jail2 patchset 14
Oleg Dambaev
perl at ipchains.ru
Fri Dec 1 02:01:59 PST 2006
Eldar T. Zaitov wrote:
> Have tried Jail2 patchset #14 on 6.2-PRERELEASE, everything compiles and
> works ok, but resolve.
> gethostbyname always returns NULL, but host/dig works ok.
> here's an example:
>
> virtual# host mail.ru
> mail.ru has address 194.67.57.26
> mail.ru mail is handled by 10 mxs.mail.ru.
> virtual# ping mail.ru
> ping: cannot resolve mail.ru: Host name lookup failure
>
> here is some truss output of 'ping mail.ru':
> kqueue() = 4 (0x4)
> socket(PF_INET,SOCK_DGRAM,0) = 5 (0x5)
> connect(5,{ AF_INET ***.62.171.***:53 },16) ERR#22 'Invalid argument'
> close(5) = 0 (0x0)
> socket(PF_INET,SOCK_DGRAM,0) = 5 (0x5)
> connect(5,{ AF_INET ***.62.171.***:53 },16) ERR#22 'Invalid argument'
> close(5) = 0 (0x0)
> close(4) = 0 (0x0)
>
> where
> ***.62.171.***:53 is nameserver;
> *** is masked ip nodes;
>
> may be I've forgotten something?
> thank you.
Hope this would help you:
sysctl security.jail.allow_raw_sockets=1
man 8 jail
GL
More information about the freebsd-hackers
mailing list