I had an opportunity to upgrade a server from freebsd 8.1 to 8.2 since
it had to be restarted any way. I upgraded it with freebsd-update and
compiled a custom kernel with no problem. However I haven't been able to
find a procedure for updating jails when they've been setup with ezjail.
I did
On Sun, 21 Aug 2011, Rocky Borg spaketh thusly:
-}I had an opportunity to upgrade a server from freebsd 8.1 to 8.2 since it had
-}to be restarted any way. I upgraded it with freebsd-update and compiled a
-}custom kernel with no problem. However I haven't been able to find a procedure
-}for
Actually you don't have to rebuild the basejail. You may simply rerun
ezjail-admin install, which will fetch the binary files for your release
(uname -r) and will apply them if needed.
On Sun, Aug 21, 2011 at 06:27:56PM -0700, Rocky Borg wrote:
I had an opportunity to upgrade a server from
On Fri, Apr 29, 2011 at 3:46 PM, Alejandro Imass a...@p2ee.org wrote:
Hi,
Answering myself here...
[snip]
Mi idea is to soft-link the complete /usr/local directory of the
compiling jail in the specific flavour so after the packages get
installed I can just copy everything else over
On Fri, Jul 9, 2010 at 9:50 AM, Ed Flecko edfle...@gmail.com wrote:
I'm trying to set up a FreeBSD 8.0 server to run Apache that will be
facing the nasty and unforgiving WWW.
I have several good books on Apache that describe how to set up the
jail, when I came across several websites that
On 9-7-2010 17:13, Adam Vande More wrote:
On Fri, Jul 9, 2010 at 9:50 AM, Ed Flecko edfle...@gmail.com wrote:
I'm trying to set up a FreeBSD 8.0 server to run Apache that will be
facing the nasty and unforgiving WWW.
I have several good books on Apache that describe how to set up the
jail,
On Fri, Jul 09, 2010 at 07:50:26AM -0700, Ed Flecko wrote:
I'm trying to set up a FreeBSD 8.0 server to run Apache that will be
facing the nasty and unforgiving WWW.
I have several good books on Apache that describe how to set up the
jail, when I came across several websites that reference
Aiza wrote:
Ruben de Groot wrote:
On Mon, Mar 22, 2010 at 11:23:54AM +0100, Dh?nin Jean-Jacques typed:
on the lan gives me no sockets mesg. And ftp from 10.0.10.6 to
10.0.20.30 the ftp jail gives me no connection error.
add
sysctl security.jail.allow_raw_sockets=1
or in /etc/sysctl.conf
Mark Shroyer wrote:
On 3/21/2010 8:21 PM, Aiza wrote:
Does the ip address notation for the jail include the port number?
Like 10.0.20.2:80 Nat port forwarding is the long way around just to get
the correct port number to the jail ip address.
Nope, jails are assigned one (or more) specific IP
On Mon, Mar 22, 2010 at 05:47:09PM +0800, Aiza typed:
Mark Shroyer wrote:
On 3/21/2010 8:21 PM, Aiza wrote:
Does the ip address notation for the jail include the port number?
Like 10.0.20.2:80 Nat port forwarding is the long way around just to get
the correct port number to the jail ip
2010/3/22 Ruben de Groot mai...@bzerk.org
My host 8.0 system is the gateway to the public internet.
I have ipfilter running blocking all inbound request for service.
I only allow out bound request from the LAN behind the gateway and use
keep state to allow the packet conversation to
On Mon, Mar 22, 2010 at 11:23:54AM +0100, Dh?nin Jean-Jacques typed:
on the lan gives me no sockets mesg. And ftp from 10.0.10.6 to
10.0.20.30 the ftp jail gives me no connection error.
add
sysctl security.jail.allow_raw_sockets=1
or in /etc/sysctl.conf
on the host (not in in the
Ruben de Groot wrote:
On Mon, Mar 22, 2010 at 11:23:54AM +0100, Dh?nin Jean-Jacques typed:
on the lan gives me no sockets mesg. And ftp from 10.0.10.6 to
10.0.20.30 the ftp jail gives me no connection error.
add
sysctl security.jail.allow_raw_sockets=1
or in /etc/sysctl.conf
on the host
Aiza aiz...@comclark.com writes:
Now I would like to play with jails. One for postfix, apache, and ftp.
My reading of EZJAIL and the jails section of the handbook lead me to
believe I need a unique IP address for each jail. Is that correct?
No. As long as you use different ports for different
On Mon, Mar 22, 2010 at 08:40:58PM +0800, Aiza typed:
This will enable him to ping another host from within the jail. I won't
do anything for ftp.
OP: what exact error do you get? And does ftp work *within* the jail
(ftp localhost)?
with sysctl security.jail.allow_raw_sockets=1 done
On 3/21/2010 1:10 AM, Aiza wrote:
I don't have sources installed on my system. Just use the binary
Freebsd-update function. At new releases I do a clean install.
I only have a single public IP address.
Now I would like to play with jails. One for postfix, apache, and ftp.
My reading of
Mark Shroyer wrote:
On 3/21/2010 1:10 AM, Aiza wrote:
I don't have sources installed on my system. Just use the binary
Freebsd-update function. At new releases I do a clean install.
I only have a single public IP address.
Now I would like to play with jails. One for postfix, apache, and
On 21/03/2010 21:53, Mark Shroyer wrote:
Until recently, the method for creating ezjail's basejail was to issue
the ezjail-admin update command, which compiles the basejail from
/usr/src. Just recently an ezjail-admin install command was added,
which downloads binaries from a FreeBSD FTP
Mark Shroyer wrote:
On 3/21/2010 1:10 AM, Aiza wrote:
I don't have sources installed on my system. Just use the binary
Freebsd-update function. At new releases I do a clean install.
I only have a single public IP address.
Now I would like to play with jails. One for postfix, apache, and ftp.
On 3/21/2010 8:21 PM, Aiza wrote:
Does the ip address notation for the jail include the port number?
Like 10.0.20.2:80 Nat port forwarding is the long way around just to get
the correct port number to the jail ip address.
Nope, jails are assigned one (or more) specific IP addresses, but not
I found the man ezjail-admin has this format
ezjail-admin install -h file:// Where -h file:// means get the
binaries from the host system the jails are running on. Am I correct?
Yes, according to the man page. I haven't tried it yet myself, since I
set up my basejail before this option
On Fri, 18 Dec 2009 12:44:51 -
Graeme Dargie a...@tangerine-army.co.uk wrote:
I am trying to get ezjail running on bds 8.0 and I keep hitting the
same wall
FreeBSD amalthea.galaxy.lan.lcl 8.0-RELEASE FreeBSD 8.0-RELEASE #0:
Sat Nov 21 15:02:08 UTC 2009 /usr/obj/usr/src/sys/GENERIC
On 10/2/09, Troy Kocher t...@kocherfamily.org wrote:
All,
Couple issues:
1) I need some understanding on how to deploy and upgrade perl
properly in this jailed environment.
2) I need some help on my current tangle of Perl library complaints
Issue #1: In a jailed environment how many
On Tue, Apr 17, 2007 at 06:19:44PM +0200, Oliver Peter wrote:
Dear,
Is there a possibilty to use a self-build release (from source) with
ezjail instead of the ftp-RELEASEs ?
I didn't find prebuilt binary packages for 6.2-RELEASE-p3 on the ftp
sites so I'm thinking about building my own.
Hello Dave...responses below
On 4/4/07, Dave [EMAIL PROTECTED] wrote:
Hello,
Is anyone running ezjail on 6.2?
Yes, 6.2-stable GENERIC. At install time I created a separate
partition for, /usr/jails which makes it default to the ezjail-admin
create jail default location.
I've got to set
Robin Becker wrote:
I'm getting these ip conflicts whilst trying to create a jail
ezjail-admin create xxx.xxx.xxx.27
Warning: IP xxx.xxx.xxx.27 not configured on a local interface.
Warning: Some services already seem to be listening on all IP,
(including xxx.xxx.xxx.27)
This may cause
Robin Becker wrote:
I'm getting these ip conflicts whilst trying to create a jail
ezjail-admin create xxx.xxx.xxx.27
Warning: IP xxx.xxx.xxx.27 not configured on a local interface.
Warning: Some services already seem to be listening on all IP,
(including xxx.xxx.xxx.27)
This may
Joe Holden wrote:
how do I fix this or perhaps I don't need to?
syslogd_flags=-ss in rc.conf
sshd is configured in /etc/ssh/sshd_config.
.
I looked in vain in /etc/rc.d/syslogd for references to syslogd_ and didn't find
any, but now I see \$rc_flags which I guess must be
In response to Robin Becker [EMAIL PROTECTED]:
I now get a message saying
Warning: IP 209.67.217.27 not configured on a local interface.
but I think that just means I don't have an alias set up yet.
Yes. That's what that means.
It's rather deceiving, because you don't actually need to
Robin Becker wrote:
Joe Holden wrote:
how do I fix this or perhaps I don't need to?
syslogd_flags=-ss in rc.conf
sshd is configured in /etc/ssh/sshd_config.
.
I looked in vain in /etc/rc.d/syslogd for references to syslogd_ and
didn't find any, but now I see \$rc_flags
30 matches
Mail list logo