jails

  1. Farhan Khan

    Jail does not respond over IPv6 until it initiates traffic

    I am experiencing this odd issue when I restart one of my jails, which operates as the IPv6 router, does not respond to IPv6 packets, even though tcpdump reveals that it receives them. It isn't until it initiates a traffic with other hosts that it starts to respond. IPv4 works just fine. I have...
  2. J

    Solved Do nullfs mounts count toward disk usage?

    This is probably a very simple, bordering on stupid, question; so apologies for that. Do nullfs mounts (of host filesystems) within a jail count toward actual disk usage? If I mount a host filesystem in a jail as a read-only nullfs, doing du on the jail includes the (size of the) mounted...
  3. R

    PF PF config for double NAT jail host

    I think that I'm being somewhat ambitious and I'm finding that I'm getting some horrible issues as a result. Firstly, what I'm trying to achieve. The way that I have tried to set up this network in the past was that the router was in the DMZ and that it passed some traffic (HTTP/S) through to...
  4. T

    Understanding permissions in jails and host

    Hello everyone, I have recently upgraded my FreeBSD 10.3 server to 11.2. With this change, I also setup my system using jails: - Plex - Samba - Apache PHP stack - Nginx Node.js stack - Database stack - Etc. I have two ZFS pools: - zfs-os the FreeBSD OS - data mounted to /data I am using...
  5. squirtle

    Setting up a router in a jail to use openvpn client

    I know, this appears to be answered all over the place. But none of the answers are working for me so I must have misunderstood something somewhere along the way. Background: I'm trying to set up a FreeBSD jail that acts as a router. Inside that jail, I'd like to run OpenVPN. I would like all...
  6. timypcr

    Trouble installing packages in jails after FreeBSD 11.2 upgrade

    I recently upgraded from FreeBSD 11.1-release to 11.2 following the handbook, I’m now getting : size mismatch, cannot continue on some of the jails when attempting to update and install packages. For example when I attempt to install curl Fetching curl-7.61.0.txz: 100% 1 MiB 1.3MB/s...
  7. rumate

    Solved Jails configuration

    Hi all, I wonder if it is possible to define automatically starting services in /etc/jail.conf? I can set an IP address for a jail, define the NIC to use, give a hostname and other variables. I couldn't start apache24 using exec.start, I assume, because this service isn't enabled in the jail's...
  8. J

    Other Difference between Fail2ban "jails" and FreeBSD jails

    First off, I am not 100% sure if this question belongs in this forum, or in the general topics (base system) forum. So I'd be grateful if a more knowledgeable admin advised on it. I am reasonably familiar with FreeBSD jails, and I use them often enough (via ezjail). While recently checking out...
  9. fred974

    Zabbix and jails advise

    Hi all, I finally managed to get zaabbix to work on my host and agent.. I have 1 physical server and run many jails inside it. At the moment I only monitor the host but could anyone please advise if I shoud alos install the aget inside all the jail? If no, how can i monitor jail uptime, web...
  10. E

    Solved Routing traffic to jails - PF restart required after reboot

    I'm running ngircd and musicpd, each inside its own jail, on FreeBSD 11.1, and have configured PF so that the jails have internet access and I can connect to both of them. The problem is that if the machine is rebooted, I have to ssh into it and reload pf before I can connect to the irc server...
  11. L

    Solved Jails - ezjail, qjail, iocage, other

    After almost a couple years away, I'd like to know about jails management systems, for a new server. In the past I've used ezjail, then qjail. Now, in 2018, are all these tools up-to-date with current? ezjail is mentioned in the manual, so I guess it should be... iocage seems to require Python...
  12. Farhan Khan

    My "Thin" Jail Configuration

    Hi all, wanted to get a review of my jail configuration. In short, I created a "base" jail and am read-only null-mounting the other jail's static files to it. Three predicates: /etc/rc.conf will create a bridge0 at startup and add re0 (the public internet) to it. /usr/jail/base is a FreeBSD...
  13. Wamphyre

    Weird trouble with Nginx/Apache reverse proxy on Jail.

    Hello. I'm experiencing a strange problem in my FreeBSD 11.1 jailed web server. 4 hours ago I needed to replace the hard drive of my home server, because was broken and I reinstalled FreeBSD with exactly the same config before hard drive change, where the jailed server was doing the work so...
  14. ShelLuser

    [Guide] A 'Shell take' on Jails

    Editorial It has been two times now that relying on a Jail managed to get my system and myself out of a heap of trouble. The first time was when I was unable to build a certain port but the error messages made me suspicious; I didn't believe that this could have been a screw up from the ports...
  15. Farhan Khan

    Solved ssh immediately disconnecting across all jails

    Hi all, I ran freebsd-update across all my jails. Now, whenever I try to ssh(8) into one, the connection immediately dies. There are no messages in /var/log/messages. Example below: $ telnet 192.168.100.22 22 Trying 192.168.100.22... Connected to 192.168.100.22. Escape character is '^]'...
  16. DiscmanDaemon

    Solved Laundry Memory, Jails, and Thrashing

    Good Morning All, I have been experiencing some mysterious thrashes on one of my servers, and I have finally gathered enough data about the problem to possibly ask for help (it was very difficult to get data since once it started thrashing there was nothing to be done except reboot...). The...
  17. DiscmanDaemon

    Solved Giving jails network access through host's IP

    Hello all, I am looking to allow a processes inside jails to make network requests (such as DNS lookups, http requests, etc). The spit in the punch is that I wish to avoid giving them an alias on the host's NIC as I want to automate the creation and destruction of jails, and wish to avoid...
  18. T

    IPFW authpf alternative?

    I have a use case for authpf. However, I'd prefer to stick with IPFW as it seems to be more maintained and more recent than the included PF version. However, I've been unable to locate an alternate option that'll work with IPFW. Maybe I'm missing something, or maybe there's another way...
  19. n9010

    change the default shell for jexec

    Hi, I recently changed the default shell of one of my servers to zsh, since I'm lazy I used to type jexec <jailname> to jump inside a jail. After I switched to zsh, I get an error because zsh is not installed inside the jails. I know that I can use jexec <jailname> /bin/csh, but since I'm...
  20. scrappywan

    IOCAGE jails not found after pkg upgrade to 0.9.9.1_1

    On FreeBSD 11.1 I have four jails running that were created with py36-iocage about three months ago. Recently I ran pkg update/upgrade on my system and it upgraded IOCAGE to version 0.9.9.1_1. Since my last reboot IOCAGE can no longer locate any of the jails it originally created as if it...
Back
Top