jails

After installing the port in a jail with: pkg -j acme install step-certificates step-cli jexec acme rm -r /usr/local/etc/step jexec acme service step-ca configure And filing the form. Note that the value of "What IP and port will your new CA bind to?" was set to 192.168.0.5:433. After which...

Hello, I am running two freebsd servers. One shared with friends, one personal. On each I have half a dozen of jails running for different services. Until now, I never paid attention to periodic scripts and their emails. (I am still new and discovering freebsd.) I have set aliases on my most...

Hi, I have networking and DNS working from inside a jail (14.1 host and 14.1 jail). But DNS does not work for the pkg command. # cat /etc/pkg/FreeBSD.conf FreeBSD: { url: "pkg+https://pkg.FreeBSD.org/${ABI}/quarterly", mirror_type: "srv", signature_type: "fingerprints", fingerprints...

Hello everyone, I am learning the concept of jails and I am just testing things out using "Thick" jails (meaning an isolated complete userland for the jail). I have read the handbook and Absolute FreeBSD yet I am curious to find out which type of jails are you using in your environment, be it...

Latest issue of FreeBSD jails, I hope you like it.

I have a problem relating to upgrading to 14.2. The system I have the problem with it not the system being upgraded. However, I moved to that system the services that usually run on the system being upgraded. This has caused a massive negative impact on performance. We did not experience...

I have an application where we run many services in jails. Each service is isolated from the others and keeps its local data in a ZFS dataset that is passed into the jail. We're working on increasing redundancy in the system. Right now we are using ZFS snapshots sent to a backup server to cover...

Hi. I was using NAT configuration because I am using wlan0 interface for internet on my PC and it was working well until Bastille changed the pf.conf. I don't have much knowledge about firewalls. I had this line in the pf configuration. nat on wlan0 from {192.168.8.0/24} to any -> (wlan0)...

I have read around the forum for a bit and have a general idea of a decent structure for a server, let's use my own use case as an example. Static Site Jail: Nginx Reverse Proxy deploying mydomain.com, otherdomain.com. Git repository jail: Nginx + Cgit/other git implementation. File upload jail...

Does PCI Passthrough to a jailed bhyve VM work, for the latest version - FreeBSD 14.1? I know PCI passthrough works for bhyve VMs. But does it work if the bhyve VM is inside a jailed? How do I configure that?

I setup void Linux jail by following this tutorial https://antranigv.am/posts/2021/08/2021-08-21-00-37/ Create a file at /home/james/voidlinux/etc/fstab.pre and insert the following inside devfs /home/james/voidlinux/dev devfs rw 0 0 tmpfs...

I have a workaround for this, I'm curious about parent-child permission usefulness (use cases). I've been playing around with hierarchal jails. I have a toy problem set up: 1 host + 4 jails. Jails: (1) Firewall/Gateway, (2) SSH Jump Server, (3) nginx Reverse Proxy, (4) Web Server. The Host is...

moved: Server and Networking > Emulation and virtualization /boot directory in a jail gets filled up?

Well, me again, from France ;-( I've got three jails (managed with bastilleBSD ;-)) : one with nginx in frontal ; a second with Apache + Nextcloud (Why Apache ? Because, nginx seems not to be supported officialy in Nextcloud) ; a third with OnlyOffice. All is working well since a week... =>...

I've been dealing with an issue for about 6 months now. Curious if anyone has ideas how to expand troubleshooting. Summary of issue: Use any SR-IOV capable network card on a Supermicro motherboard Enable SR-IOV Create only vnet jails using SR-IOV VFs: works great Create only bhyve VMs using...

Hi all I'm still new to FreeBSD. But I torture my Home-Lab as much as I can, to learn as much as possible. I started learning about Jails.It's a great concept, and now I use Bastille to manage Jails and in general it works superb. Here's my new goal I set for myself: 1. Setup a FreeBSD server...

geli(8) is one of the most powerful block device-layer disk encryption system available in FreeBSD, which protects our data against cold storage attacks. geli(8) encrypts our data so that a skilled intruder cannot see sensitive documents, or modify our data without us noticing that a...

I was following the handbook when creating a thin jail and ended up with a jail where ping reports the following error: ld-elf.so.1: Shared object "libcap_dns.so.2" not found, required by "ping" The fault is probably mine, but I wanted to understand better what happened. My host is...

Greetings. I have public NIC with few public IPs assigned; $ext_if = my external NIC with my public Internet addresses $public_IP_1 = one of my public Internet IP (assigned as an alias and working on $ext_if) And 10.10.10.2 is my jail running on FreeBSD 14 host machine. I have the following PF...

I created a jail with a configuration structure that I developed for all my internal freebsd jails, I decided to install 14.0-Release without CBSD/Churchers Bhyve, essentially good old FreeBSD Jails. The jail 14.0-Release does not create an ipv4; only the ipv6 option is in the ifconfig... I...