jail

Hello there! I'm going to place OpenVPN Server and TLS CA Server for internal domains in two FreeBSD Jails on the same server and use encrypted partitions to make this system more secure. Is it good enough practice? How could I measure load on every single service?

(I've read other threads in the forum, but they didn't help me figure out this.) Since a few days my server has regularly logged many messages like the following ones every 20 minutes: Nov 1 16:24:58 myserver kernel: arp: xx.xx.xx.100 moved from 02:0e:b6:59:43:0a to yy:yy:yy:yy:yy:yy on...

i just installed Ubuntu 24.10 Oracular Oriole in a jail and the bin and usr/bin directories are empty i created a new debootstrap script for oracular and then ran debootstrap to install 24.10 doas debootstrap --arch=amd64 --no-check-gpg oracular /usr/local/jails/linux/ubuntu...

I'm working with Hierarchical jails. The setup is as following: [host] -> [jail:infrastructure] [public ip] [no private ip] Bridge0 (public) [no bridge ip] { -> webstuff jail + public ip vm1 [public-ip] vm2 [public-ip] -> netstuff jail + public ip...

I would like to access a remote jail/VM host behind a family member's home router without making any changes to their router config or adding additional hardware. (I suppose they could treat the host as a guest to disallow LAN access and allow only outgoing traffic.) I think I need these...

When I try jail -crm -f dns.conf, where dns.conf is the following dns { exec.start = "/bin/sh /etc/rc"; exec.stop = "/bin/sh /etc/rc.shutdown"; exec.consolelog = "/var/log/jail_console_${name}.log"; allow.raw_sockets; exec.clean; mount.devfs; enforce_statfs = 5; devfs_ruleset = 5; path =...

Davinci Resolve 19.1 video editor installed in a Rocky Linux 9 jail on Freebsd 14.1 p4 https://github.com/NapoleonWils0n/davinci-resolve-freebsd-jail-rocky Davinci Resolve on linux is actually tested with Rocky Linux it used to be Centos We use the Rocky-9-Container-Base.latest.x86_64.tar.xz...

Davinci Resolve 19.1 now working in a Ubuntu Mantic jail i previously had Davinci Resolve 18.6 working in a jail but i had to figure out a couple of fixes for 19.1 1 - using export LD_PRELOAD in the jails ~/.zshenv export...

I setup a jail with bsdinstall jail /jails/myjail as in https://freebsdfoundation.org/freebsd-project/resources/introduction-to-freebsd-jails, and setup the /etc/jail.conf contains the following myjail { exec.start = "/bin/sh /etc/rc"; exec.stop = "/bin/sh /etc/rc.shutdown"; exec.consolelog =...

I have just created a Rocky Linux 9 minimal Jail Rocky Linux Jail notes so far on github work in progress https://github.com/NapoleonWils0n/cerberus/blob/master/freebsd/rocky-linux-jail.org The reason im looking at Rocky Linux is to use it to install Davinci Resolve 19 because Davinci Resolve...

I recently came across a issue using Freebsd and Linux Jails with zsh In the jail config for Freebsd and Ubuntu i mount /home with nullfs mount += "/home $path/home nullfs rw 0 0"; The problem is i have zsh installed in both the Freebsd and...

I have just managed to get DaVinci Resolve 19 working in a Ubuntu Mantic jail with Nvidia and Cuda https://www.blackmagicdesign.com/uk/products/davinciresolve i have updated the github repo below for DaVinci Resolve 19 because there are a couple of new fixes needed...

Running Firefox in a Freebsd classic jail https://github.com/NapoleonWils0n/jailfox Firefox in a Freebsd jail using Wayland

Hello! I am unsure if my case is working as intended or is a bug, but consider the following jail config file: $ cat /etc/jail.conf.d/test-ordering.conf test-ordering { host.hostname = "${name}"; path = "/usr/local/jails/containers/${name}"; exec.prepare = "echo tmpfs...

I just tried creating a Ubuntu 24.04 Noble Numbat Jail with debootstrap to install Davinci Resolve 19 in the jail noble isnt one of debootstrap scripts so i copy an existing script and modified it to install noble i have done this before with lunar and mantic without any issues these are the...

Davinci Resolve 19 has just been released today ( Resolve 19 was a beta version previously ) Davinci Resolve download link https://www.blackmagicdesign.com/uk/products/davinciresolve you need to register with an email address to download the installer the installer is 2.8 gig zip file...

Hello everyone! A few weeks ago I started learning FreeBSD, reading the handbook and Michael W. Lucas books. Everything is so wonderful about FreeBSD and I can't wait to use it more in my production environment. I have setup a simple poudriere jail on my FreeBSD host just to have packages...

Hello everyone. I set out to assemble a minimal world for jail, in which only the Firefox browser would run, and the ability to update packages via pkg. Has anyone practiced their own assembly of a minimal world for jail? If yes, then please share your configs for the assembly. As I...

Hi, is there any chance to expose MiniDLNA service (located in Jail/ NAT) to local network? When I run DLNA on base system other devices in network correctly see service on UPnP but in jail there are no broadcasting. My interfaces (lo1 is bridge to em0) em0...

For your average small server hosting a couple of websites, databases, media servers and similar (i.e. neither performance critical nor heavily cpu/memory/storage limited), do you generally use thick or thin jails? Please explain your reasoning. Poll above. Personally, I tend to default to...