How to start a firewall in a vimage jail
Joe
fbsd8 at a1poweruser.com
Wed Apr 24 19:54:27 UTC 2013
Teske, Devin wrote:
> On Apr 24, 2013, at 10:33 AM, Robison, Dave wrote:
>
>> On 04/24/2013 10:13, Joe wrote:
>>> Hello
>>>
>>> I am having a very difficult time getting pf firewall to start in a vimage jail on 9.1-RELEASE.
>>>
>>> Is this at all possible?
>>>
>>> If this can be done, would you please share the details on how it's done?
>>>
>>> Thanks
>>>
>> Vimage doesn't yet support PF. IPFW works, however.
>>
>
> Although one can successfully compile a kernel that has both the VIMAGE option and
> "device pf" enabled, I've never tried pf inside a vimage.
>
> Maybe someone with some good pf experience can give it a go.
>
> I know ipfw works all the way.
>
> And as we (Joe and I) explored already, a kernel with IPFILTER option (for ipf)
> will not work with VIMAGE (kernel panic at boot).
ok lets change the question from setting up pf inside of a vimage jail
to how to set up ipfw to run from inside of a vimage jail.
More information about the freebsd-jail
mailing list