Ping from jail not permitted error
Aiza
aiza21 at comclark.com
Sun Apr 18 03:32:30 UTC 2010
kurt seel wrote:
> Aiza wrote:
>> My jail has public internet access because i can do pkg_add -r
>> unix2dos and the package does install. But when I enter ping -c 2
>> freebsd.org I get message "ping: socket: Operation not permitted"
>> There is no firewall running in the jail.
>>
>> Any ideas would be helpful.
>>
>> Thanks
>
> ICMP is disallowed by defaut for jails, see the sysctl :
> security.jail.allow_raw_sockets
> There are good reasons for this default, so if you test remember to set it
> back when you are done.
> Also, on a point of style, jails in their current form (see VIMAGE)
> do not get a network stack of their own so they don't have a firewall but
> share the hosts' network and firewall, etc.
>
>
I don't have man vimage. Is this part of Freebsd?
More information about the freebsd-questions
mailing list