São as sysctl's No meu server tenho assim: security.jail.param.cpuset.id: 0 security.jail.param.host.hostid: 0 security.jail.param.host.hostuuid: 64 security.jail.param.host.domainname: 256 security.jail.param.host.hostname: 256 security.jail.param.children.max: 0 security.jail.param.children.cur: 0 security.jail.param.enforce_statfs: 0 security.jail.param.securelevel: 0 security.jail.param.path: 1024 security.jail.param.name: 256 security.jail.param.parent: 0 security.jail.param.jid: 0 security.jail.enforce_statfs: 2 security.jail.mount_allowed: 0 security.jail.chflags_allowed: 0 security.jail.allow_raw_sockets: 1 security.jail.sysvipc_allowed: 0 security.jail.socket_unixiproute_only: 1 security.jail.set_hostname_allowed: 1 security.jail.jail_max_af_ips: 255 security.jail.jailed: 0
Em 07/02/2011, às 11:41, Renato L. Sousa escreveu: > Olá a todos! > > Preciso criar uma jail para implementar um servidor web em um servidor > já existente. > Segui os passos descritos em > http://www.freebsd.org/doc/handbook/jails-build.html para criar a jail, > mas não consigo acessar a rede pela jail. > Alguem tem alguma luz ? > > Segue abaixo alguns comandos: > > server1# jexec 1 tcsh > jail01# ifconfig -a > em0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500 > options=9b<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM> > ether 00:0e:0c:3e:c1:dd > media: Ethernet autoselect (100baseTX <full-duplex>) > status: active > lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> metric 0 mtu 16384 > options=3<RXCSUM,TXCSUM> > jail01# ifconfig em0 XXX.XXX.XXX.XXX netmask 255.255.255.0 > ifconfig: ioctl (SIOCDIFADDR): permission denied > jail01# id > uid=0(root) gid=0(wheel) groups=0(wheel),5(operator) > jail01# exit > exit > > ************ Trecho /etc/rc.conf do servidor hospedeiro > *************************** > jail_jail01_rootdir="/jails/jail01" # jail's root directory > jail_jail01_hostname="fqdn.jail.xxx.xxx.xx" # jail's hostname > jail_jail01_ip="XXX.XXXX.XXX.XXX" # jail's IP address > jail_jail01_devfs_enable="YES" # mount devfs in the jail > jail_jail01_devfs_ruleset="jail01_ruleset" # devfs ruleset to apply to jail > > > > -- > --------------------------------------------- > Renato L. Sousa - Administrador de Redes > Instituto de Química - UNICAMP > Campinas - SP > > ------------------------- > Histórico: http://www.fug.com.br/historico/html/freebsd/ > Sair da lista: https://www.fug.com.br/mailman/listinfo/freebsd ------------------------- Histórico: http://www.fug.com.br/historico/html/freebsd/ Sair da lista: https://www.fug.com.br/mailman/listinfo/freebsd
