Re: Patches for jail support of multiple IPs?
On Sat, 2006-09-23 at 12:51 -0700, Chris wrote: Are there any official patches to support multiple IPs in jails or would I be limited to taking a chance with the few 6.1 patch files I've found on the net. I searched the UPDATING on HEAD and for anything that might be related but found nothing. Everything I could google on the subject led me to sources that didn't appear to be related to the project. I'm suspicious of using patches being developed outside of the freebsd community yet I'd really hoped to move to a completely jailed OS for our servers. Is it just too soon to be looking for this capability in a production capacity? I suppose you could alias your primary network interface, then use a simple firewall with multiple divert sockets for address translation, thereby forwarding packets to a single jail IP (possible with multiple jail ports open). -Michael S. Eubanks [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Patches for jail support of multiple IPs?
On Sat, 2006-09-23 at 12:51 -0700, Chris wrote: Are there any official patches to support multiple IPs in jails or would I be limited to taking a chance with the few 6.1 patch files I've found on the net. I searched the UPDATING on HEAD and for anything that might be related but found nothing. Everything I could google on the subject led me to sources that didn't appear to be related to the project. I'm suspicious of using patches being developed outside of the freebsd community yet I'd really hoped to move to a completely jailed OS for our servers. Is it just too soon to be looking for this capability in a production capacity? Just a quick addition. I don't think you'd even need multiple divert sockets unless you have multiple interfaces on the external and/or internal sides. Depends on what your setup looks like and what you're trying to accomplish. -Michael S. Eubanks [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Patches for jail support of multiple IPs?
On Sep 24, 2006, at 2:38 PM, Michael Eubanks wrote: On Sat, 2006-09-23 at 12:51 -0700, Chris wrote: Are there any official patches to support multiple IPs in jails or would I be limited to taking a chance with the few 6.1 patch files I suppose you could alias your primary network interface, then use a simple firewall with multiple divert sockets for address translation, thereby forwarding packets to a single jail IP (possible with multiple jail ports open). Thank you, that does sound like an interesting approach. The application is maintain the multiple IP Addresses for the sites though the sites actually share much code and data. I also attempted using multiple jails all pointing to the same file system but was naturally discouraged by the jail configuration to do so as this seems to violate the concept. Seems wasteful of memory too. I will try the divert method next using a single jail. Thank you again for the reply. Chris ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Patches for jail support of multiple IPs?
Are there any official patches to support multiple IPs in jails or would I be limited to taking a chance with the few 6.1 patch files I've found on the net. I searched the UPDATING on HEAD and for anything that might be related but found nothing. Everything I could google on the subject led me to sources that didn't appear to be related to the project. I'm suspicious of using patches being developed outside of the freebsd community yet I'd really hoped to move to a completely jailed OS for our servers. Is it just too soon to be looking for this capability in a production capacity? Thank you, Chris ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]