setfib with jail
Mykola Dzham
i at levsha.me
Fri Feb 5 18:02:54 UTC 2010
Albert Shih wrote:
> Hi all.
>
> I'm trying to make setfib working with jail. I'm not sure to do correctly,
> but I'm sure it's not working.
>
> So this is what I do :
>
> - Rebuild kernel with
>
> option ROUTETABLES=4
>
> - Re-install the kernel, reboot
>
> - Stop the jail
>
> - flush all route (not default) on 0 fib
>
> - create route in 1 fib
>
> setfib 1 route add default xxx.yyy.zzz.ttt
>
> - add
>
> jail_name_fib="1"
>
> in my rc.conf
>
> - start the jail with
>
> /etc/rc.d/jail start name
>
>
> ---> and it's not working because when I do
>
> jexec Jail_ID bash
> netstat -rn
>
> I see the 0 fib.
>
> What's wrong ?
Try to start ssh in jail, ssh into jail and run netstat -rn
fib binds to process and childs, not to jail - jexec and childs started
with your current fib, not with jail fib.
--
LEFT-(UANIC|RIPE)
JID: levsha at jabber.net.ua
PGP fingerprint: 1BCD 7C80 2E04 7282 C944 B0E0 7E67 619E 4E72 9280
More information about the freebsd-jail
mailing list