Hello,
I'm again facing the problem of providing host-wide interface to all jails in a
host.
I want (for example) that there is a jail with unbound (DNS resolver/cacher)
inside, binded to a host-wide interface. Host-wide interface has a well known
address (IPv6 1::1/128 for example).
All other jails simply put "nameserver 1::1" in its resolv.conf.
The problem that jails can't share one ip address ("address clashes") and can't
"inherit" one interface only. Inheriting is for a whole network as I see.
May be someone have some suggestions?
P.S. Sometime ago I solve this in a not a clean manner by supplying own
loopback interface and unique address (127.0.X.1) to every jail in a host. Then
jail with unbound bind to its 127.0.U.1, other jail must set "nameserver
127.0.U.1". This solution has administrative problems because of a dynamic
nature of addresses (127.0.X.1). Thing get worse if jails transferred to a
different host.
--
Best regards,
Anthony Pankov mailto:[email protected]
