読者です 読者をやめる 読者になる 読者になる

gvit

kernel compile

include GENERIC
ident VIMAGE

options VIMAGE
options IPFIREWALL
options IPFIREWALL_VERBOSE
options IPFIREWALL_VERBOSE_LIMIT=1000
options IPFIREWALL_DEFAULT_TO_ACCEPT
options DUMMYNET
options RACCT
options RCTL

install

pkg install qjail

rc.conf nat

natd_enable="yes"
natd_interface="eth0"
gateway_enable="yes"
firewall_enable="yes"
firewall_type="open"
dummynet_enable="YES"

/etc/sysctl.conf

net.link.bridge.ipfw=1

/etc/devfs.rules

[devfsrules_jail=5]
add include $devfsrules_hide_all
add include $devfsrules_unhide_basic
add include $devfsrules_unhide_login
add path zfs unhide
add path mem unhide
add path kmem unhide
add path 'bpf*' unhide
add path net unhide
add path 'net/*' unhide

/usr/local/bin/qjail

echo "devfs_ruleset" = \"5\";"

#echo "ip4.addr = ${ip4};"

host sharedfs&jailed directory

mkdir /usr/jails/sharedfs/pkg


起動時
cd third && python27 ./webshell.py --ssl-disable -i [リッスンするIPアドレス] -d
を実行しないとコンソール機能は使えない