Make a jail visible in different networks

Chuck Swiger cswiger at mac.com
Mon May 14 18:28:27 UTC 2007


Hi--

On May 14, 2007, at 10:30 AM, Juan Sosa wrote:
> I have a freebsd server (192.168.1.5) running a NATed jail  
> (192.168.1.10).
>
> I set up mpd4 on this server in order to allow M$ clients access  
> our 10.5.1.0/24 vpn. Since jails can´t have more than one ip  
> address, is there a way to make 192.168.1.10 visible to the  
> 10.5.1.0/24 network without changing the jail ip address?
>
> Summarizing, I need to have my jail serving in both LAN and VPN  
> networks. Any suggestions?

There are a number of approaches: the simplest involve either adding  
static routes between your 10.5.1/24 subnet and your 192.168.1/24  
subnet, or setting up additional VPN endpoint on the 192.168.1/24  
network, or using NAT to map the jail IP onto the 10.5.1/24 netblock.

Without knowing your topology, it's hard to make more specific  
recommendations.

-- 
-Chuck

PS: Also, no need to ask the same question twice....



More information about the freebsd-questions mailing list