testing 11.0-RC1 vnet jails with ipfilter
CyberLeo Kitsana
cyberleo at cyberleo.net
Tue Aug 16 21:17:12 UTC 2016
On 08/16/2016 03:21 PM, Ernie Luzar wrote:
<snip>
> Issuing "ipf -FS -Fa" command from within the vnet jail gives this
> message, "open device:no such file or directory. User kernel version
> check failed.
According to ipf(8), the ipfilter utilities touch /dev/ipauth , /dev/ipl
, and /dev/ipstate . Have you checked that the devfs ruleset applied to
your jail has those unhidden?
> Issuing "ipfstat -hnio command from within the vnet jail gives this
> message, open(IPSTATE_NAME):no such file or directory.
ipfstat(8) also lists /dev/kmem ; I suspect that including this may be a
bad idea.
--
Fuzzy love,
-CyberLeo
Technical Administrator
CyberLeo.Net Webhosting
http://www.CyberLeo.Net
<CyberLeo at CyberLeo.Net>
Furry Peace! - http://www.fur.com/peace/
More information about the freebsd-jail
mailing list