10.0-RELEASE openvpn jail with ezjail
Mark Felder
feld at freebsd.org
Sun Jul 6 14:28:34 UTC 2014
July 6 2014 5:36 AM, "Marko Turk" wrote:
> Hi,
>
> I'm trying to create an OpenVPN jail on 10.0-RELEASE using tun device.
I have it working without issues. The only problem is that you cannot restart the daemon within the jail, you have to restart the jail.
host's /etc/rc.conf:
# needed for openvpn
gateway_enable="YES"
cloned_interfaces="tun0"
in my ezjail openvpn config:
export jail_openvpn_exec_prestart0="ifconfig tun0 10.8.0.1 10.8.0.2 netmask 255.255.255.0"
export jail_openvpn_exec_prestart1="route add -net 10.8.0.0/24 10.8.0.2"
That should get you pointed in the right direction.
More information about the freebsd-questions
mailing list