Two jail questions

JD jd1008 at
Thu Oct 19 17:44:16 UTC 2017

On 10/19/2017 11:32 AM, Steve Kargl wrote:
> 1) If an application (e.g., sshd) needs to reach the internet from a
>     jail, is it required to have the host system running pf (or other
>     packet filtering software)?
> 2) Suppose I have to classes of users on a system: normal users and
>     guest users.  For normal users (including those that are members
>     of the wheel group), I would like those individuals to be able
>     to use ssh to connect to the host system.  For guest users, I
>     want to isolate those users in a jailed environment.  Thus, I'll
>     have sshd running in both the host and jail.  How do I setup
>     such a scheme?
You might want to read

More information about the freebsd-questions mailing list