simple NAT for jails

Alejandro Imass ait at
Thu Dec 9 20:18:37 UTC 2010

On Thu, Dec 9, 2010 at 12:23 PM, Eitan Adler <lists at> wrote:
> Hi,
> I want to throw together some jails for friends to play with. I'm not
> terribly concerned about security on this machine. My goal is to do
> something like
> ezjail create james
> ezjail create jared
> ezjail create joe
> ezjail create idaho
> I have a single IP address for my computer - so I would need some kind
> of nat to allow these jails to access the outside world - and allow
> the outside world to access them.
> I've looked into pf and I guess I would need something like
> nat on nfe0 from to any -> $external_ip
> is this correct?
> Do I need anything in in /etc/pf.conf ?

you can use natd as well in rc.conf


then as root in the base system

  kldload ipdivert
  natd -n rl1

or whatever your interface is

> --
> Eitan Adler
> _______________________________________________
> freebsd-questions at mailing list
> To unsubscribe, send any mail to "freebsd-questions-unsubscribe at"

More information about the freebsd-questions mailing list