Two jail questions
jd1008 at gmail.com
Thu Oct 19 17:44:16 UTC 2017
On 10/19/2017 11:32 AM, Steve Kargl wrote:
> 1) If an application (e.g., sshd) needs to reach the internet from a
> jail, is it required to have the host system running pf (or other
> packet filtering software)?
> 2) Suppose I have to classes of users on a system: normal users and
> guest users. For normal users (including those that are members
> of the wheel group), I would like those individuals to be able
> to use ssh to connect to the host system. For guest users, I
> want to isolate those users in a jailed environment. Thus, I'll
> have sshd running in both the host and jail. How do I setup
> such a scheme?
You might want to read
More information about the freebsd-questions