bind host service to jail ip?

Wed Oct 7 15:42:41 UTC 2015

Marko Cupać wrote on 10/07/2015 16:15:

[...]

> - If I ran openntpd in host and bound it to jails' ip addresses, would
>    clients be able to sync? If so, are there any negative implications
>    to this?

I don't know if somethng has been changed over time, but if you run some 
service in host on IP assigned to jail on port not used in jail, there 
will be no conflict and service will be available to public

e.g: ntpd on host listening on all available IP addresses

# sockstat -4l | grep 123
root     ntpd       1186  20 udp4   *:123                 *:*
root     ntpd       1186  22 udp4   192.168.22.56:123     *:*
root     ntpd       1186  23 udp4   192.168.23.43:123     *:*
root     ntpd       1186  24 udp4   xxx.yyy.zz.27:123     *:*
root     ntpd       1186  25 udp4   xxx.yyy.zz.28:123     *:*
root     ntpd       1186  26 udp4   xxx.yyy.zz.29:123     *:*
root     ntpd       1186  27 udp4   xxx.yyy.zz.30:123     *:*
root     ntpd       1186  28 udp4   xxx.yyy.zz.31:123     *:*
root     ntpd       1186  29 udp4   xxx.yyy.zz.32:123     *:*
root     ntpd       1186  30 udp4   xxx.yyy.zz.33:123     *:*
root     ntpd       1186  31 udp4   xxx.yyy.zz.34:123     *:*
root     ntpd       1186  32 udp4   xxx.yyy.zz.35:123     *:*
root     ntpd       1186  33 udp4   xxx.yyy.zz.119:123    *:*
root     ntpd       1186  36 udp4   127.0.0.1:123         *:*
root     ntpd       1186  38 udp4   10.13.26.1:123        *:*
root     ntpd       1186  39 udp4   10.13.25.1:123

There are 7 jails, each with one or more IP addresses. No problem.

Miroslav Lachman