Jail management tools

  • Thread starter Deleted member 63539
  • Start date
D

Deleted member 63539

Guest
I tried ezjail as the handbook recommended. But very soon later I realized it's not the thing I needed. I need an actual jail management tool. ezjail seems to try to simulate Solaris's sparse zone with nullfs.
 
The jail command is a jail management tool. Have you tried that? Otherwise for an easier user experience there is iocage.

There is also a tool that one of our other members has made that gives the "Docker-like" experience that some Linux-users crave.

However I don't recall its name. I think it begins with an 'F'.
 
my tipp: go with the native tools from the basesystem (jls, jail, jexec, mount_nullfs ...), avoid iocage etc.
I've never encountered any problems with iocage. I decided to go with that mostly because of MWL's book on the matter,

But sure, the tools that come with the base system are perfectly fine.
 
I've never encountered any problems with iocage. I decided to go with that mostly because of MWL's book on the matter,

But sure, the tools that come with the base system are perfectly fine.
Someone sent me a tutorial for iocage. It seemed to utilize VNET and newer FreeBSD version. I'm on 11.4-p1 so I think it's not for me.

 
my tipp: go with the native tools from the basesystem (jls, jail, jexec, mount_nullfs ...), avoid iocage etc.
I'm finding wrappers around these tools to make my life easier. But I'm fine with the native tools, though.
 
After all of your answers, I think I would not back to use ezjail but stick with the native tools. A bit more laboring, but I don't have much jails, so it's not really a problem for me. I'm very bad at shell scripting so I can't create a tool myself to automate the job. This is the reason why I seek for someone's solution before I actually try. Perhaps if the number of jails of mine increase, I would learn shell script to create an automation tool myself. But not now.
 
I use native jail on my servers and play with bastille.
Focker is a no go for me because of py.
I recommand to use native jail command as there is strong support and you learn something stable.
Ezjail, iocage and others tools become deprecated and if you do not experiment native jails, you can miss some concept to made a transition to an another tool.
 
  • Like
Reactions: a6h
Someone sent me a tutorial for iocage. It seemed to utilize VNET and newer FreeBSD version. I'm on 11.4-p1 so I think it's not for me.

Just a basic tip to make your life easier: don't turn to random tutorials, always read the actual documentation first.
Because
A) those tutorials are mostly personal notes filled with half truths
And B) if the official documentation sucks, you probably don't want to use that software anyhow.

I run iocage without vnet just fine.
 
my tipp: go with the native tools from the basesystem (jls, jail, jexec, mount_nullfs ...), avoid iocage etc.
I think it depends on what OP wants. If he's a user who just wants to jail some applications and is willing to accept the prerequisites (ZFS, python), iocage is an excellent choice that hides the low-level details. If he needs to understand the low-level details, that's a different matter. The Jails book by Lucas was very helpful to me and I'm glad he included a section on iocage.
 
Back
Top