[Bug 178480] [ipfw] dynamically loaded ipfw with a vimage kernel don't work.
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Tue Apr 21 13:14:43 UTC 2015
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=178480
smithi at nimnet.asn.au changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |smithi at nimnet.asn.au
--- Comment #3 from smithi at nimnet.asn.au ---
> I can report that as for FBSD 10.1 there are no filtering problems when
> using a dynamically loaded ipfw for firewalling on the jail host and
> inside VIMAGE jails. Only ipfw logging inside VIMAGE jails does not work.
"Only logging inside VIMAGE jails does not work." is the main issue of
this PR and of 178482 (in which I foolishly attempted to participate :)
so while this is mostly duplication, is the issue itself still unresolved?
Is it to be expected that ipfw in a VNET jail can't log to /var/log/security
specifically? Or can it, with particular jail configuration? Is this a
VNET jail issue generally, or an ipfw issue specifically?
Sorry, but I'm not in a position to test my own curiousity lately, but
it seems a strange limitation on ipfw functionality in the jail unless
explained by valid but non-obvious security concerns?
cheers, Ian
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-ipfw
mailing list