jails

I have Classic jail running gitea locally but every time i reboot i have to enter my jail and start gitea web. Is there a way to automate so i wont need to do so ?

i have installed searxng in a jail but havent got it working yet which maybe a pf firewall issue The jail already has Firefox installed so i thought it would make sense to install searxng in the same jail searxng is set to listen on the jails ip address 10.10.0.5 and port 8888 and since...

Hi all, I think I need some hints and tipps from you firewall and network experts here. Currently I have the following working scenario for IPv4: My server has one external IPv4 address. I'm running several jails hosting different services, each having an own 192.168.0.x IP on an internal...

Hi All, Noticed something interesting when creating a jail, if you use a numeric name it will assign that as the JID. Really appreciate it if anyone could help me answer the following questions - - Is this normal for jails or a bug? - Does it create a security risk using numeric names? - Why...

Just a curiousity, but today I realized that the pkg bootstrapper doesn't understand jails: pkg -j newjail -N > /dev/null 2>&1 || { echo "bootstrapping 'pkg' in jail 'newjail'" pkg -j newjail } Somewhat tangential, pkg seems to act correctly on the -y flag, but then claims to not...

Hi everyone, I've recently been working on setting up a Linux Jail with a VNET interface and I've managed to get the VNET interface up and running with a static IP by using copies of ifconfig and route from /rescue. However, I'm facing an issue with getting dhclient to work. I've tried...

Hi All, with an openvpn client on the host (tun0 = 10.8.1.10, em0 = 192.168.1.10) that redirects traffic to the VPN server (10.8.1.1), for some jails, I would like the following: jails can reach out to the internet (ex: pkg install) jails are reachable from the local network (can expose...

hi all, here is the situation: - i'm running 14.1-STABLE and unfortunately qgis in not installable using pkg, and the installation via ports/graphics runs for 12h+ and then stops for some issues with python-modules version... - i really do need qgis... i check and it's in 14.1-RELEASE as a pkg -...

I have two jails: - 104 is a shared IP jail (classic) with an alias on the host's em0 - 115 is a vnet jail on vnet0.192 There is a bridge0 bridge with em0 and vnet0.192 as members I cannot have the two jails talk together. More precisely, 115 -> 104 works, but not 104 -> 115. I did tests with...

Hello, Can someone please help me figure out how to forward ports from inside of a jail? I think I need the pf firewall to do this, but I could be wrong. I have three iocage jails, each on their own VLAN, each running tailscale inside. My goal is to have incoming connections over tailscale...

Hi everyone, I'm doing a pet project where I'm designing the topology of what I'm going to implement on my physical server when I'll buy it. So, right now, I'm working in VMware Fusion, just to play with it and understand how things can be configured. But before exploring the topic, I'll give...

After installing the port in a jail with: pkg -j acme install step-certificates step-cli jexec acme rm -r /usr/local/etc/step jexec acme service step-ca configure And filing the form. Note that the value of "What IP and port will your new CA bind to?" was set to 192.168.0.5:433. After which...

Hello, I am running two freebsd servers. One shared with friends, one personal. On each I have half a dozen of jails running for different services. Until now, I never paid attention to periodic scripts and their emails. (I am still new and discovering freebsd.) I have set aliases on my most...

Hi, I have networking and DNS working from inside a jail (14.1 host and 14.1 jail). But DNS does not work for the pkg command. # cat /etc/pkg/FreeBSD.conf FreeBSD: { url: "pkg+https://pkg.FreeBSD.org/${ABI}/quarterly", mirror_type: "srv", signature_type: "fingerprints", fingerprints...

Hello everyone, I am learning the concept of jails and I am just testing things out using "Thick" jails (meaning an isolated complete userland for the jail). I have read the handbook and Absolute FreeBSD yet I am curious to find out which type of jails are you using in your environment, be it...

Latest issue of FreeBSD jails, I hope you like it.

I have a problem relating to upgrading to 14.2. The system I have the problem with it not the system being upgraded. However, I moved to that system the services that usually run on the system being upgraded. This has caused a massive negative impact on performance. We did not experience...

I have an application where we run many services in jails. Each service is isolated from the others and keeps its local data in a ZFS dataset that is passed into the jail. We're working on increasing redundancy in the system. Right now we are using ZFS snapshots sent to a backup server to cover...

Hi. I was using NAT configuration because I am using wlan0 interface for internet on my PC and it was working well until Bastille changed the pf.conf. I don't have much knowledge about firewalls. I had this line in the pf configuration. nat on wlan0 from {192.168.8.0/24} to any -> (wlan0)...

I have read around the forum for a bit and have a general idea of a decent structure for a server, let's use my own use case as an example. Static Site Jail: Nginx Reverse Proxy deploying mydomain.com, otherdomain.com. Git repository jail: Nginx + Cgit/other git implementation. File upload jail...