Re: jails

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 02.02.12 16:16, Bender, Chris wrote: Do you know anything on ZFS? That is my next area of concern that isn't working as a results of our engineer that passed away. ezjail brings native support for zfs. You can create a new file system for each

Re: Handbook Jail Chapter rewrite available for critique

On 18.03.13 20:16, s...@tormail.org wrote: to configure things themselves. In my experience, ezjail is a much better solution. I also see that you are the maintainer/author of qjail and like to shovel your opinion as the only solution, both in this rewrite and all over the FreeBSD forums.

rc.d/jail and jail.conf

Dear jail hackers, if I follow the development correctly, the jail(8) command was augmented to make the rc.d/jail script obsolete. However when I want to use the rc system to start my jails, I am stuck with convincing rc.d/jail to not fail for missing _hostname or _rootdir. How am I supposed to

Re: rc.d/jail and jail.conf

On Sat, 30 Mar 2013, Nicolas de Bari Embriz Garcia Rojas wrote: If I am right you can define the order of start for jails in the jail2_list (rc.conf), something like: jail2_list=jail1 jail2 Thanks, I suppose it mimicks the way rc.d/jail has handled it. I just wondered if there's a way to

Re: rc.d/jail and jail.conf

On 30.03.13 21:38, Miroslav Lachman wrote: There is a way, you should use flags. I discussed this topic with bz@ few years ago and this is the official recommendation how newly added features should be used without changes in rc.d/jail jail_myjail_flags=-l -U root -n myjail Thanks, I need

Re: rc.d/jail and jail.conf

On 31.03.13 20:31, Jamie Gritton wrote: That seems reasonable, but using a jail list in rc.conf may suffice. It is less error prone to just use 'jail_list=*' in rc.conf and disable jails per config block, and then issue a warning like 'Skipping disabled jail(s) foo, bar, baz'. (Although I see

Re: rc.d/jail and jail.conf

On Sun, 31 Mar 2013, Jamie Gritton wrote: If you don't mind some slightly difficult error messages, you can always disable a jail with exec.prestart=false. jail(8) requires all commands to succeed, and in particular won't even create a jail when one of the prestart commands fails. This

jail(8) vs. rc.d/jail features - fstab, zfs, vnet

Dear jail hackers, in my ongoing quest to understand the direction jail development is heading, I noticed that per-jail-fstabs are not (anymore?, yet?) supported by the new jail(8)-rc.d/jail2-combo. Are there official plans to drop the support? A nice new jail+zfs feature is the zfs jail

Re: jail(8) vs. rc.d/jail features - fstab, zfs, vnet

On 12.04.13 01:58, Jamie Gritton wrote: Jamie, similar parameter for zfs, or we could create another set of exec.* parameters, which would be more flexible in the long run. But as you hinted at with postprestart, there doesn't seem to be a good logical name for it. hmm, maybe the prestart

Re: jail(8) vs. rc.d/jail features - fstab, zfs, vnet

On 14.04.13 17:24, Jamie Gritton wrote: line, which is inelegant to say the least. What I need is a $jid to be set even when it isn't specified in the config, which is a little complicated but doable if I just get down to it. After stabbing around in the code for a while I found that

Re: jail(8) vs. rc.d/jail features - fstab, zfs, vnet

On 13.05.13 15:06, Dirk Engling wrote: The easy things like adding a zfs dataset parameter and the postcreate command can be found here: http://erdgeist.org/arts/software/jail/usr.sbin.jail-postcreate.patch http://erdgeist.org/arts/software/jail/usr.sbin.jail-zfsdataset.patch Forgot

Re: ezjail and UPDATING20131010

On 11.10.13 21:27, wishmaster wrote: Yeah!? But do you think updating python in each jail this is the right solution? Freebsd-update in each jail?? What about when number of jails is 10 or about. My server is very high loaded and I use tunable custom kernel and world. Don't use jails then.

Re: ezjail and UPDATING20131010

On 12.10.13 07:24, Alexander Leidinger wrote: Regarding OS updates (and I assume manual installworld updates in the question as freebsd-update is not considered an option) I use: Well, running freebsd-update on all the jails with IgnorePaths set to /[^e][^t][^c].* does the trick ---snip---

Patch: make the jail(8) command set the jid parameter

Hello, I've created a patch to the jail command that allows statements like exec.poststart = touch /startjailid_${jid}; exec.prestop = touch /stopjailid_${jid}; in a jail.conf work as expected, even if the jid is not specified there, i.e. for jails without a pinned jid. It works by splitting

Allowing meta-namespace in jail.conf

Dear jail enthusiasts, in order to move forward with my jail management project ezjail, and make it support the new jail.conf way of managing jail configs, I need a way to add properties to jails that are currently not in the list of allowed parameters. I was thinking of something like web-jail

BUG in jail(8) variable substitution, and PATCH

The variable substitution of FreeBSD's jail tool yields unexpected results when a parameter has more than one variable to substitute and one of the later variables needs substitution as well. Consider the simple test case: $A = A_${B}_C_${D}; $B = B; $D = D_${E}_F; $E = E; bar {

Re: cannot access internet from jail, help needed please

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 01.06.14 02:14, s7r wrote: 2. My server has 3 public IPv4 addresses. Add one of them as an alias (for the jail): # ifconfig em0 alias ip netmask 255.255.255.255 Also did you check that the jail's addresses are inside the net configured

Re: preferred jail management tool

On 27.01.15 21:01, Peter Toth wrote: The most important part is jail(8) and properties can be passed to jail(8) very easily. This is the very reason I stopped relying on any rc.d/jai or jail.conf for iocage. It is much easier/simpler to add/modify features when dealing with jail(8)

Re: preferred jail management tool

On 27.01.15 22:12, Miroslav Lachman wrote: Yes. Sometimes I have a feeling that jails or some other features are unwanted children. I had PR opened for years with patche to rc.d/jail or etc/rc.subr to incorporate nice, or cpuset. And it never found it's way to the tree. How's that possible?

Re: preferred jail management tool

On 27.01.15 21:36, Valeri Galtsev wrote: Now I feel ultimately confused. I [still] have all my jail configurations in /etc/rc.conf, and I can start or stop one of the jails by /etc/rc.d/jail [start|stop] jailname If I switch all configurations to /etc/jail.conf, will the same commands

Re: preferred jail management tool

On 27.01.15 17:57, Mark Felder wrote: I'll admit that last time I used ezjail I found it frustratingly difficult to locate concise documentation on exactly how flavours worked, and how to use scripts to do things to the new jails as well as copying in the files I wanted. Maybe I just didn't

Re: preferred jail management tool

On 28.01.15 17:11, wishmaster wrote: This is not killer feature, this something imperfection (sorry, Dirk. Without insults). No offense taken. Everyone has their own requirements and we worked out that you are not the run-of-the-mill ezjail customer. Fine. No need to convince others that your

Re: Create Jail fail by c language

On 18.04.15 17:34, freekai wrote: 18 j.ip4s=inet_addr(cp); From the man page: The “ip4s” and “ip6s” give the numbers of IPv4 and IPv6 addresses that will be passed via their respective pointers. so it should rather read: 18 j.ip4s=1; 19 j.ip6s=0; 20 21

Re: Configuring network without ezjail

On 12.12.15 01:19, marcel wrote: > I would like to know if it is possible to configure a jail's network for > accessing to the World Wide Web but without ezjail ? > I have created my jail without ezjail (mkdir jail, make installworld, > etc...) and I would like to continue without it if it's

Re: Configuring network without ezjail

On 12.12.15 02:50, marcel wrote: > No I don't get to have an IP address... Yet I have writed this in my > host's rc.conf: > > jail_enable="YES" > jail_list="thename" > jail_guantanamo_rootdir="thepath" > jail_guantanamo_hostname="thename" > jail_guantanamo_ip="192.168.0.12" Well, what you write

Re: Cannot delete jail folder

Currently on the road. But FAQ answers your question. Look for noschg https://erdgeist.org/arts/software/ezjail/#faq Best erdgeist Am 11. Juni 2017 17:13:00 MESZ schrieb "Grégory Reinbold" : >Hi, > >I have installed a jail using ezjail-admin for testing the solution.

Re: Ezjail

On 30.04.20 17:30, Brandon helsley wrote: > I installed and updated base jail with ezjail and then like the > example in the handbook, created dnsjail with it's ip. I'm now needed > to change the jail file in ezjail directory to a different ip > address. What do I change it to and how do I do