Michael Grimm wrote:
Sebastián Maruca via freebsd-jail wrote:
Now we're talking about 10.3-HEAD wiht Jails+vnet... but then again, has anyone
tried it? Roger, it seems you are thumbing up my challenge...
But I guess i'll have to stick with netgraph instead epair/if_bridge because
the later i
Michael... even though you consider yourself as a admin hobbier, I can tell you
have the "lend hander" top grade you're honored ;)
I'll start from this big step you're posting (and all the other which replied
too) and carry on dancing 'til I got my jails running DMZ, VLAN and WAN like a
pro...
B
On 01.06.2016 18:07 Roger Marquis wrote:
> Ernie Luzar wrote:
>> the kernel to included vimage. Enabling pf or ipf firewalls cause the
>> host to crash. ipfw firewall does not cause a crash but has next to no
>> real life usage on vimage.
> Vimage gets little attention. Unfortunately the mapping
Sebastián Maruca via freebsd-jail wrote:
> Now we're talking about 10.3-HEAD wiht Jails+vnet... but then again, has
> anyone tried it? Roger, it seems you are thumbing up my challenge...
> But I guess i'll have to stick with netgraph instead epair/if_bridge because
> the later is not so documen
>> I disagree with you about the security issue of using localhost. Running
>> sendmail in a non-vimage jail using its default config listening on
>> localhost is still contained in the jail. Localhost is internally
>> converted to the jails assigned ip address by jail(8).
> How is anything listen
Well... The spirit of this post inspires me the good way!
Now we're talking about 10.3-HEAD wiht Jails+vnet... but then again, has anyone
tried it? Roger, it seems you are thumbing up my challenge...
All I would add is "test, test, test". If that goes well, and I'd
expect it would, implement i
>> Ernie Luzar wrote:
>> Considering we have had ipfw/vimage/netgraph jails for several years I'd
>> be interested in your data sources.
>
> The source is personal experience. Tested 9.3 & 10.0 with ipfw running
> in vnet/vimage jails. At that time ipfw was logging to the host and not
> to the vima
Roger Marquis wrote:
Ernie Luzar wrote:
the kernel to included vimage. Enabling pf or ipf firewalls cause the
host to crash. ipfw firewall does not cause a crash but has next to no
real life usage on vimage.
Considering we have had ipfw/vimage/netgraph jails for several years I'd
be interested
