IP address assignments to jails using ezjail

James B. Byrne byrnejb at harte-lyne.ca
Fri Dec 23 20:52:10 UTC 2016

On Thu, December 22, 2016 22:25, Ernie Luzar wrote:

> 3. Take ubound out of the mix by not starting that jail. Then use only
> ip addresses in your host to jail ssh command.
> 4. What is output of issuing host ssh command to a jail? Does host
> answer?

Inbound ssh to the jail works:

$ ssh -vv
OpenSSH_5.3p1, OpenSSL 1.0.1e-fips 11 Feb 2013
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Applying options for *
debug2: ssh_connect: needpriv 0
debug1: Connecting to [] port 22.
debug1: Connection established.
. . .
Password for user1 at hlldrupal:

Outbound ssh from the jail does not:

# ssh -vv
OpenSSH_7.2p2, OpenSSL 1.0.2j-freebsd  26 Sep 2016
debug1: Reading configuration data /etc/ssh/ssh_config
debug2: resolving "" port 22
debug2: ssh_connect_direct: needpriv 0
debug1: Connecting to [] port 22.
debug1: connect to address port 22: Operation timed out
ssh: connect to host port 22: Operation timed out

There is no firewall running on either the jail or the jail host.

***          e-Mail is NOT a SECURE channel          ***
        Do NOT transmit sensitive data via e-Mail
 Do NOT open attachments nor follow links sent by e-Mail

James B. Byrne                mailto:ByrneJB at Harte-Lyne.ca
Harte & Lyne Limited          http://www.harte-lyne.ca
9 Brockley Drive              vox: +1 905 561 1241
Hamilton, Ontario             fax: +1 905 561 0757
Canada  L8E 3C3

More information about the freebsd-questions mailing list