freebsd jails
Anish Mistry
amistry at am-productions.biz
Thu Dec 7 08:01:47 PST 2006
On Thursday 07 December 2006 10:18, Greg Barniskis wrote:
> Denzil Kelly wrote:
> > I need to implement web content filtering using squidguard and/or
> > dansguardian for several locations. Each site has different
> > filtering requirements. I want to know if it is possible to do
> > this using a jail for each site(provided that I have sufficiently
> > powerful hardware).
>
> Should not be too difficult to implement.
>
> > I want to
> > have a different IP address for each jail.
>
> A unique IP for each jail is required in any case.
>
> > If this is possible do I need to
> > have a different NIC for each jail?
>
> Nope. Just use aliases in rc.conf for the one NIC. For example, if
> I have a NIC fxp0, on a host with two jails:
>
> ifconfig_fxp0="inet 192.168.0.1 netmask 255.255.255.0"
> ifconfig_fxp0_alias0="inet 192.168.0.2 netmask 255.255.255.255"
> ifconfig_fxp0_alias1="inet 192.168.0.3 netmask 255.255.255.255"
>
> Note the alias masks are all ones -- that's not a typo.
For 6.2 and above you don't need the alias lines anymore, the
following works just fine.
jail_list="wwwtest"
# wwwtest jail
jail_wwwtest_interface="vr0"
jail_wwwtest_ip="192.168.1.61"
jail_wwwtest_hostname="wwwtest.example.org"
jail_wwwtest_rootdir="/jail/wwwtest"
jail_wwwtest_devfs_enable="YES"
jail_wwwtest_devfs_ruleset="devfsrules_jail"
--
Anish Mistry
amistry at am-productions.biz
AM Productions http://am-productions.biz/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20061207/76c25971/attachment.pgp
More information about the freebsd-questions
mailing list