hierarchical

  1. toddg

    PF PF (firewalls, NAT, redirection) + hierarchical jails

    I'm trying to build an app stack on FreeBSD using hierarchical vnet jails. It looks like this: HOST + JAILS + lb_jail + backup_jail + dev_jail + stage_jail + prod_jail Within each [dev|stage|prod]_jail, I will have: [dev|stage|prod]_jail + webserver +...
    • toddg
    • Thread
    • hierarchical jailnet jails networking routable
    • Replies: 2
    • Forum: Firewalls
  2. codeedog

    jails Subsetting Parent-Child Jail Permissions

    I have a workaround for this, I'm curious about parent-child permission usefulness (use cases). I've been playing around with hierarchal jails. I have a toy problem set up: 1 host + 4 jails. Jails: (1) Firewall/Gateway, (2) SSH Jump Server, (3) nginx Reverse Proxy, (4) Web Server. The Host is...
  3. C

    Solved Issue with hierarchical jails

    I'm attempting to launch a jail in a jail on FreeBSD 13.2-p1. In principle, such a hierarchical jail should be working - as far as I understand, poudriere is making use of that. So I suppose I must have f*ed up my config somehow, but I can't seem to find the issue after poking at it for several...
  4. alfikmik

    Solved Nested jail won't run automatically (but starts manually)

    system: FreeBSD 13.0-RELEASE HOST: cat /etc/jail.conf # jail.conf exec.start = "/bin/sh /etc/rc"; exec.stop = "/bin/sh /etc/rc.shutdown"; exec.clean; allow.noset_hostname; allow.raw_sockets; allow.sysvipc; allow.dying; path = "/vol/jls/${name}"; host.hostname = "${name}.bsd"; parent_jail {...
Back
Top