Solved Bastille/Jails auto stop on poweroff/reboot

DrC3P1

DrC3P1

Hello,

Quick questions about jails management with Bastille.

Let me start with a description of my setup :

My home server runs a "minimal" FreeBSD with openSSH and sysutils/bastille.
The system is installed on un-encrypted datasets.
My jails are in encrypted datasets (zpool/bastille and its child datasets).
I do that to be able to easily remotely restart my server in case of power failure (the BIOS is set up to autorestart after a power failure), then I log on the host FreeBSD through SSH, load-key, mount the jails datasets, and start my jails.

That means I can't use the option bastille_enable="YES" and bastille_list="jail1 jail2 ..." in my /etc/rc.conf, because the jails datasets are still locked and unmounted.

But I wonder what's happening when I reboot my host FreeBSD. I use to manually stop every jails before doing that, but it could be more handy and safer if it was automated.

So :
1. Are the jails stopping properly when i do a reboot or poweroff on my host freeBSD ?
2. If i set bastille_enable="YES" and bastille_list="", and then start manually my jails, are the jails stopping properly when I do a reboot or poweroff ?
3. Should I write a script that runs before shutting down my host freeBSD ?

I can't find a reliable information about that.

Thanks :)
 
Okay, great!
I'm still on Bastille 0.13.20250126 and using the quarterly branch, so I guess I'll have to wait and manually stop my jails before rebooting in the meantime.

Do you think sysrc bastille_enable=YES won't be a problem if /usr/local/bastille/* content is on encrypted datasets, which are not mounted on FreeBSD startup ?
 
You must log in or register to reply here.
Back
Top