jail questions

Matthew Dillon dillon at backplane.com
Wed Jun 3 11:19:15 PDT 2020


We did a bunch of work on localhost bindings for jails.  Basically it works
as follows:

* You can specify a list of IPs for the jail (more than one if you desire)

* Any 'localhost' binding within the jail will automatically be translated
to the localhost IP specified when the jail was created, or the host IP if
no localhost IP was specified.

* You can, if you desire, isolate the jail's localhost by passing something
other than 127.0.0.1 to the jail.  You can add 127.0.0.2 to the localhost
interface as an alias for example and pass 127.0.0.2 into the jail.  Any
bindings to 127.0.0.1 within the jail will actually bind to 127.0.0.2 from
the point of view of the host outside the jail.

There are also a number of jail sysctl variables which effect how network
addresses are handled.
-Matt
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.dragonflybsd.org/pipermail/users/attachments/20200603/0e58ec42/attachment-0004.htm>


More information about the Users mailing list