d/freebsd-dev
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Allow more services to run in vnet jails

Browse Source 
After some tests, here are the services that run into a vnet jail:
  - defaultroute
  - dhclient
  - ip6addrctl
  - natd
  - pf
  - pfsync
  - pflog (deamon runs, pflog0 interface usable, but /var/log/pflog not filled)
  - rarpd
  - route6d (do nothing anyway because obsolete)
  - routed (do nothing anyway because obsolete)
  - rtsold
  - static_arp
  - static_ndp

PR:		220530
Submitted by:	olivier@freebsd.org
This commit is contained in:
Kristof Provost 2017-07-08 09:28:31 +00:00
parent dd5ef26e97
commit 2ca5f390c4
Notes: svn2git 2020-12-20 02:59:44 +00:00 
svn path=/head/; revision=320802
13 changed files with 14 additions and 15 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
etc/rc.d/defaultroute
View File

@ -7,7 +7,7 @@
# PROVIDE: defaultroute
# REQUIRE: devd netif stf
# KEYWORD: nojail
# KEYWORD: nojailvnet
. /etc/rc.subr
. /etc/network.subr

2
etc/rc.d/dhclient
View File

@ -4,7 +4,7 @@
#
# PROVIDE: dhclient
# KEYWORD: nojail nostart
# KEYWORD: nojailvnet nostart
. /etc/rc.subr
. /etc/network.subr

2
etc/rc.d/ip6addrctl
View File

@ -6,7 +6,7 @@
# PROVIDE: ip6addrctl
# REQUIRE: FILESYSTEMS
# BEFORE: netif
# KEYWORD: nojail
# KEYWORD: nojailvnet
. /etc/rc.subr
. /etc/network.subr

2
etc/rc.d/natd
View File

@ -4,7 +4,7 @@
#
# PROVIDE: natd
# KEYWORD: nostart nojail
# KEYWORD: nostart nojailvnet
. /etc/rc.subr
. /etc/network.subr

2
etc/rc.d/pf
View File

@ -6,7 +6,7 @@
# PROVIDE: pf
# REQUIRE: FILESYSTEMS netif pflog pfsync
# BEFORE: routing
# KEYWORD: nojail
# KEYWORD: nojailvnet
. /etc/rc.subr

2
etc/rc.d/pflog
View File

@ -5,7 +5,7 @@
# PROVIDE: pflog
# REQUIRE: FILESYSTEMS netif
# KEYWORD: nojail
# KEYWORD: nojailvnet
. /etc/rc.subr

5
etc/rc.d/pfsync
View File

@ -5,7 +5,7 @@
# PROVIDE: pfsync
# REQUIRE: FILESYSTEMS netif
# KEYWORD: nojail
# KEYWORD: nojailvnet
. /etc/rc.subr
@ -15,7 +15,7 @@ rcvar="pfsync_enable"
start_precmd="pfsync_prestart"
start_cmd="pfsync_start"
stop_cmd="pfsync_stop"
required_modules="pf"
required_modules="pf pfsync"
pfsync_prestart()
{
@ -36,7 +36,6 @@ pfsync_start()
if [ -n "${pfsync_syncpeer}" ]; then
_syncpeer="syncpeer ${pfsync_syncpeer}"
fi
load_kld pfsync
ifconfig pfsync0 $_syncpeer syncdev $pfsync_syncdev $pfsync_ifconfig up
}

2
etc/rc.d/rarpd
View File

@ -6,7 +6,7 @@
# PROVIDE: rarpd
# REQUIRE: DAEMON FILESYSTEMS
# BEFORE: LOGIN
# KEYWORD: nojail
# KEYWORD: nojailvnet
. /etc/rc.subr

2
etc/rc.d/route6d
View File

@ -5,7 +5,7 @@
# PROVIDE: route6d
# REQUIRE: netif routing
# KEYWORD: nojail
# KEYWORD: nojailvnet
. /etc/rc.subr

2
etc/rc.d/routed
View File

@ -6,7 +6,7 @@
# PROVIDE: routed
# REQUIRE: netif routing
# BEFORE: NETWORK
# KEYWORD: nojail
# KEYWORD: nojailvnet
. /etc/rc.subr

2
etc/rc.d/rtsold
View File

@ -6,7 +6,7 @@
# PROVIDE: rtsold
# REQUIRE: netif
# BEFORE: NETWORKING
# KEYWORD: nojail shutdown
# KEYWORD: nojailvnet shutdown
. /etc/rc.subr

2
etc/rc.d/static_arp
View File

@ -31,7 +31,7 @@
# PROVIDE: static_arp
# REQUIRE: netif
# KEYWORD: nojail
# KEYWORD: nojailvnet
. /etc/rc.subr
. /etc/network.subr

2
etc/rc.d/static_ndp
View File

@ -31,7 +31,7 @@
# PROVIDE: static_ndp
# REQUIRE: netif
# KEYWORD: nojail
# KEYWORD: nojailvnet
. /etc/rc.subr
. /etc/network.subr