jail

After updating freebsd and jails to 13.0 release patch 4 I tried to verify everthing was up to date. However when checking the openssl version in my jail I noticed something strange. Inside the jail openssl version produced the output: OpenSSL 1.1.1k-freebsd 25 Mar 2021 But invoking version...

Specs: Ryzen 3960x, Radeon RX 5700, 13.0-RELEASE-p3 Problem is occuring inside jails. When I try to launch a GUI app (Falkon, Blender, etc), the app launches, but with significant lag for moving objects with mouse, videoplayback, and consuming large CPU resources even at idle...

Hi, I'm new to FreeBSD (only started tinkering about with it last week), and after lots of digging through the documentation, handbook, and many other online resources I managed to have my vnet enabled jail working in conjunction with ipfw in-kernel NAT. Both inbound and outbound traffic was...

I have a network interface alias which I declared in /etc/rc.conf, as follows: ifconfig_alc0="DHCP" ifconfig_alc0_alias0="inet 192.168.1.17/32" ifconfig_alc0_alias1="inet 192.168.1.16/32" ifconfig_alc0_alias2="inet 192.168.1.12/32" The jail is configured to use 192.168.1.17 (and two other jails...

Hi all, DiscIaimer: I only partially understand what I am doing. I set up a FreeBSD 13.0 Host with. BastilleBSD. Everything working fine but I struggle with the configuration of the pf packet filter, which is new to me (only used ipfw since). My goal is to be as restrictive as possible without...

After upgrading a virtual FreeBSD 12.2 system to 13.0-p3, traffic to services within jails (through Apache 2.4 reverse proxy) was blocked. This is a Hyper-V virtual server and the second one that shows the same problem (the other one being a commercial VPS, hypervisor type unknown). At first, I...

Hi, Does anybody know how to protect daemon in jail from OOM Killer? I tried to set mysql_oomprotect to YES in rc.conf in Jail but it doesn't work. Thaks

When I run bsdinstall jail <jailpath> and select a mirror I get: Could not download ftp://ftp.freebsd.org/pub/FreeBSD/releases/amd64/amd64/13.0-RELEASE/MANIFEST I click <restart> and and get: Error while fetching ftp://ftp.freebsd.org/pub/FreeBSD/releases/amd64/amd64/13.0-RELEASE/base.txt...

I've noticed a strange problem with setting"devfs_ruleset" in jail.conf. In jail.conf: testjail { host.hostname = testjail; devfs_ruleset = 27; #note: with no other configuration for this jail } Note: ruleset 27 does NOT exist - I've checked in /etc/defaults/devfs.rules and...

I need to use mdconfig inside a jail, but I'm hit with "Error mdconfig: open(/dev/mdctl): No such file or directory". I think I need to "allow" it in the jail.conf but couldnt figure out what it is. Please help.

Hello, I'm encountering an issue that I can't explain, so looking for SME advice here :) I run a linux (debian) inside a jail. I'm using iocage for jail management. deboostrap was used to deploy the guest system. Everything seems to work well except that many files from /etc directory are not...

I have a FreeBSD box with no Internet connection. Somehow I had installed "pkg" into the host system previously (if I remember correctly, it was from the mounted dvd1.iso). I created a jail and tried to install some packages. The "pkg" is not available in the jail. I tried to mount the same...

I'm having some problem setting routing inside a jail. I added to rc.conf (inside jail) and it did not work. I then tried "route add 172.16.0.1" and it responded "route: writing to routing socket: Operation not permitted" I think it is not possible to set routing from inside. So, how do I...

I am using PF and cannot get packets forwarded to a particular jail. I want data that comes into my base machine on port 4243 to be forwarded to my jail that has a service that is listening on port 4243. I have verified with telnet that the jail can receive data on that port. Here is my...

The following scenario is happening on two freshly installed FreeBSD 13.0-RELEASE hosts. Host A acts as an NFSv4 server. It provides the following share: 192.168.250.61:/myshare Host B can successfully mount and browse the share using mount -t nfs -o nfsv4,rw 192.168.250.61:/mysare /mnt. Host B...

So I have these jails now, and I want to install Samba on my www jail. I've upgraded to 12.2-p6, pkg -vv shows kernel 120200. I've upgraded my jail with freebsd-update -b /jails/www There was an error, some directories for the certificates under /usr/share/[certs]/[trusted/blacklisted] didn't...

How do I make devices in /dev/ accessible inside a Bastille jail? When I have two sets of rules, how do I set this in rc.conf.local, from within the host system? devfs_system_ruleset="localrules" How would bastille also get referenced with this? In devfs.rules of the host (not within the...

I have remote FreeBSD server with name server inside jail. My rules are: ext_if="em0" ext_ip="X.X.X.X" jail_net="10.0.0.0/24" ns_ip="10.0.0.1" icmp_types = "echoreq" table <blacklist> persist file "/etc/pf/blacklist" table <trusted> persist file "/etc/pf/trusted" set block-policy drop set...

Good morning, evening, or afternoon. I currently treat my jails as stateless. I do this by mounting host zfs datasets into the jail using nullfs to store state. Sometimes this leaves the data directory on the host empty although the data is present. Why do I see this behavior? What am I doing...

Hello, I have been trying to build graphics/drm-fbsd12.0-kmod inside a Jail with make package but there I am having an issue: ===> radeonkmsfw/verde_smc (install) install -T release -o root -g wheel -m 555 radeon_verde_smc_bin.ko...