On 22.09.2013 15:45, Fbsd8 wrote:
David Demelier wrote:
Hello there,
I wanted to use rctl within a jail to add more fine grained setting for
some users, and default ones to. But it does not seem to work. Is it
supported? Do we need to add a special flag to the jail creation?
# rctl
David Demelier wrote:
Hello there,
I wanted to use rctl within a jail to add more fine grained setting for
some users, and default ones to. But it does not seem to work. Is it
supported? Do we need to add a special flag to the jail creation?
# rctl -a loginclass:default:maxproc:deny=30
rctl
Hello there,
I wanted to use rctl within a jail to add more fine grained setting for
some users, and default ones to. But it does not seem to work. Is it
supported? Do we need to add a special flag to the jail creation?
# rctl -a loginclass:default:maxproc:deny=30
rctl: rctl_add_rule: Operation
...@fjl.co.uk
wrote:
[...]
Sorry guys - I had not intention of upsetting the EzJail fan club!
No worries there I just think it's an awesome tool. We used plain old
jails before, and we even went through the service jail path once,
but EzJail is a lot more than just lightweight easy-to-use jailing
, 2013 at 5:42 AM, Frank Leonhardt fra...@fjl.co.uk
wrote:
[...]
Sorry guys - I had not intention of upsetting the EzJail fan club!
No worries there I just think it's an awesome tool. We used plain old
jails before, and we even went through the service jail path once,
but EzJail is a lot more than
On Thu, Aug 29, 2013 at 5:03 AM, Frank Leonhardt fra...@fjl.co.uk wrote:
On 29/08/2013 09:52, Frank Leonhardt wrote:
Hi Frank thanks for taking the time to try to replicate this. Here is
all the detailed info
8.1-RELEASE
em0: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST metric 0 mtu 1500
On Thu, Aug 29, 2013 at 12:07 PM, Alejandro Imass aim...@yabarana.com wrote:
On Thu, Aug 29, 2013 at 5:03 AM, Frank Leonhardt fra...@fjl.co.uk wrote:
On 29/08/2013 09:52, Frank Leonhardt wrote:
Hi Frank thanks for taking the time to try to replicate this. Here is
all the detailed info
On Thu, Aug 29, 2013 at 5:07 PM, Patrick gibblert...@gmail.com wrote:
On Thu, Aug 29, 2013 at 12:07 PM, Alejandro Imass aim...@yabarana.com wrote:
On Thu, Aug 29, 2013 at 5:03 AM, Frank Leonhardt fra...@fjl.co.uk wrote:
On 29/08/2013 09:52, Frank Leonhardt wrote:
[...]
Aliases should have
On Thu, Aug 29, 2013 at 7:53 PM, Alejandro Imass aim...@yabarana.com wrote:
On Thu, Aug 29, 2013 at 5:07 PM, Patrick gibblert...@gmail.com wrote:
On Thu, Aug 29, 2013 at 12:07 PM, Alejandro Imass aim...@yabarana.com
wrote:
On Thu, Aug 29, 2013 at 5:03 AM, Frank Leonhardt fra...@fjl.co.uk
On28/08/2013 00:19, Patrick wrote:
On Tue, Aug 27, 2013 at 3:42 PM, Alejandro Imass aim...@yabarana.com wrote:
On Tue, Aug 27, 2013 at 6:28 PM, Patrick gibblert...@gmail.com wrote:
That's not the behaviour I see. My jail has a private and public IP.
Hi Patrick, thanks for your reply
because I don't. I
don't use EzJail - i prefer vi. Seriously, setting up a jail is very
straightforward anyway, and when I tried ezjail I found it was doing stuff I
didn't like, so dropped it early on. It was a long time ago and I've
forgotten the specifics.
I guess if you're using it your new
bottom posted)
I can confirm that you shouldn't be seeing this behaviour because I don't. I
don't use EzJail - i prefer vi. Seriously, setting up a jail is very
straightforward anyway, and when I tried ezjail I found it was doing stuff I
didn't like, so dropped it early on. It was a long time
wrote:
[...]
(Tidied up so all now bottom posted)
I can confirm that you shouldn't be seeing this behaviour because I don't. I
don't use EzJail - i prefer vi. Seriously, setting up a jail is very
straightforward anyway, and when I tried ezjail I found it was doing stuff I
didn't like, so dropped
in the case of jails. On the host
system, yes, but when a jail is bound to a particular IP, outbound
connections originate from that bound IP. At least they do for me in
all of my experience. Still wondering if you're using NAT with your
jails, as that could change things.
Nope, no NAT. I
not intention of upsetting the EzJail fan club!
No worries there I just think it's an awesome tool. We used plain old
jails before, and we even went through the service jail path once,
but EzJail is a lot more than just lightweight easy-to-use jailing.
The fact remains that I've tried to recreate
Hi,
I have a machine with several public IPs on the same NIC and I bound
one of those IPs to a jail created with EzJail. Suppose the scenario
is something like this:
em0
190.100.100.1
190.100.100.2
190.100.100.3
190.100.100.4
In the jail we are bound only to 190.100.100.4
The default router
On Tue, Aug 27, 2013 at 4:59 PM, Alejandro Imass aim...@yabarana.com wrote:
Hi,
I have a machine with several public IPs on the same NIC and I bound
one of those IPs to a jail created with EzJail. Suppose the scenario
is something like this:
em0
190.100.100.1
190.100.100.2
190.100.100.3
That's not the behaviour I see. My jail has a private and public IP.
$ ifconfig bce1
bce1: flags=8843UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST metric 0 mtu 1500
options=c01bbRXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,JUMBO_MTU,VLAN_HWCSUM,TSO4,VLAN_HWTSO,LINKSTATE
ether a4:ba:db:29:7a:1b
On Tue, Aug 27, 2013 at 6:28 PM, Patrick gibblert...@gmail.com wrote:
That's not the behaviour I see. My jail has a private and public IP.
Hi Patrick, thanks for your reply.
The issue is actually more basic and it's because the same network
card has multiple IPs on the same subnet so
Hi Alejandro,
That's how I've got things setup, too, but I'm not seeing the same
behaviour. So I was wondering if there was something different about
your setup such as using NAT to allow a jail with a private IP to
access the internet at large.
Patrick
On Tue, Aug 27, 2013 at 3:42 PM
Suszko mac...@suszko.eu:
Maciej Suszko mac...@suszko.eu wrote:
[...]
You can specify different params for each jail using _parameters, for
example:
jail_jailname_params=allow.chflags=1 allow.sysvipc=1
Sorry, my mistake - it should be jail_jailname_parameters= of course.
--
regards, Maciej Suszko
On 12. aug. 2013, at 19.46, Trond Endrestøl wrote:
If you start the jail manually using jail(8), then /etc/jail.conf
comes into play, whereas the lines in /etc/rc.conf is used during
automatic startup of the jails when the host is rebooted. The whole
arrangement seems unnecessary redundant
Shane Ambler wrote:
On 12/08/2013 21:39, Trond Endrestøl wrote:
While it is currently in beta maybe you could also try 9.3 and verify
that the shared memory update works or eliminates this configuration?
If you missed the change, 9.3 is implementing shared memory using mmap.
What 9.3
Terje Elde wrote:
On 12. aug. 2013, at 19.46, Trond Endrestøl wrote:
If you start the jail manually using jail(8), then /etc/jail.conf
comes into play, whereas the lines in /etc/rc.conf is used during
automatic startup of the jails when the host is rebooted. The whole
arrangement seems
On Tue, 13 Aug 2013 07:53-0400, Fbsd8 wrote:
What 9.3 are you talking about
9.2-RC1 is the newest available.
Is 9.3 a typo and you really mean 9.2??
PostgreSQL 9.3beta2, you'll find it in ports as
databases/postgresql93-server, etc.
... FATAL:
could not create shared memory segment: Function not implemented
I'll look into this by creating a new jail for PostgreSQL 9.2 when I
get home.
While it is currently in beta maybe you could also try 9.3 and verify that
the shared memory update works or eliminates this configuration
2013/8/11 Maciej Suszko mac...@suszko.eu:
Maciej Suszko mac...@suszko.eu wrote:
[...]
You can specify different params for each jail using _parameters, for
example:
jail_jailname_params=allow.chflags=1 allow.sysvipc=1
Sorry, my mistake - it should be jail_jailname_parameters= of course
On Mon, 12 Aug 2013 12:40+0200, David Demelier wrote:
2013/8/11 Maciej Suszko mac...@suszko.eu:
Maciej Suszko mac...@suszko.eu wrote:
[...]
You can specify different params for each jail using _parameters, for
example:
jail_jailname_params=allow.chflags=1 allow.sysvipc=1
Sorry
2013/8/12 Trond Endrestøl trond.endres...@fagskolen.gjovik.no:
On Mon, 12 Aug 2013 12:40+0200, David Demelier wrote:
2013/8/11 Maciej Suszko mac...@suszko.eu:
Maciej Suszko mac...@suszko.eu wrote:
[...]
You can specify different params for each jail using _parameters, for
example
different params for each jail using _parameters, for
example:
jail_jailname_params=allow.chflags=1 allow.sysvipc=1
Sorry, my mistake - it should be jail_jailname_parameters= of course.
--
regards, Maciej Suszko.
Thanks for your message,
However, I could not find this setting
David Demelier demelier.da...@gmail.com wrote:
2013/8/11 Maciej Suszko mac...@suszko.eu:
Maciej Suszko mac...@suszko.eu wrote:
[...]
You can specify different params for each jail using _parameters,
for example:
jail_jailname_params=allow.chflags=1 allow.sysvipc=1
Sorry, my
Suszko mac...@suszko.eu wrote:
[...]
You can specify different params for each jail using _parameters, for
example:
jail_jailname_params=allow.chflags=1 allow.sysvipc=1
Sorry, my mistake - it should be jail_jailname_parameters= of course.
--
regards, Maciej Suszko
look into this by creating a new jail for PostgreSQL 9.2 when I
get home.
While it is currently in beta maybe you could also try 9.3 and verify
that the shared memory update works or eliminates this configuration?
If you missed the change, 9.3 is implementing shared memory using mmap
On 13. aug. 2013, at 06:14, Shane Ambler free...@shaneware.biz wrote:
If you missed the change, 9.3 is implementing shared memory using mmap.
But still using sysvipc for some locks/mutexes, so doesn't allow you to run
sysvipc-free.
Terje
___
Hi,
I would like to enable sysvipc only for one jail (defined in
/etc/rc.conf). It's possible with jail.conf but this is not supported
with jails listed in /etc/rc.conf.
Is it possible without using the global jail_sysvipc_allow ?
Cheers,
--
Demelier David
David Demelier demelier.da...@gmail.com wrote:
Hi,
I would like to enable sysvipc only for one jail (defined in
/etc/rc.conf). It's possible with jail.conf but this is not supported
with jails listed in /etc/rc.conf.
Is it possible without using the global jail_sysvipc_allow ?
You can
Maciej Suszko mac...@suszko.eu wrote:
[...]
You can specify different params for each jail using _parameters, for
example:
jail_jailname_params=allow.chflags=1 allow.sysvipc=1
Sorry, my mistake - it should be jail_jailname_parameters= of course.
--
regards, Maciej Suszko.
signature.asc
Hi,
I have a number of jailed systems running - and I've been setting up ipfw
rules for them.
This is on FBSD 9.1.
'ipfw' lets you match on traffic to/from a Jail ID (JID) - however every
time jails get started / stopped their JID changes [thus breaking the
firewall rules].
I can't see
On 07/08/2013 09:28, Karl Pielorz wrote:
I have a number of jailed systems running - and I've been setting up
ipfw rules for them.
This is on FBSD 9.1.
'ipfw' lets you match on traffic to/from a Jail ID (JID) - however every
time jails get started / stopped their JID changes [thus breaking
Karl Pielorz wrote:
Hi,
I have a number of jailed systems running - and I've been setting up
ipfw rules for them.
This is on FBSD 9.1.
'ipfw' lets you match on traffic to/from a Jail ID (JID) - however every
time jails get started / stopped their JID changes [thus breaking the
firewall
--On 07 August 2013 12:23 +0100 Arthur Chance free...@qeng-ho.org wrote:
I don't think the old /etc/rc.conf way of handling jails lets you do it,
but the latest version of jail(8) introduced /etc/jail.conf and you
should be able to add jid = N; parameters in there.
Thanks - I'll check
address? (I do this through ngctl
too, but I imagine ifconfig from within the jail could achieve the same thing)
--
Devin
Yes I enabled promiscuous mode and setautosrc 0 on rl0 via ngctl.
I can find no documentation on why this is done. Can you point me to some?
Yes I gave the jail a unique MAC
Hello list.
Trying to get my script to work that creates a netgraph network for a
jail(8) vnet jail. Every thing seems to work, but from inside of the
started vnet jail I can not ping the public internet. The host can ping
the public internet so the problem has to be in the netgraph script
ngctl? (in your script
perhaps?)
b. Have you tried giving ngeth0 a new MAC address? (I do this through ngctl
too, but I imagine ifconfig from within the jail could achieve the same
thing)
--
Devin
Yes I enabled promiscuous mode and setautosrc 0 on rl0 via ngctl.
I can find
for a single vnet jail at a time. rl0 is the real nic interface
device name of the nic facing the internet. This box is on my lan and
the gateway box does NAT for all lan boxes. The host running this script
can ping the internet ok.
Thank you very much for your help.
The host's kernel has modules
giving this console log a look over for
errors. My netgraph knowledge level is not sufficient to see what is
wrong. The goal is to run this script to setup and break down a netgraph
network for a single vnet jail at a time. rl0 is the real nic interface
device name of the nic facing the internet
Teske, Devin wrote:
Sorry for top-post, but just wanted to add a quick note:
The output of ngctl dot would be very helpful to others in debugging your
setup.
graph netgraph {
edge [ weight = 1.0 ];
node [ shape = record, fontsize = 12 ] {
1 [ label =
:
a. Did you enable promiscuous mode on rl0 via ngctl? (in your script perhaps?)
b. Have you tried giving ngeth0 a new MAC address? (I do this through ngctl
too, but I imagine ifconfig from within the jail could achieve the same thing)
--
Devin
_
The information contained in this message
Hello questions list
I am using jail(8) trying to get a functional vimage environment on my
9.1-RELEASE system. My PC only has a single real NIC facing the public
internet. My goal is to be able to have multiple vimage jails, each with
their own epairXa epairXb and bridgeX where the X
Hi!
Joshua Isom jri...@gmail.com writes:
Considering Debian's ported the standard Linux userland to the
FreeBSD kernel, I'm wondering if it's possible/practical to use Debian
inside of a jail instead of a Linux CentOS jail, which has been
documented. I know some applications are linux
On Thu, 04 Apr 2013 19:50:40 -0500
Joshua Isom jri...@gmail.com wrote:
Considering Debian's ported the standard Linux userland to the FreeBSD
kernel, I'm wondering if it's possible/practical to use Debian inside of
a jail instead of a Linux CentOS jail, which has been documented. I
know
Considering Debian's ported the standard Linux userland to the FreeBSD
kernel, I'm wondering if it's possible/practical to use Debian inside of
a jail instead of a Linux CentOS jail, which has been documented. I
know some applications are linux specific, but are they really linux
specific
On Tue, 2 Apr 2013 01:00:44 -0400, Stephen Cook wrote:
On 4/1/2013 5:23 AM, Ian Smith wrote:
Actually, I forwarded a message that Joe fb...@a1poweruser.com posted
to -jail and -ports. Proper attribution is what this issue's all about.
It's been pointed out to me privately that cross-posting
...@erdgeist.org
Cc: po...@freebsd.org, freebsd-j...@freebsd.org
Subject: Re:qjail fork attribution was Handbook Jail Chapter rewrite available
for critique
Dirk Engling wrote:
Dear JoeB,
since you just threatened me via private email to expose my evil plans
of preventing your ubercool project from
On 4/1/2013 5:23 AM, Ian Smith wrote:
One does not have to be a lawyer to know the lack of any license verbiage
embedded in computer programs released to the public becomes property of public
domain forever. Putting license verbiage on your next port version is
unenforceable because it's already
this port upgrades fine on the host system but not under a jail..
FreeBSD 9.1-RELEASE FreeBSD 9.1-RELEASE #0 r243825: Tue Dec 4 09:23:10
UTC 2012 r...@farrell.cse.buffalo.edu:/usr/obj/usr/src/sys/GENERIC amd64
config.status: executing depfiles commands
sed: 2:
s/^include
inclu
Paul Macdonald wrote on 28.03.2013 11:46:
this port upgrades fine on the host system but not under a jail..
FreeBSD 9.1-RELEASE FreeBSD 9.1-RELEASE #0 r243825: Tue Dec 4 09:23:10
UTC 2012 r...@farrell.cse.buffalo.edu:/usr/obj/usr/src/sys/GENERIC amd64
config.status: executing depfiles
what I
was talking about. An how could they? if it's not mentioned anywhere
in the handbook or that jail man page(s).
man pages aren't an appropriate place to recommend particular ports;
there are others, and there will be more. The above are mentioned in
the handbook page in the context
-jail@ referring to ezjail
this year so far before this thread, as in previous years; try browsing
the archives from http://lists.freebsd.org/pipermail/freebsd-jail/
I posted on the wrong list then ;-)
Subscribing today, thanks!
--
Alejandro Imass
Subject: Re: Handbook Jail Chapter rewrite available for critique
Ian Smith wrote:
On Tue, 19 Mar 2013 17:53:30 +0100, Dirk Engling wrote:
On 18.03.13 20:16, s...@tormail.org wrote:
to configure things themselves. In my experience, ezjail is a much
better
solution. I also see that you
On Tue, 19 Mar 2013 17:53:30 +0100, Dirk Engling wrote:
On 18.03.13 20:16, s...@tormail.org wrote:
to configure things themselves. In my experience, ezjail is a much better
solution. I also see that you are the maintainer/author of qjail and like
to shovel your opinion as the only
here last year that very few people, if any, knew what I
was talking about. An how could they? if it's not mentioned anywhere
in the handbook or that jail man page(s).
In fact, looking back at this thread[1] I can see that great deal of
misunderstanding an unnecessary confusion could have been
useful doc,greate job!
find a mybe copy/past mistake in 16.7.1:
*exec.stop* This is the normal script used to *start *the jail.
should be:
*exec.stop* This is the normal script used to *stop *the jail.
regards,
2013/3/19 Fbsd8 fb...@a1poweruser.com
To all interested parties;
I have
To all interested parties;
I have completed the final draft of the total rewrite of FreeBSD's
handbook Chapter 16 on Jails.
Before submitting my work for submission to the documentation group for
insertion in the handbook I am looking for critique of the work to find
errors in concept,
Pretty heavy cross-posting here, could you perhaps reign this in to the
freebsd-jail@ list, where it can be discussed in-context? This will help keep
the noise down.
On Mar 18, 2013, at 12:57 PM, Fbsd8 wrote:
To all interested parties;
I have completed the final draft of the total rewrite
Isaac (.ike) Levy writes:
Pretty heavy cross-posting here, could you perhaps reign this in
to the freebsd-jail@ list, where it can be discussed in-context?
This will help keep the noise down.
It will also keep down the signal from people who use or are
interested in jails, but do
On Mon, Mar 18, 2013 at 6:45 PM, Robert Huff roberth...@rcn.com wrote:
Isaac (.ike) Levy writes:
Pretty heavy cross-posting here, could you perhaps reign this in
to the freebsd-jail@ list, where it can be discussed in-context?
This will help keep the noise down.
It will also
Is there anything in 9.1 to Limit jail CPU memory resources?
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
On Fri, 01 Mar 2013 08:38:05 -0600, fb...@a1poweruser.com wrote:
Is there anything in 9.1 to Limit jail CPU memory resources?
https://wiki.freebsd.org/Hierarchical_Resource_Limits
___
freebsd-questions@freebsd.org mailing list
http
Mark Felder wrote:
On Fri, 01 Mar 2013 08:38:05 -0600, fb...@a1poweruser.com wrote:
Is there anything in 9.1 to Limit jail CPU memory resources?
https://wiki.freebsd.org/Hierarchical_Resource_Limits
Read that all ready and left me with more question than answers.
Its experimental and has
On Fri, 01 Mar 2013 09:52:41 -0600, fb...@a1poweruser.com wrote:
Read that all ready and left me with more question than answers.
Its experimental and has to be compiled into the kernel.
Need solutions that are provided as part of the base system.
Such as a loadable kernel module.
Can not be
freebsd 4.9 in a jail on 8.3
amd64.
Step 1. Download the following files/directories...
bin/
catpages/
cdrom.inf
compat1x/
compat22/
compat3x/
compat4x/
crypto/
dict/
doc/
games/
info/
manpages/
proflibs/
from:
ftp://ftp-archive.freebsd.org/pub/FreeBSD-Archive/old-releases/i386/4.9-RELEASE/
NOTE
think about the new jail.conf parameter cpuset.id from jail(8)?
Seems to me it's a way to dedicate one or more CPUs to a single jail for
increased jail performance. Really the opposite of limiting cpu
resources to a jail.
___
freebsd-questions@freebsd.org
2013-02-26 15:18, Teske, Devin skrev:
Yes, this is possible.
When I get into work, I'll share with you the recipe
Please do share with us.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To
configure the jail and fire it up. Of course, these are vnet jails.
Further instructions on http://druidbsd.sf.net/vimage.shtml with my vimage
package here: http://druidbsd.sf.net/download.shtml#vimage
===
#!/bin/sh
if [ $( id -u ) != 0 ]; then
echo Must run as root! 2
exit 1
fi
Yes, this is possible.
When I get into work, I'll share with you the recipe (I have a script called
update4.sh which I run after building [or rsync'ing] a 4.x box to an 8.x box
to become a vimage; note that I didn't say jail -- 4.x runs better as a VNET
jail than a regular jail).
We've
Bernt Hansson wrote:
I would like to install an old version of freebsd let's say 4.6 in a
jail. Is that possible.
Host is 8.3-stable amd64
Things like ps won't run, but you can copy static binaries from host:/rescue to
jail:/{bin,sbin} as appropriate and that helps a lot.
I just installed
system,
which includes the aliased ip's for your jails. This is represented by the
*:22 from sockstat. When you start the jail it can't start sshd because the
base already has that address/port in use.
In /etc/ssh/sshd_config comment out the ListenAddress 0.0.0.0 and
ListenAddress :: then add
-Original Message-
From: owner-freebsd-questi...@freebsd.org [mailto:owner-freebsd-
questi...@freebsd.org] On Behalf Of d...@safeport.com
Sent: Thursday, February 21, 2013 11:00 AM
To: Shane Ambler
Cc: freebsd-questions@freebsd.org; Bernt Hansson
Subject: Re: jail and networking
use jail_NAME_ip=iface|addr does this mean you don't have ip
addresses aliased to the iface on startup and they get aliased as the
jail starts? That would be why sshd isn't bound to the address before.
man rc.conf for jail_jname_ip says ... Additionally each address can
be prefixed by the name
ifconfig_iface_alias0 sets one ip at a time
and is also deprecated.
If you use jail_NAME_ip=iface|addr does this mean you don't have ip
addresses aliased to the iface on startup and they get aliased as the
jail starts? That would be why sshd isn't bound to the address before.
Correct
On Wed, 20 Feb 2013, Bernt Hansson wrote:
Hello list!
I dont seem to get net working in a test jail.
These I've tried;
ftp, fetch, telnet
They time out.
Ssh sort of work.
32bit# ssh 10.0.0.3
ssh_askpass: exec(/usr/local/bin/ssh-askpass): No such file or directory
Host key
On 02/20/2013 19:42, Bernt Hansson wrote:
On 2013-02-20 17:23, Teske, Devin wrote:
On Wed, 20 Feb 2013, Bernt Hansson wrote:
Hello list!
I dont seem to get net working in a test jail.
These I've tried;
ftp, fetch, telnet
They time out.
Ssh sort of work.
32bit# ssh 10.0.0.3
ssh_askpass
On 20/02/2013 18:23, Bernt Hansson wrote:
The ID did change, didn't know about that, thank you.
But still, sshd isn't running in the jail
32bit# ps ax
PID TT STAT TIME COMMAND
2385 ?? IsJ0:00,00 sendmail: Queue runner@00:30:00 for
/var/spool/clientmqueue (sendmail)
2391
On Wed, 20 Feb 2013, Bernt Hansson wrote:
On 2013-02-20 17:23, Teske, Devin wrote:
On Wed, 20 Feb 2013, Bernt Hansson wrote:
Hello list!
I dont seem to get net working in a test jail.
These I've tried;
ftp, fetch, telnet
They time out.
Ssh sort of work.
32bit# ssh
On Wed, 20 Feb 2013, Bernt Hansson wrote:
On 2013-02-20 19:07, Jeff Tipton wrote:
On 02/20/2013 19:42, Bernt Hansson wrote:
On 2013-02-20 17:23, Teske, Devin wrote:
On Wed, 20 Feb 2013, Bernt Hansson wrote:
Hello list!
I dont seem to get net working in a test jail.
These I've
working in a test jail.
These I've tried;
ftp, fetch, telnet
They time out.
Ssh sort of work.
32bit# ssh 10.0.0.3
ssh_askpass: exec(/usr/local/bin/ssh-askpass): No such file or
directory
Host key verification failed.
jail is 8.3-STABLE i386 GENERIC
host is FreeBSD 8.3-STABLE amd64 GENERIC
I'm
:
Hello list!
I dont seem to get net working in a test jail.
These I've tried;
ftp, fetch, telnet
They time out.
Ssh sort of work.
32bit# ssh 10.0.0.3
ssh_askpass: exec(/usr/local/bin/ssh-askpass): No such file or
directory
Host key verification failed.
jail is 8.3-STABLE i386 GENERIC
host
in a test jail.
These I've tried;
ftp, fetch, telnet
They time out.
Ssh sort of work.
32bit# ssh 10.0.0.3
ssh_askpass: exec(/usr/local/bin/ssh-askpass): No such file or
directory
Host key verification failed.
jail is 8.3-STABLE i386 GENERIC
host is FreeBSD 8.3-STABLE amd64 GENERIC
I'm sure
:
Hello list!
I dont seem to get net working in a test jail.
These I've tried;
ftp, fetch, telnet
They time out.
Ssh sort of work.
32bit# ssh 10.0.0.3
ssh_askpass: exec(/usr/local/bin/ssh-askpass): No such file or
directory
Host key verification failed.
jail is 8.3-STABLE i386 GENERIC
host
Feb 2013, Bernt Hansson wrote:
Hello list!
I dont seem to get net working in a test jail.
These I've tried;
ftp, fetch, telnet
They time out.
Ssh sort of work.
32bit# ssh 10.0.0.3
ssh_askpass: exec(/usr/local/bin/ssh-askpass): No such file or
directory
Host key verification failed.
jail
-02-20 17:23, Teske, Devin wrote:
On Wed, 20 Feb 2013, Bernt Hansson wrote:
Hello list!
I dont seem to get net working in a test jail.
These I've tried;
ftp, fetch, telnet
They time out.
Ssh sort of work.
32bit# ssh 10.0.0.3
ssh_askpass: exec(/usr/local/bin/ssh-askpass): No such file
for your jails. This is
represented by the *:22 from sockstat. When you start the jail it can't
start sshd because the base already has that address/port in use.
In /etc/ssh/sshd_config comment out the ListenAddress 0.0.0.0 and
ListenAddress :: then add ListenAddress 10.0.0.3
service sshd
schrieb Fbsd8 am 06.02.2013 17:57 (localtime):
Fleuriot Damien wrote:
Running 8.3 here and the answer is no.
On Feb 6, 2013, at 5:39 PM, Fbsd8 fb...@a1poweruser.com wrote:
Is there a way to set these MIBs
on a per jail bases?
allow.mount.nullfs
allow.raw_sockets
cpuset.id
securelevel
schrieb Harald Schmalzbauer am 14.02.2013 14:18 (localtime):
schrieb Fbsd8 am 06.02.2013 17:57 (localtime):
Fleuriot Damien wrote:
Running 8.3 here and the answer is no.
On Feb 6, 2013, at 5:39 PM, Fbsd8 fb...@a1poweruser.com wrote:
Is there a way to set these MIBs
on a per jail bases
Is there a way to set these MIBs
on a per jail bases?
allow.mount.nullfs
allow.raw_sockets
cpuset.id
securelevel
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail
Running 8.3 here and the answer is no.
On Feb 6, 2013, at 5:39 PM, Fbsd8 fb...@a1poweruser.com wrote:
Is there a way to set these MIBs
on a per jail bases?
allow.mount.nullfs
allow.raw_sockets
cpuset.id
securelevel
___
freebsd-questions
Fleuriot Damien wrote:
Running 8.3 here and the answer is no.
On Feb 6, 2013, at 5:39 PM, Fbsd8 fb...@a1poweruser.com wrote:
Is there a way to set these MIBs
on a per jail bases?
allow.mount.nullfs
allow.raw_sockets
cpuset.id
securelevel
Rereading the man jail for 9.1 talks about
On Feb 6, 2013, at 5:57 PM, Fbsd8 fb...@a1poweruser.com wrote:
Fleuriot Damien wrote:
Running 8.3 here and the answer is no.
On Feb 6, 2013, at 5:39 PM, Fbsd8 fb...@a1poweruser.com wrote:
Is there a way to set these MIBs
on a per jail bases?
allow.mount.nullfs
allow.raw_sockets
Fbsd8 wrote:
I have noticed that the /etc/rc.d/jail script
will not start a jail that has the same ip address
as a jail that is already running.
But if I define 2 jails the manual way in rc.conf that
have the same ip address they will start.
So is this a bug in the jail script or is there some
1 - 100 of 1344 matches
Mail list logo
