From owner-freebsd-jail@FreeBSD.ORG Sun Sep 26 20:57:58 2010 Return-Path: Delivered-To: freebsd-jail@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id E7A931065675; Sun, 26 Sep 2010 20:57:58 +0000 (UTC) (envelope-from linimon@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id BE8E08FC18; Sun, 26 Sep 2010 20:57:58 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.4/8.14.4) with ESMTP id o8QKvwAX095343; Sun, 26 Sep 2010 20:57:58 GMT (envelope-from linimon@freefall.freebsd.org) Received: (from linimon@localhost) by freefall.freebsd.org (8.14.4/8.14.4/Submit) id o8QKvw9X095339; Sun, 26 Sep 2010 20:57:58 GMT (envelope-from linimon) Date: Sun, 26 Sep 2010 20:57:58 GMT Message-Id: <201009262057.o8QKvw9X095339@freefall.freebsd.org> To: linimon@FreeBSD.org, freebsd-bugs@FreeBSD.org, freebsd-jail@FreeBSD.org From: linimon@FreeBSD.org Cc: Subject: Re: conf/150599: [patch] /etc/rc.d/jail does not set jailname. X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 26 Sep 2010 20:57:59 -0000 Old Synopsis: /etc/rc.d/jail does not set jailname. New Synopsis: [patch] /etc/rc.d/jail does not set jailname. Responsible-Changed-From-To: freebsd-bugs->freebsd-jail Responsible-Changed-By: linimon Responsible-Changed-When: Sun Sep 26 20:57:37 UTC 2010 Responsible-Changed-Why: Over to maintainer(s). http://www.freebsd.org/cgi/query-pr.cgi?pr=150599 From owner-freebsd-jail@FreeBSD.ORG Mon Sep 27 11:06:57 2010 Return-Path: Delivered-To: freebsd-jail@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 9809F1065679 for ; Mon, 27 Sep 2010 11:06:57 +0000 (UTC) (envelope-from owner-bugmaster@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 86A1D8FC28 for ; Mon, 27 Sep 2010 11:06:57 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.4/8.14.4) with ESMTP id o8RB6vUB023507 for ; Mon, 27 Sep 2010 11:06:57 GMT (envelope-from owner-bugmaster@FreeBSD.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.4/8.14.4/Submit) id o8RB6uUA023505 for freebsd-jail@FreeBSD.org; Mon, 27 Sep 2010 11:06:56 GMT (envelope-from owner-bugmaster@FreeBSD.org) Date: Mon, 27 Sep 2010 11:06:56 GMT Message-Id: <201009271106.o8RB6uUA023505@freefall.freebsd.org> X-Authentication-Warning: freefall.freebsd.org: gnats set sender to owner-bugmaster@FreeBSD.org using -f From: FreeBSD bugmaster To: freebsd-jail@FreeBSD.org Cc: Subject: Current problem reports assigned to freebsd-jail@FreeBSD.org X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 27 Sep 2010 11:06:57 -0000 Note: to view an individual PR, use: http://www.freebsd.org/cgi/query-pr.cgi?pr=(number). The following is a listing of current problems submitted by FreeBSD users. These represent problem reports covering all versions including experimental development code and obsolete releases. S Tracker Resp. Description -------------------------------------------------------------------------------- o conf/150599 jail [patch] /etc/rc.d/jail does not set jailname. o conf/149050 jail [jail] rcorder ``nojail'' too coarse for Jail+VNET s conf/142972 jail [jail] [patch] Support JAILv2 and vnet in rc.d/jail o conf/141317 jail [patch] uncorrect jail stop in /etc/rc.d/jail o kern/133265 jail [jail] is there a solution how to run nfs client in ja o kern/119842 jail [smbfs] [jail] "Bad address" with smbfs inside a jail o bin/99566 jail [jail] [patch] fstat(1) according to specified jid o bin/32828 jail [jail] w(1) incorrectly handles stale utmp slots with 8 problems total. From owner-freebsd-jail@FreeBSD.ORG Sat Oct 2 08:00:02 2010 Return-Path: Delivered-To: jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 67F72106564A for ; Sat, 2 Oct 2010 08:00:02 +0000 (UTC) (envelope-from peter@pean.org) Received: from smtprelay-h31.telenor.se (smtprelay-h31.telenor.se [213.150.131.4]) by mx1.freebsd.org (Postfix) with ESMTP id 1DA0C8FC12 for ; Sat, 2 Oct 2010 08:00:01 +0000 (UTC) Received: from ipb1.telenor.se (ipb1.telenor.se [195.54.127.164]) by smtprelay-h31.telenor.se (Postfix) with ESMTP id ABDAFEA15B for ; Sat, 2 Oct 2010 09:39:24 +0200 (CEST) X-SENDER-IP: [85.225.7.221] X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: Ar8VADd+pkxV4QfdPGdsb2JhbAAHlDGOEgEBAQE1w3qFRASKPA X-IronPort-AV: E=Sophos;i="4.57,271,1283724000"; d="scan'208";a="137397347" Received: from c-dd07e155.166-7-64736c14.cust.bredbandsbolaget.se (HELO [172.25.0.40]) ([85.225.7.221]) by ipb1.telenor.se with ESMTP; 02 Oct 2010 09:39:24 +0200 From: =?iso-8859-1?Q?Peter_Ankerst=E5l?= Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: quoted-printable Date: Sat, 2 Oct 2010 09:39:23 +0200 Message-Id: <5EBB05A0-53C9-4813-9DF3-031764E13B49@pean.org> To: jail@freebsd.org Mime-Version: 1.0 (Apple Message framework v1081) X-Mailer: Apple Mail (2.1081) Cc: Subject: VIMAGE and jail. X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 02 Oct 2010 08:00:02 -0000 Anyone here used the VIMAGE together with jail? -- Peter Ankerst=E5l peter@pean.org http://www.pean.org/ From owner-freebsd-jail@FreeBSD.ORG Sat Oct 2 13:06:46 2010 Return-Path: Delivered-To: jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 93DF4106566C for ; Sat, 2 Oct 2010 13:06:46 +0000 (UTC) (envelope-from nvass9573@gmx.com) Received: from mailout-eu.gmx.com (mailout-eu.gmx.com [213.165.64.42]) by mx1.freebsd.org (Postfix) with SMTP id E1D9F8FC08 for ; Sat, 2 Oct 2010 13:06:45 +0000 (UTC) Received: (qmail invoked by alias); 02 Oct 2010 13:06:44 -0000 Received: from 194.219.17.176.dsl.dyn.forthnet.gr (EHLO moby.local) [194.219.17.176] by mail.gmx.com (mp-eu005) with SMTP; 02 Oct 2010 15:06:44 +0200 X-Authenticated: #46156728 X-Provags-ID: V01U2FsdGVkX18depYKk2QdRoyfbZALG6DLF64erzl9i7MlQJJPTZ WFxfWMlLfFa3lZ Message-ID: <4CA72E5F.1050507@gmx.com> Date: Sat, 02 Oct 2010 16:06:39 +0300 From: Nikos Vassiliadis User-Agent: Thunderbird 2.0.0.23 (X11/20100313) MIME-Version: 1.0 To: =?ISO-8859-1?Q?Peter_Ankerst=E5l?= References: <5EBB05A0-53C9-4813-9DF3-031764E13B49@pean.org> In-Reply-To: <5EBB05A0-53C9-4813-9DF3-031764E13B49@pean.org> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit X-Y-GMX-Trusted: 0 Cc: jail@freebsd.org Subject: Re: VIMAGE and jail. X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 02 Oct 2010 13:06:46 -0000 Peter Ankerstål wrote: > Anyone here used the VIMAGE together with jail? Is this some kind of poll?:) I have used VIMAGE and jail. Nikos From owner-freebsd-jail@FreeBSD.ORG Sat Oct 2 13:08:35 2010 Return-Path: Delivered-To: jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 32BE31065675 for ; Sat, 2 Oct 2010 13:08:35 +0000 (UTC) (envelope-from peter@pean.org) Received: from smtprelay-h21.telenor.se (smtprelay-h21.telenor.se [195.54.99.196]) by mx1.freebsd.org (Postfix) with ESMTP id E21AE8FC15 for ; Sat, 2 Oct 2010 13:08:34 +0000 (UTC) Received: from ipb1.telenor.se (ipb1.telenor.se [195.54.127.164]) by smtprelay-h21.telenor.se (Postfix) with ESMTP id 35C2DC53A for ; Sat, 2 Oct 2010 15:08:33 +0200 (CEST) X-SENDER-IP: [85.225.7.221] X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: AhIXAI/LpkxV4QfdPGdsb2JhbAAHh2maWQEBAQE1wXKFRASKPA X-IronPort-AV: E=Sophos;i="4.57,271,1283724000"; d="scan'208";a="137540544" Received: from c-dd07e155.166-7-64736c14.cust.bredbandsbolaget.se (HELO [172.25.0.40]) ([85.225.7.221]) by ipb1.telenor.se with ESMTP; 02 Oct 2010 15:08:33 +0200 Mime-Version: 1.0 (Apple Message framework v1081) Content-Type: text/plain; charset=iso-8859-1 From: =?iso-8859-1?Q?Peter_Ankerst=E5l?= In-Reply-To: <4CA72E5F.1050507@gmx.com> Date: Sat, 2 Oct 2010 15:08:32 +0200 Content-Transfer-Encoding: quoted-printable Message-Id: <6734878B-8703-4550-841A-D767CDAE5582@pean.org> References: <5EBB05A0-53C9-4813-9DF3-031764E13B49@pean.org> <4CA72E5F.1050507@gmx.com> To: Nikos Vassiliadis X-Mailer: Apple Mail (2.1081) Cc: jail@freebsd.org Subject: Re: VIMAGE and jail. X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 02 Oct 2010 13:08:35 -0000 On 2 okt 2010, at 15.06, Nikos Vassiliadis wrote: > Peter Ankerst=E5l wrote: >> Anyone here used the VIMAGE together with jail? >=20 > Is this some kind of poll?:) >=20 > I have used VIMAGE and jail. >=20 > Nikos >=20 >=20 Haha, sorry. Just wanted some pointers.= From owner-freebsd-jail@FreeBSD.ORG Sat Oct 2 13:12:22 2010 Return-Path: Delivered-To: jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id BD78A106566B for ; Sat, 2 Oct 2010 13:12:22 +0000 (UTC) (envelope-from nvass9573@gmx.com) Received: from mailout-eu.gmx.com (mailout-eu.gmx.com [213.165.64.42]) by mx1.freebsd.org (Postfix) with SMTP id 150B88FC0A for ; Sat, 2 Oct 2010 13:12:21 +0000 (UTC) Received: (qmail invoked by alias); 02 Oct 2010 13:12:20 -0000 Received: from 194.219.17.176.dsl.dyn.forthnet.gr (EHLO moby.local) [194.219.17.176] by mail.gmx.com (mp-eu005) with SMTP; 02 Oct 2010 15:12:20 +0200 X-Authenticated: #46156728 X-Provags-ID: V01U2FsdGVkX18lIwxPIxIl6+nMuUBeODCVxuKIbkB5PW7l9aH9/p ZhYKC73x5j6v3u Message-ID: <4CA72FB0.4030806@gmx.com> Date: Sat, 02 Oct 2010 16:12:16 +0300 From: Nikos Vassiliadis User-Agent: Thunderbird 2.0.0.23 (X11/20100313) MIME-Version: 1.0 To: =?ISO-8859-1?Q?Peter_Ankerst=E5l?= References: <5EBB05A0-53C9-4813-9DF3-031764E13B49@pean.org> <4CA72E5F.1050507@gmx.com> <6734878B-8703-4550-841A-D767CDAE5582@pean.org> In-Reply-To: <6734878B-8703-4550-841A-D767CDAE5582@pean.org> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit X-Y-GMX-Trusted: 0 Cc: jail@freebsd.org Subject: Re: VIMAGE and jail. X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 02 Oct 2010 13:12:22 -0000 Peter Ankerstål wrote: > On 2 okt 2010, at 15.06, Nikos Vassiliadis wrote: > >> Peter Ankerstål wrote: >>> Anyone here used the VIMAGE together with jail? >> Is this some kind of poll?:) >> >> I have used VIMAGE and jail. >> >> Nikos >> >> > > Haha, sorry. Just wanted some pointers. do ask... From owner-freebsd-jail@FreeBSD.ORG Sat Oct 2 13:57:34 2010 Return-Path: Delivered-To: jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id B450F106564A for ; Sat, 2 Oct 2010 13:57:34 +0000 (UTC) (envelope-from ltning@anduin.net) Received: from mail.anduin.net (mail.anduin.net [213.225.74.249]) by mx1.freebsd.org (Postfix) with ESMTP id 72FEA8FC1A for ; Sat, 2 Oct 2010 13:57:34 +0000 (UTC) Received: from 101-34-9.connect.netcom.no ([89.9.34.101] helo=[10.224.3.79]) by mail.anduin.net with esmtpsa (TLSv1:AES128-SHA:128) (Exim 4.72 (FreeBSD)) (envelope-from ) id 1P222F-000GQQ-El; Sat, 02 Oct 2010 15:21:56 +0200 References: <5EBB05A0-53C9-4813-9DF3-031764E13B49@pean.org> <4CA72E5F.1050507@gmx.com> <6734878B-8703-4550-841A-D767CDAE5582@pean.org> <4CA72FB0.4030806@gmx.com> In-Reply-To: <4CA72FB0.4030806@gmx.com> Mime-Version: 1.0 (iPhone Mail 8B117) Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=utf-8 Message-Id: <92C217C3-64ED-4B07-87C5-F188C1BD4D2C@anduin.net> X-Mailer: iPhone Mail (8B117) From: =?utf-8?Q?Eirik_=C3=98verby?= Date: Sat, 2 Oct 2010 15:21:49 +0200 To: Nikos Vassiliadis Cc: "jail@freebsd.org" Subject: Re: VIMAGE and jail. X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 02 Oct 2010 13:57:34 -0000 On 2. okt. 2010, at 15:12, Nikos Vassiliadis wrote: > Peter Ankerst=C3=A5l wrote: >> On 2 okt 2010, at 15.06, Nikos Vassiliadis wrote: >>> Peter Ankerst=C3=A5l wrote: >>>> Anyone here used the VIMAGE together with jail? >>> Is this some kind of poll?:) >>>=20 >>> I have used VIMAGE and jail. >>>=20 >>> Nikos >>>=20 >>>=20 >> Haha, sorry. Just wanted some pointers. >=20 > do ask... Then I'd much appreciate some pointers to info about the vimage stuff, avail= ability (8.x?), stability, real-world experiences and tales from the crypt..= In short: why do I want the visage stuff and what can it do for me?=20 /Eirik= From owner-freebsd-jail@FreeBSD.ORG Sat Oct 2 14:23:21 2010 Return-Path: Delivered-To: jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A42E81065673 for ; Sat, 2 Oct 2010 14:23:21 +0000 (UTC) (envelope-from nvass9573@gmx.com) Received: from mailout-eu.gmx.com (mailout-eu.gmx.com [213.165.64.42]) by mx1.freebsd.org (Postfix) with SMTP id 144138FC18 for ; Sat, 2 Oct 2010 14:23:20 +0000 (UTC) Received: (qmail invoked by alias); 02 Oct 2010 14:23:19 -0000 Received: from 194.219.17.176.dsl.dyn.forthnet.gr (EHLO moby.local) [194.219.17.176] by mail.gmx.com (mp-eu003) with SMTP; 02 Oct 2010 16:23:19 +0200 X-Authenticated: #46156728 X-Provags-ID: V01U2FsdGVkX1//3rgxYon/lhzp0ixVoYEd66Wur0XVqS72iOPaf7 45RUh0bodJt84c Message-ID: <4CA74053.5080008@gmx.com> Date: Sat, 02 Oct 2010 17:23:15 +0300 From: Nikos Vassiliadis User-Agent: Thunderbird 2.0.0.23 (X11/20100313) MIME-Version: 1.0 To: =?UTF-8?B?RWlyaWsgw5h2ZXJieQ==?= References: <5EBB05A0-53C9-4813-9DF3-031764E13B49@pean.org> <4CA72E5F.1050507@gmx.com> <6734878B-8703-4550-841A-D767CDAE5582@pean.org> <4CA72FB0.4030806@gmx.com> <92C217C3-64ED-4B07-87C5-F188C1BD4D2C@anduin.net> In-Reply-To: <92C217C3-64ED-4B07-87C5-F188C1BD4D2C@anduin.net> Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 8bit X-Y-GMX-Trusted: 0 Cc: "jail@freebsd.org" Subject: Re: VIMAGE and jail. X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 02 Oct 2010 14:23:21 -0000 Eirik Øverby wrote: > On 2. okt. 2010, at 15:12, Nikos Vassiliadis wrote: > >> Peter AnkerstÃ¥l wrote: >>> On 2 okt 2010, at 15.06, Nikos Vassiliadis wrote: >>>> Peter AnkerstÃ¥l wrote: >>>>> Anyone here used the VIMAGE together with jail? >>>> Is this some kind of poll?:) >>>> >>>> I have used VIMAGE and jail. >>>> >>>> Nikos >>>> >>>> >>> Haha, sorry. Just wanted some pointers. >> do ask... > > Then I'd much appreciate some pointers to info about the vimage stuff, availability (8.x?), stability, real-world experiences and tales from the crypt.. > > In short: why do I want the visage stuff and what can it do for me? It appeared in its current form during the 7 branch and it was added in the official source tree during the development of the 8 branch. The concept is much older and there was a prototype based on the 4 branch. I think that the VIMAGE code in branch 9 is more or less in-sync with the VIMAGE code in the 8 branch. I use it regularly in a lab environment. The only problem I am seeing regularly(when a vnet is destroyed) is this message: > Freed UMA keg was not empty (203 items). Lost 1 pages of memory. > Freed UMA keg was not empty (36 items). Lost 2 pages of memory. I don't remember having any panics out of the blue since a long time. Do note that VIMAGE option is an experimental feature. Don't have any tale from the crypt. I *believe* that it can handle real-world traffic without problems. But... not all network related things work along with option VIMAGE and that may annoy you(or not). Among the things that are virtualized and work, are: inet, inet6, netgraph, ipsec, ipfw Among the popular things that don't work is pf. Keep in mind that VIMAGE is under development and things may change soon... The above lists are not exhaustive by far, there are other things that work and other that don't. A 2 cents of worth opinion is that I would use VIMAGE on a jailed server and still be able to sleep peacefully. HTH, Nikos From owner-freebsd-jail@FreeBSD.ORG Sat Oct 2 15:25:26 2010 Return-Path: Delivered-To: jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 28131106567A for ; Sat, 2 Oct 2010 15:25:26 +0000 (UTC) (envelope-from jamesbrandongooch@gmail.com) Received: from mail-ww0-f42.google.com (mail-ww0-f42.google.com [74.125.82.42]) by mx1.freebsd.org (Postfix) with ESMTP id AE1548FC0A for ; Sat, 2 Oct 2010 15:25:25 +0000 (UTC) Received: by wwi18 with SMTP id 18so37933wwi.1 for ; Sat, 02 Oct 2010 08:25:24 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:received:in-reply-to :references:date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=+0fWWnJfBUcSwZux0/FacWFnB8YcjJDbcneX6gW6n9g=; b=IDhbV/VdwAjW43JyWpuz08NK8kQ6DtTXZSIOLuOsxGYlmSZekJAoNBaWUNgVHfTEgs gQffbs9UnsrkPF9f7cd9mrxaqegU6hWup5/2tR/MlGneXFtHHZWVbnwGxYaU0z1fiRgd zn9ClRpeTDFw07q8NfYcUKCy+zwDwQz2GK/5w= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; b=A5mcoP6XpkfRzjEW6HhnKGL/ejjBgSHaMrpv10CBDpdZu7FM/6KferSCuX4ityPsgc +0N1JLkPyKdvPEVPVTAHhMEsRp0y+CWhV5ls5d/iNlhdtICUmtwHBsc6I5drvd+VU+AH z+SuYapShtEAy+Zgim3z9Bu1hZMOymAjV+zcY= MIME-Version: 1.0 Received: by 10.216.15.10 with SMTP id e10mr3321556wee.21.1286031436052; Sat, 02 Oct 2010 07:57:16 -0700 (PDT) Received: by 10.216.133.133 with HTTP; Sat, 2 Oct 2010 07:57:15 -0700 (PDT) In-Reply-To: <92C217C3-64ED-4B07-87C5-F188C1BD4D2C@anduin.net> References: <5EBB05A0-53C9-4813-9DF3-031764E13B49@pean.org> <4CA72E5F.1050507@gmx.com> <6734878B-8703-4550-841A-D767CDAE5582@pean.org> <4CA72FB0.4030806@gmx.com> <92C217C3-64ED-4B07-87C5-F188C1BD4D2C@anduin.net> Date: Sat, 2 Oct 2010 09:57:15 -0500 Message-ID: From: Brandon Gooch To: =?ISO-8859-1?Q?Eirik_=D8verby?= Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Cc: "jail@freebsd.org" Subject: Re: VIMAGE and jail. X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 02 Oct 2010 15:25:26 -0000 2010/10/2 Eirik =D8verby : > On 2. okt. 2010, at 15:12, Nikos Vassiliadis wrote: > >> Peter Ankerst=E5l wrote: >>> On 2 okt 2010, at 15.06, Nikos Vassiliadis wrote: >>>> Peter Ankerst=E5l wrote: >>>>> Anyone here used the VIMAGE together with jail? >>>> Is this some kind of poll?:) >>>> >>>> I have used VIMAGE and jail. >>>> >>>> Nikos >>>> >>>> >>> Haha, sorry. Just wanted some pointers. >> >> do ask... > > Then I'd much appreciate some pointers to info about the vimage stuff, av= ailability (8.x?), stability, real-world experiences and tales from the cry= pt.. > > In short: why do I want the visage stuff and what can it do for me? VIMAGE allows you to have a per-jail network stack. This in turn allows for things like per-jail firewalling (only via ipfw for now), ipsec, netgraph, etc... I've been running it on my workstation (8-STABLE) and laptop (9-CURRENT), mostly for academic purposes. In the case of my workstation, I've used VIMAGE with jails (I call them "vnet jails") to serve web sites to couple of different networks while sharing local resources between the two jails and the local machine. This particular setup was very hacked together -- not too difficult really, but not sure how "correct" it is either -- it just works :) On my laptop, I've been experimenting with VIMAGE and the graphical imunes utility to learn a little more about routing and what-not, and also to demonstrate the VIMAGE functionality to others (my university professors) who may be able to use it in an academic environment. In both cases, I've had very few issues in regard to stability. I haven't had a panic in a while although there are still memory leaks when shutting down a vnet jail; haven't had time to look more deeply into that yet. I wish I could point you to some sort of "official" documentation on using it (such as a handbook section or article), but I know of none. I've muddled through using search engine results and the FreeBSD mailing list archives. You can read a little more about the status of the project here: http://www.freebsdfoundation.org/announcements.shtml#Virtualization Also, you may check this out, it's pretty neat: http://old.tel.fer.hr/imunes/ Good luck, and have fun! -Brandon From owner-freebsd-jail@FreeBSD.ORG Sat Oct 2 15:52:45 2010 Return-Path: Delivered-To: jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 5D2C91065741 for ; Sat, 2 Oct 2010 15:52:45 +0000 (UTC) (envelope-from nvass9573@gmx.com) Received: from mailout-eu.gmx.com (mailout-eu.gmx.com [213.165.64.42]) by mx1.freebsd.org (Postfix) with SMTP id A8CA78FC1C for ; Sat, 2 Oct 2010 15:52:44 +0000 (UTC) Received: (qmail invoked by alias); 02 Oct 2010 15:52:43 -0000 Received: from 194.219.17.176.dsl.dyn.forthnet.gr (EHLO moby.local) [194.219.17.176] by mail.gmx.com (mp-eu005) with SMTP; 02 Oct 2010 17:52:43 +0200 X-Authenticated: #46156728 X-Provags-ID: V01U2FsdGVkX1+VDeUj5omV4SV4OfZbYnY3/uBQCiycmG6lICRG6d c4ytbPnjUrXSZ9 Message-ID: <4CA75546.1040106@gmx.com> Date: Sat, 02 Oct 2010 18:52:38 +0300 From: Nikos Vassiliadis User-Agent: Thunderbird 2.0.0.23 (X11/20100313) MIME-Version: 1.0 To: Brandon Gooch References: <5EBB05A0-53C9-4813-9DF3-031764E13B49@pean.org> <4CA72E5F.1050507@gmx.com> <6734878B-8703-4550-841A-D767CDAE5582@pean.org> <4CA72FB0.4030806@gmx.com> <92C217C3-64ED-4B07-87C5-F188C1BD4D2C@anduin.net> In-Reply-To: Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Y-GMX-Trusted: 0 Cc: "jail@freebsd.org" Subject: Re: VIMAGE and jail. X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 02 Oct 2010 15:52:45 -0000 Brandon Gooch wrote: > Also, you may check this out, it's pretty neat: > > http://old.tel.fer.hr/imunes/ Those who like IMUNES, have to check CORE out. http://cs.itd.nrl.navy.mil/work/core/index.php