Hi —
I am running ezjail for some years now, but I intend to migrate to iocage. Not
that I am "disappointed" with ezjail, but I do want to give VNET a try.
After having read iocage's documentation and some google research, I am left
with the following questions:
1) Currently I am using ezjail'
Sorry, possibly not precise enough:
> "iocage chroot" and compile in /usr/src?
"iocage chroot" into basejail and compile in /usr/src?
___
freebsd-jail@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-jail
To unsubscribe, send
Allan Jude wrote:
> On 2015-12-18 16:18, Michael Grimm wrote:
>> I am running ezjail for some years now, but I intend to migrate to iocage.
>> Not that I am "disappointed" with ezjail, but I do want to give VNET a try.
>>
>> After having read iocage's
[Sorry for my private mail. That has been intended to go to the ML instead.]
Ernie Luzar wrote:
> Michael Grimm wrote:
>> I am running ezjail for some years now, but I intend to migrate to iocage.
>> Not that I am "disappointed" with ezjail, but I do want to give VN
Hi —
[Background: I wish to run (some of my) ezjail-made jails and VNET which cannot
be done by ezjail, natively.]
But I found a way to mix both ezjail and basic jail(8) functionality. It's
quite easy to fire up ezjail-made jails defined in jail.conf by jail. And, now
I can apply VNET to those
Michael B. Eichorn wrote
> On Sun, 2015-12-20 at 17:50 +0100, Michael Grimm wrote:
>> But I am bit stuck in finding a way to start my jails in a pre-
>> defined order (e.g. first DNS, then mail, …).
[…]
>> Thus, I might have overlooked it, is there a way to achieve my g
dweimer wrote:
> On 2015-12-20 1:25 pm, Michael B. Eichorn wrote:
>> On Sun, 2015-12-20 at 17:50 +0100, Michael Grimm wrote:
[starting sequence definition, how to?]
>>> Thus, I might have overlooked it, is there a way to achieve my goal
>>> using jail and jail.
Boris Samorodov wrote:
>
> 20.12.15 19:50, Michael Grimm пишет:
>
>> But I am bit stuck in finding a way to start my jails in a
>> pre-defined order (e.g. first DNS, then mail, …).
>
> AFAIK ezjails start jails in reverse natural (by name) order and stops
> in
Michael B. Eichorn wrote:
>
> On Sun, 2015-12-20 at 20:57 +0100, Michael Grimm wrote:
>> Michael B. Eichorn wrote:
>>> Does `service jail restart` do what you are looking for?
>>
>> Bingo! That made the trick! Thank you very, very much! Cool! That
>> co
Allan Jude wrote:
>
> On 2015-12-20 14:57, Michael Grimm wrote:
>> [Arrrgh, I never heard of "service" before (after so many years with FBSD)
>> :-( What a shame …]
> 'service' was not introduced until FreeBSD 8, iirc. It is mostly a
> redhat thi
Hi,
I am currently stuck, somehow, and I do need your input. Thus, let me explain,
what I do want to achieve:
I do have two servers connected via an ipsec/tunnel ...
[A] dead:beef:1234:abcd::1 <—> dead:feed:abcd:1234::1 [B]
… which is sending all traffic destined for dead:beef:1234:abcd:
Julian Elischer wrote:
>
> On 27/12/2015 4:24 AM, Michael Grimm wrote:
>> I am currently stuck, somehow, and I do need your input. Thus, let me
>> explain, what I do want to achieve:
>>
>> I do have two servers connected via an ipsec/tunnel ...
>
On 10.02.2016, at 17:14, bugzilla-nore...@freebsd.org wrote:
> https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=196152
>
> --- Comment #9 from commit-h...@freebsd.org ---
> A commit references this bug:
>
> Author: feld
> Date: Wed Feb 10 16:13:59 UTC 2016
^^^
> New revision: 29
James Gritton wrote:
> On 2016-04-29 13:09, Michael Grimm wrote:
>> On 10.02.2016, at 17:14, bugzilla-nore...@freebsd.org wrote:
>>> URL: https://svnweb.freebsd.org/changeset/base/295471
>> Hmm. Any chance to get that improvement MFC'd?
>
> Sure, I'll
Michael Grimm wrote:
>
> James Gritton wrote:
>> On 2016-04-29 13:09, Michael Grimm wrote:
>>> On 10.02.2016, at 17:14, bugzilla-nore...@freebsd.org wrote:
>
>>>> URL: https://svnweb.freebsd.org/changeset/base/295471
>>> Hmm. Any chance to get t
Sebastián Maruca via freebsd-jail wrote:
> Now we're talking about 10.3-HEAD wiht Jails+vnet... but then again, has
> anyone tried it? Roger, it seems you are thumbing up my challenge...
> But I guess i'll have to stick with netgraph instead epair/if_bridge because
> the later is not so documen
On 2016-06-03 0:05, Ernie Luzar wrote:
Michael Grimm wrote:
I switched to VNET+epair/if_bridge jails starting 10.2-STABLE,
now 10.3-STABLE, and haven't seen any issues, sofar.
You left out whether you had to compile the kernel with the vimage
option or whether vimage was already inc
Isaac (.ike) Levy wrote:
> Can I specify multiple IP interfaces and assign IP’s to them using jail.conf?
Not sure if I understand your question correctly, but I do define the following
in my jail.conf for VNET jails:
#
# host dependent global settings
#
$ip6prefixLOCAL = "fd00:dead:be
Isaac (.ike) Levy wrote
> Wow, that’s rad Michael,
>
>> On Dec 14, 2016, at 3:30 PM, Michael Grimm wrote:
>>
>> Isaac (.ike) Levy wrote:
>>
>>> Can I specify multiple IP interfaces and assign IP’s to them using
>>> jail.conf?
>>
>
Isaac (.ike) Levy wrote:
>> I do use "service jail start/stop" because that will obey my pre-defined
>> starting/stopping order of jails (which I do need to have, e.g. dns before
>> mail and such) in /etc/rc.conf
>>
>> jail_enable="YES"
>> jail_reverse_stop="YES"
>> jail_list="d
[cc'd to freebsd-jail@FreeBSD.org where that thread originated]
Valeri Galtsev wrote:
> On Wed, December 14, 2016 2:30 pm, Michael Grimm wrote:
>> #
>> # network settings to apply/destroy during start/stop of every jail
>> #
>> exec.prestart
Hi --
[FYI: I am running some service jails with an ezjail-type basejail approach.]
Until now I did stop all jails before updating and restarting them afterwards.
Now I am wondering if that is necessary at all.
Wouldn't it be sufficient to update basejail with running jails and restart
them a
Miroslav Lachman <000.f...@quip.cz> wrote:
> Michael Grimm wrote on 2017/11/11 21:42:
>> [FYI: I am running some service jails with an ezjail-type basejail approach.]
>>
>> Until now I did stop all jails before updating and restarting them
>> afterwards. Now I
Hi
[ I did recently migrate my servers from bare metal to cloud instances
(OpenStack at OVH) ]
[ FreeBSD 11.1-STABLE #0 r327055
]
My setup is as follows and didn't change for the last couple of years:
extIF0/pf/NAT <—> epairXa (
Kristof Provost wrote:
>
> On 21 Dec 2017, at 21:24, Michael Grimm wrote:
>> I do have to admit that I am lost here, and that I cannot think about what
>> is going wrong. The last download I did try at my old severs has been some
>> weeks ago. Ever since I did upgrade
Kristof Provost wrote
> On 21 Dec 2017, at 21:50, Michael Grimm wrote:
>> Kristof Provost wrote:
>>> Can you try turning off TSO? (`ifconfig $ifname -tso`)
>>>
>>> There have been issues with pf and TSO checksums, which looked a lot like
>>> th
> On 21. Dec 2017, at 22:48, Eugene Grosbein wrote:
>
> 22.12.2017 4:42, Michael Grimm wrote:
>
>> Well I prepared on of my webservers running at hostB/jailX to serve a sample
>> file for local downloading tests:
>>
>> 1) hostA wget from hostB/ja
Eugene Grosbein wrote:
> 22.12.2017 4:59, Michael Grimm wrote:
>>> Make sure and double check that your ESP packets do not get fragmented.
>>
>>
>> Hmm, I do not know how to achieve that. May the following tcpdump excerpts
>> answer your question, or d
Kristof Provost wrote:
> I run a very similar setup (although on CURRENT), and see no performance
> issues from my jails.
In utter despair I did upgrade one server to CURRENT (#327076) today, but that
hasn't been successful :-(
Ok, right now I do know:
(#) there is *no* performance loss (TCP
Farhan Khan wrote:
> On Mon, Feb 4, 2019 at 2:29 PM Farhan Khan wrote:
>> I have a jail NAT'd to a base system, but the connection is extremely
>> slow and frequently disconnects drops, whereas the base is fine has
>> perfectly fine connectivity.
>>
>> My configuration is as follows:
>> vtnet0:
Kristof Provost wrote:
> These are questions for anyone who's running pf on top of a hypervisor
> and has vnet or other jails, and has seen slowdowns.
>
> * What hypervisor are you running?
I do not know. It is a cloud hosted on OVH infrastructure in France
https://www.ovh.co.uk/public-cloud/i
Am 2019-02-22 11:31, schrieb Patrick M. Hausen:
[x-posted to freebsd-jail@freebsd.org]
The machine is an iocage jail host, all jails with VNET.
The problem is: network performance in the jails (not on the host!) is
abysmal
with the second setup. Not consistently so, everything *seems* to wor
Hi
On 22. Feb 2019, at 19:48, Patrick M. Hausen wrote:
> epair(4) interfaces added to the bridge
These are my number one suspects when it comes to performance loss within a
VNET jail compared to the host system.
> But I’ll fiddle with LRO nonetheless and report if that changes anything.
I'm
33 matches
Mail list logo
