 prefixlen 64 scopeid 0x1
>        inet 192.168.1.223 netmask 0xffffff00 broadcast 192.168.1.255
>        ether 00:30:f1:44:97:68
>        media: Ethernet autoselect (10baseT/UTP)
>        status: active

afaik, inet aliases need a netmask of 0xffffffff.

> This is how i start jail
> harry at requiem:/home/harry# cat /usr/local/etc/rc.d/jail.sh
> #!/bin/sh
> mount -t procfs proc /usr/jail1/proc
> jail /usr/jail1 jailhost.requiem.digi-data.com 192.168.1.223 /bin/sh /etc/rc
> -
> I HAD this entry in my ipnat.conf but it hangs my connection
> harry at requiem:/home/harry# cat /etc/ipnat.conf
> map rl0 209.94.197.222/32 -> 192.168.1.223/32

your nat mapping doesn't make much sense to me. You might want to map your internal ip
adress(es) to your external one. Which would result in the following ipnat rule:
map rl0 192.168.1.223/32 -> 0.0.0.0/32

cheers,
	tom


More information about the freebsd-questions mailing list