jails

One-stop guide on how to get your webcam working inside of a GUI jail, including the microphone. Assumes you already have GUI set up inside the jail. My hardware: Ryzen Threadripper 3960x, NVIDIA 2080 RTX, Logitec C920 Webcam OVERVIEW - Background Info - Load Kernel Modules - Install...

This is my first post, so while I will do my best to stick to the forum rules and guidelines, I'm sure I'll get something wrong. All assistance in that regard is appreciated. With that out of the way, I seem to have a problem. I currently have a FreeBSD 12.2 ZFS VPS set up, and connected to my...

I'd like to use my home server as a router too. Somebody suggested to use ESXI as host and pfsense for routing and FreeBSD for webserver as guests. The reason that if the router is hacked they won't have an easy time hacking the webserver too and because load on the webserver won't slow down my...

Ok this is going to be a long one and I REALLY need the mods and smart guys on here to read this, because I think this is a bug, I just don't know with what exactly. I'll try to be as brief as possible but as descriptive as necessary. Description I have a set of GUI jails connected to the...

The exec.poststop script doesn't seem to run unless the jail is specified by name, rather than number. For example: jail -r browsing Runs my custom exec.poststop script. However, lets say my jail number for "browsing" is 5: jail -r 5 Skips my poststop script entirely. What gives? I looked in...

Hi, I am an intermediate FreeBSD ( mostly server-side ) and Docker user. I am trying to migrate more of my stuff from Linux to FreeBSD. But I need a functionality of Docker that I don't know if it exists in FreeBSD jails. First, I have read about jails a fair bit and I have found infos about...

I have successfully set up a jail following genneko's notes on setting up a jail in FreeBSD. However after installing and enabling Wireguard every single boot time, my jail has no network. I modified genneko's jails into making one jail by the way. Here's how my set up is looking at the moment...

Hello, I am trying to install a wireguard VPN in a jail but am having some trouble with the jail playing with TUN devices. When I try to create the wireguard interface I get the following error: root@vpn2:~ # wireguard-go wg0 INFO: (wg0) 2020/10/20 17:10:56 Starting wireguard-go version...

Made a post earlier about theoretical hidden directories attack vectors and PEFS. This is a simple question about a problem I'm having. Inside a jail. With allow.mount; and enforce_statfs="0"; in /etc/jail.conf, I am getting the error message root@jail:/home/user # ls -I test...

Hi all, I am trying to run multiple instances of an application in different jails. The jails should be identical in all ways except different IP addresses and one directory, where the configuration for the given application will reside. Is there a way to trivially create jails of this sort...

I think I know the answer to this, but want to confirm... I'm setting up the Falkon browser in my jails, and one of the options is to allow Javascript access to the clipboard. I'm guessing that it only has access to the clipboard internal to the jail, but I really want to confirm that. The...

I have a vnet jail for my physical NIC. In order to start the pf service in that jail, I had to add a devfs.rule to unhide /dev/pf. I also have wireguard jails which I intend to do the same, and connect them to my NIC-jail. (everything is vnet). Does anyone know if this is a bad idea? Will...

Hi all! how are you? :) I have a Jail host which contains about 50 Jails. During day-to-day operations, I need to install packages, a lot of these packages are the same (nginx, vim-console, etc), it would be really good if I can make the Jail host a pkg cache server, where the Jails can use the...

I am running a few jails via ezjail. Nginx and pf on the main host take care of routing incoming requests to the appropriate jail. Each jail needs to run different instances of the same service - Apache and MySQL. Please help me get the set up right for doing this^^. As far as I understand...

Hey Community, I want to try something but need some advice before I start. If I open a pppoe connection on a machine which has some jails instantiated, could these (maybe compromised) jails do something nasty with that tun device? In my understanding the kernel creates the pppoe device which...

I have been fighting with quotas in jails and have found a number of inconsistencies with quotas and associated commands on both the host system and the jails. In prior releases, I have successfully deployed jails supporting quotated users with ezjail. I'm looking to move to 12.x and have been...

Hi All, I didn't know where to post this because I could not find a specific jail forum so figured I would post it here as a base system general thread :) Am no expert so really after some opinions from experienced users and anyone who has seen this happen. It would be great to know if this is...

Hello All, We are having trouble with finding ways to redirect the public IP address to the jail IP address. We have looked into the rc.conf and jail.conf files but are now sure how we should edit any of these files to achieve this. We have previously been unsuccessful in editing pf values...

On my system, pkg within jails seems to complain about the version numbers. I have checked the older posts (mostly from late last year) in this category, but I don't believe they solve my problem. Symptoms: Issuing a pkg update within a jail gave the apparently common error But, doing uname...

Hello, I have some jails on my FreeBSD host. They have IPv4 addresses on a cloned interface lo2 I created. None of the jails has an ip address on the external interface of the host. They only use the cloned interface lo2 and I configured my pf firewall so that the host acts as a router and does...