nce.
On Jan 29, 2014, at 11:52 AM, wishmaster wrote:
>
>
>
> --- Original message ---
> From: "Nicolas de Bari Embriz Garcia Rojas"
> Date: 29 January 2014, 13:46:29
>
>
>
>> Hi, I just updated the host from 9.2 to 10.0.
>>
>> What I p
Hi, I just updated the host from 9.2 to 10.0.
What I plan to do for each jail is:
# $D is the home of the jail.
make installworld DESTDIR=$D SRCCONF=/etc/src-jail.conf
cp -R $D/etc $D/etc.old
make distribution DESTDIR=$D SRCCONF=/etc/src-jail.conf
Basically to avoid all the ‘mergmaster’ stuff
Hi, sorry for the confusion, I will go a little more in detail trying to
explain more my use case.
To what it concerns to jails:
Basic setup:
FreeBSD Host with N jails.
For this I create a basic, light jail (custom src.conf) , the one later is
cloned (ZFS), and configuration is in jails.conf.
I like to use jails.conf and the sysutils/jail2/ port.
I create a very basic jail and later just clone it taking advantage of ZFS.
I share the /usr/ports from the host with the jails, but let each jail have
their own files, so that later if needed, I can just dump the full jail and
move it to a
Hi, many thanks it is working now, what I did, was to add:
add path 'bpf*' unhide
to the /etc/defaults/devfs.rules, later did a /etc/rc.d/devfs restart
and got it work.
This is how now looks the devfsrules_jail section on devfs.rules
# Devices usually found in a jail.
[devfsrules_jail=4]
add in
Hi, I am using vnet on a jail, but when trying to acquire an IP via DHCP i get
the following message:
Can't find free bpf: No such file or directory
any ideas of how to make the jail obtain an IP via DHCP when using vent ?
regards.
___
freebsd-jail@fr
If for starting at boot time when using jail.conf you can use the
sysutils/jail2 port
If I am right you can define the order of start for jails in the jail2_list
(rc.conf), something like:
jail2_list="jail1 jail2"
regards.
On Mar 30, 2013, at 5:33 PM, Dirk Engling wrote:
> Dear jail ha
Hi all, what tool can help me to (emulate) PF or a firewall behavior
within a jail that it is using VIMAGE ?
regards
___
freebsd-jail@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-jail
To unsubscribe, send any mail to "free
Hi, how can I add more swap space within a jail ?
I have a jail with limited resources via rctl with somethiing like:
jail:myjail:maxproc:deny=50
jail:myjail:memoryuse:deny=512M
jail:myjail:swapuse:deny=512M
But I want to know it it is possible to add jail disk space to
increment the swap ?
I
In my pursuit to monitor jails bandwidth I found bsnmp-jails.
I got it up and running but can't get the MIB.txt to work.
the output of snmptranslate .1.3.6.1.4.1.12325 is :
SNMPv2-SMI::enterprises.12325
any idea of how to properly setup the MIB.txt so that I can use
enterprises.fokus.begemot.j
am" scripts etc.
Any ideas ?
On Mar 24, 2013, at 2:14 PM, Fabian Keil wrote:
> Nicolas de Bari Embriz Garcia Rojas wrote:
>
>> Hi, it is possible to have quotas per user inside a jail using zfs?
>>
>> I don't want to create a zfs file system for each user I
Hi, it is possible to have quotas per user inside a jail using zfs?
I don't want to create a zfs file system for each user I just want to apply,
let's say a quota of 100M per account. (like UFS quotas) but within a jail
any ideas ?
--
> nbari
signature.asc
Description: Message signed with O
Guys, please don't take me bad, but better stop this "@%!" and use your
talent to help me found a way to properly measure bandwidth per jails in
a long period.
I am using sysutils/jail2 port to start/stop jails, My working
configuration so far is this:
I use the jid so that later I can use in /et
Hi, when using a numeric names for a jails something like:
10 {
exec.start = "/bin/sh /etc/rc";
exec.stop = "/bin/sh /etc/rc.shutdown";
}
20 {
exec.start = "/bin/sh /etc/rc";
exec.stop = "/bin/sh /etc/rc.shutdown";
}
the name (numeric) becomes the jail ID when,
wrote:
> On Thu, Mar 21, 2013 at 01:26:13AM +, Nicolas de Bari Embriz Garcia Rojas
> wrote:
>> Hi, any tool, idea or method for measuring the bandwidth consumed per
>> jail ? (or by IP)
>>
>> What about using pflow ( pseudo-device pflow) any advice ?
> I found a
Hi, any tool, idea or method for measuring the bandwidth consumed per jail ?
(or by IP)
What about using pflow ( pseudo-device pflow) any advice ?
thanks in advance.
regards.
--
> nbari
signature.asc
Description: Message signed with OpenPGP using GPGMail
Hi, nice document, related to the use of jail.con maybe the use of
sysutils/jail2 could be mention since I think makes things a little more
easy.
related to this:
During the development of the jail.conf file method documented here, a
few bugs came to light with the jail(8) program which the author
Hi, all, I am start using the jail.conf for running my jails, in rc.local I
have this line jail -c this to start my jails at boot time (any better ideas)
Now checking the man pages for the jail I found a option that cough my
attention, 'cpuset.id' any idea of how to use it ?
I would like to fo
Hi, It is possible to set security.jail.allow_raw_sockets=0 per jails
instead of all the jails ?
regards.
--
> nbari.tel
___
freebsd-jail@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-jail
To unsubscribe, send any mail to "f
A friend suggested to schg the rc.conf and login.conf of the jail and
put the root user in a login class with some strict perms. maybe can
be a solution.
regards.
--
> nbari
On Mar 17, 2009, at 1:27 PM, Jille Timmermans wrote:
Nicolas de Bari Embriz Garcia Rojas schreef:
Hi, thanks
Hi, thanks for the answer just on question how to setup rlimit for
jails ? any ideas
regards.
--
> nbari
On Mar 17, 2009, at 8:45 AM, Jille Timmermans wrote:
Nicolas de Bari Embriz Garcia Rojas schreef:
Hi all, it is posible to limite the maxproc per jail ?
No, I wrote a patch once; I w
Hi all, it is posible to limite the maxproc per jail ?
or how to put a protection to the main host in case the root user of a
jail try to make a fork bom.
regards.
--
> nbari
PGP.sig
Description: This is a digitally signed message part
Hi all, it is posible to set up an dislkess operation system under a
jail ?
regards
--
> nbari
PGP.sig
Description: This is a digitally signed message part
Hi all, I have 2 disk using raid 1 (hardware) ~ 250gb with default
freebsd partition schema, I would like to resize /usr partition and to
use ZFS on the space left on disk.
It is posible to do so ?
Or can I reinstall freebsd and only have 10GB for /usr and the rest of
the disk for ZFS. It
Hello, how to use the correct policy on the base host ? can you please
explain more.
regards.
--
> nbari
On Jun 9, 2008, at 12:34 PM, Bjoern A. Zeeb wrote:
On Fri, 6 Jun 2008, Nicolas de Bari Embriz Garcia Rojas wrote:
I had to make an VPN using IPSEC, the vpn is on the master host
this option IPSEC_FILTERGIF seems only to work when using ipencap, but
any idea on how to make it work when not using ipencap ?
regards.
I had to make an VPN using IPSEC, the vpn is on the master host and is
working but if it is only available from the master host not the
jails, how can i
I had to make an VPN using IPSEC, the vpn is on the master host and is
working but if it is only available from the master host not the
jails, how can i make the jails to ping/access/telnet the VPN?
I have something like this:
192.10.10.1>A.A.A.A<--VPN /INTERNET->B.B.B.B---
Hi all, the solution to my problem was to recompile the kernel with
this option:
#options IPSEC_FILTERGIF
now i can route/nat trafic with pf with out any problems, hope this
can help some one.
regards
Nicolas de Bari Embriz Garcia Rojas schreef:
Hi all, I am trying to all trafic from
Hi all, I am trying to all trafic from a gif0 interface used for a vpn
to an public IP on the same server that is like an alias
I have the following schema (FreeBSD 6.3)
gif0: flags=8051 mtu 1280
tunnel inet 67.228.79.224 --> 74.86.163.16
inet 172.16.224.1 --> 172.16.16.1 netmas
Hi all, I am trying to all trafic from a gif0 interface used for a vpn
to an public IP on the same server that is like an alias
I have the following schema (FreeBSD 6.3)
gif0: flags=8051 mtu 1280
tunnel inet 67.228.79.224 --> 74.86.163.16
inet 172.16.224.1 --> 172.16.16.1 netm
I used your rules an worked is just that for an know reason if I
restart the vpn on the master host it stops working. also takes some
time for work.
any ideas ?
regards
On Apr 24, 2008, at 6:20 AM, Miroslav Lachman wrote:
Nicolas de Bari Embriz Garcia Rojas wrote:
In your example what
In your example what values are for ext_addr_3, ect_if?
regads.
On Apr 22, 2008, at 4:09 PM, Miroslav Lachman wrote:
Nicolas de Bari Embriz Garcia Rojas wrote:
I have a ipsec/vpn on FreeBSD 6.3 from one master server to
another server the one has multiple jails. each jail has is own
4:09 PM, Miroslav Lachman wrote:
Nicolas de Bari Embriz Garcia Rojas wrote:
I have a ipsec/vpn on FreeBSD 6.3 from one master server to
another server the one has multiple jails. each jail has is own
public IP and i need to do something like this:
vpn point >--<
I have a ipsec/vpn on FreeBSD 6.3 from one master server to another
server the one has multiple jails. each jail has is own public IP and
i need to do something like this:
vpn point >--< master server with jails <--->
jail (75.76.78.80)
64.68.69.79/10.10.10.1
I have a ipsec/vpn on FreeBSD 6.3 from one master server to another
server the one has multiple jails. each jail has is own public IP and
i need to do something like this:
vpn point >--< master server with jails <--->
jail (75.76.78.80)
64.68.69.79/10.10.10.1
35 matches
Mail list logo
