jail: external and localhost distinction
Dmitry Morozovsky
marck at rinet.ru
Thu Jan 29 01:39:09 PST 2009
On Thu, 29 Jan 2009, Robert Watson wrote:
RW> > am I right concluding that under FreeBSD jail there is no way to attach
RW> > two processes to the same port of external interface address and
RW> > localhost?
RW> >
RW> > I tried to move rather standard two-tier nginx(ip:80)+apache(127.1:80)
RW> > scheme into a jail and on apache start got
RW> >
RW> > [Thu Jan 29 00:09:32 2009] [crit] (48)Address already in use: make_sock:
RW> > could not bind to address 127.0.0.1 port 80
RW> >
RW> > (this is under RELENG_7 if it's relevant)
RW> >
RW> > Any thoughts? Thanks in advance.
RW>
RW> The way Jail is implemented is that the jail IP is silently substituted for
RW> the loopback IP is used. This has some downsides, and this is one of them.
RW> The virtual network stack (VIMAGE) project for FreeBSD 8.0 is intended to
RW> address this, among many other things, by providing full virtualization of
RW> all network stack data structures for jails.
Thank you for clarification, now I see this is actually expected behaviour :)
Would then starting second jail with the same root and, say, 127.10.0.1 as an
address be a workaround?
--
Sincerely,
D.Marck [DM5020, MCK-RIPE, DM3-RIPN]
[ FreeBSD committer: marck at FreeBSD.org ]
------------------------------------------------------------------------
*** Dmitry Morozovsky --- D.Marck --- Wild Woozle --- marck at rinet.ru ***
------------------------------------------------------------------------
More information about the freebsd-stable
mailing list