Re: jails and multple interfaces

Relevant Pages

• Jails - Pseudo Interfaces/ Virtual Networks - Best Practices?
  ... I'm in the process of planning a transition from VMWare (on CentOS host) hosting service-specific FreeBSD virtual machines to the seemingly more efficient, stable, and lower maintenance cost approach, now that I've figured out at least some of the "magic" of creating jails under FreeBSD. ... The questions generally relate to being able to consistently identify traffic from/to the jails, inside and outside the jail host, with tools such as ipfw and tcpdump. ... With VMWare, I was used to being able to create a pseudo-interface that could be "wired" to a virtual "switch" and then that switch could be bridged to a physical interface. ... Here DNS needs to be run for the host itself only, to be able to start up NTP and allow ssh connections for management over the "protected" interface. ...
  (freebsd-questions)
• Re: carp+pfsync+freevrrpd+jail
  ... no traffic appears on master host - that means that the local carp ... host will answer the request. ... In case service IP is local it just dealing with jail. ... If only master carp answering packets then packet, coming from internal vlan200 comes to host: ...
  (freebsd-stable)
• Re: Fw: Re: vimage-assigning interface to jail
  ... ping: sendto: No route to host ... The jail environment is: ... I do have vimage-enabled kernels on both the host and the jails. ...
  (freebsd-net)
• Re: problems with jail
  ... Active Internet connections (including servers) ... Unfortunately I still cant connect to anything outside of the jail, ... SSHing into jail does not work, into host does. ... a separate sshd listening on the jail port 22. ...
  (freebsd-questions)
• Re: ipnat 911
  ... 1st jail runs mail ... jails needs to be able to reach out to outside world, ... server needs to be able to communicate with remote server ... but after activating these rules my host itself is not able to reach ...
  (freebsd-questions)