I have set up a FreeBSD 11.1 server that I hope to use as a web server for a number of sites.
For security, each site is going to have it's own jail. Because I only have one static IP address, one of these Jails is simply going to be a reverse proxy (Using nginx) and will provide https access.
I am used to using Hyper-V and I would normally, if I were going to have multiple Hyper-V machines, create a virtual internal/private network switch so all the traffic between my web servers and reverse proxy would be hidden on a 'virtual switch' so as to isolate it.
Is there a way to do the same in FreeBSD? What I am thinking is that I have to create a bridge, and create virtual interfaces to connect to it for each jail. But I am unsure how to progress once I have created the jail. Can I create virtual connections to this bridge? If so, how? Am I barking up the wrong tree here?
Any help would be appreciated.
Cheers,
Chris.
For security, each site is going to have it's own jail. Because I only have one static IP address, one of these Jails is simply going to be a reverse proxy (Using nginx) and will provide https access.
I am used to using Hyper-V and I would normally, if I were going to have multiple Hyper-V machines, create a virtual internal/private network switch so all the traffic between my web servers and reverse proxy would be hidden on a 'virtual switch' so as to isolate it.
Is there a way to do the same in FreeBSD? What I am thinking is that I have to create a bridge, and create virtual interfaces to connect to it for each jail. But I am unsure how to progress once I have created the jail. Can I create virtual connections to this bridge? If so, how? Am I barking up the wrong tree here?
Any help would be appreciated.
Cheers,
Chris.