When trying to start pf with service pf start, I get the following error message:
Enabling pfpfctl: /dev/pf: No such file or directory
pfctl: /dev/pf: No such file or directory
pfctl: /dev/pf: No such file or directory
My Jails are confiugred in /etc/jail.conf:
# Global Stuff
Hello community of freeBSD
I have a project in mind to replace my windows server park.
Currently I have a netgear as router and a Windows 2008 server that does AD and windows share.
I have for idea to replace the netgear by PFSENSE and the active directory by samba4 for the domain controller...
not sure if I'm in the right forum area, so maybe a mod wants to move this.
Is it possible to 'track' actions that are done in a jail where an sshd server is running and offering root access (so of course no root access directly in the sshd, but after login su/sudo is possible)...
Please, help me understand, how setup FreeBSD 11-STABLE amd64 router with several ip addresses on external interface.
Provider give me subnet
18.104.22.168/24 gw 22.214.171.124
# Assigned external IP addresses
I don't understand why I can't use fetch from inside my jail.
# fetch http://www.yahoo.com
fetch: http://www.yahoo.com: Protocol not supported
Name resolution works:
# host -t A yahoo.com
yahoo.com has address 126.96.36.199
yahoo.com has address...
I read that freebsd-update uses the /etc/freebsd-update.conf file to determine which components to update.
The /etc/freebsd-update.conf file of my host contains the following line:
Components src world kernel
So I'm guessing that each time I'm trying to update a jail using...
I'm trying to create jails and keep them up to date and secure.
I don't know if I should add the src component to my jails.
As of now, I only download base.txz, lib32.txz and doc.txz from http://ftp.freebsd.org/pub/FreeBSD/releases/amd64/amd64/11.0-RELEASE/ , extract them in a directory...
I recently set up Nextcloud in a jail using apache24, mariadb101 and php70 on FreeBSD 10.3.
After rebooting my server the jail will not come up correctly. It won't mount datasets and all the packages I installed and their configuration seems gone. pkg info only returns pkg.
since various applications want to do that, often fail/coredump not being able to I wonder whether there is a way to allow mlock in jail. I am getting a permission denied there.
I am using FreeBSD 10.3 on the target machine and ezjail.
I'd like to create jails using the jail built-in utility and the new /etc/jail.conf configuration file.
However, the manual at https://www.freebsd.org/doc/handbook/jails-build.html still uses the old format of using jail_ variables in
I don't have any jail.conf on my...
I'm trying to update the base system of the jails on my host. I created the jails using EZJail. On the host or on the jails, I think the correct way to check if my base system is up to date is to call
# freebsd-update fetch
This way I get a list of available updates. If the list is...
despite reading and re-reading the manual, I have an extremely hard time understanding how to keep my FreeBSD host and my FreeBSD jails secure.
I am going to try to express my current understanding of FreeBSD as maybe the problem is that I don't understand it.
There seems to be on one...
Is there a way to force some applications to only use a VPN interface for networking, or ban all networking from them completely? Could this be done with jails? I want to use VPN "anonymously" so that my real IP, DNS requests and other such stuff are not leaked.
I've been using jails and managing them with ezjail, as such I'm not using vimage jails but plain ol' jails. In one of the jails I have installed Nginx, PHP-FPM, Redis, and Wordpress located on one of the user accounts within jail.
When configuring Redis to listen on 127.0.0.1 it binds to all...
I'd like to be able to configure the ability to trigger events within a jail when files are created in specific directories. While I can use auditd and praudit to capture file creation on the host, as far as I know jailed use of that facility isn't possible, even with providing /dev/auditpipe to...
Dear FreeBSD Community!
I'm planning to setup a NAS (for my family, a mix of Windows, Linux and Mac OS Clients) in a jail on my FreeBSD machine (which should replace my actual Linux-based homeserver step by step). So I prepared a jail with it's own IP, set up samba and joined our Active...
Jails have confused me. My ultimate goal is to setup xwiki in a jail (after installing tomcat and MySQL). I have sucessfully created the jail with:
iocage create tag=xwiki ip4_addr="ue0|192.168.1.8
started it: iocage start xwiki
and accessed it: iocage console xwiki
Now the output of ifconfig...
I have a Windows 10 Workstation where I run a FreeBSD 10.3 Guest server over VMWare 12. This FreeBSD VM is meant to run multiple Apache/PHP/Wordpress instances on multiple jails.
The FreeBSD guest is bridged through the HOST Ethernet NIC, where the HOST has the IP...
Hi, I been surfing the net looking for an answer for this: I want to run PostgreSQL in a jail.
creating directory /usr/local/pgsql/data ... ok
creating subdirectories ... ok
selecting default max_connections ... 10
selecting default shared_buffers ... 400kB
creating configuration files ... ok...
Hello, NB question here:
Setting up FreeBSD on a VPS.
Some howto's have Apache running on the host, and the website in a jail. Other howtos have Apache running in a jail.
My question, from a security point of view, is it better to run Apache in it's own jail? Would I put my Wordpress website in...