Skip site navigation (1)Skip section navigation (2) 
Date:      Thu, 25 Apr 2013 17:40:48 +1200
From:      zulu <zulu@openvps.biz>
To:        Laurent Alebarde <l.alebarde@free.fr>, "freebsd-jail@freebsd.org" <freebsd-jail@freebsd.org>
Subject:   Re: state of the art ?
Message-ID:  <1366868448.5178c1e04043f@gpo.cellcontainer.com>
In-Reply-To: <5177B1A4.6060502@free.fr>
References:  <5177B1A4.6060502@free.fr>
next in thread | previous in thread | raw e-mail | index | archive | help 


Maybe this is what you need http://sourceforge.net/projects/zj=
ails/ ,
doesn't require any advanced ZFS or VNET knowledge (just a wo=
rking ZFS
pool and VIMAGE kernel).

VNET is supported and=
 there is a "soft" jail restart option which
prevents the "kern/1647=
63: Memory leak in VNET" issue from appearing.

You can also run =
non VNET ZFS jails - you can turn on or off VNET by
simply executing =
"zjail set vnet=3Doff/on myjailname" then restarting
the jail with "zj=
ail restart -c myjailname".

On FreeBSD 9.1 amd64, pf inside a=
 jail will cause an immediate kernel
panic once you run pfctl in the=
 jail - IPFW works as already stated by
others.

You can h=
ave pf enabled on the host however and have IPFW firewall in
jai=
ls.

Cheers,

Peter

On Wednesday, 24-04-20=
13 on 22:19 Laurent Alebarde wrote:

Hi all,

=C2=A0=
I am a FreeBSD/Jail/vnet newbbie. I read a lot of posts and
tutorials=
,
mainly :

=C2=A0=C2=A0* http://wiki.polymorf.fr/index.php=
/Howto:FreeBSD_jail_vnet
=C2=A0=C2=A0*
http://archive.0xfeedfa=
ce.org/blog/2011-11-21/lattera/freebsd-vnet-jail-admin-project

I=
 have some questions please :

1. Are they still up-to-date =
?
2. Is the jail rc script still have to be patched to be able to us=
e pf
=C2=A0=C2=A0=C2=A0=C2=A0instead of IPFW ?
3. What are the b=
est up-to-date links for tutorials to setup ZFS
=C2=A0=
=C2=A0=C2=A0=C2=A0ipv4/ipv6 vnet jails ?
4. Can it be put in produc=
tion safely or is it still considered
=C2=A0=C2=A0=C2=A0=C2=A0experi=
mental ?

Cheers,

Laurent.

_____________=
__________________________________
freebsd-jail@freebsd.org mailing =
list
http://lists.freebsd.org/mailman/listinfo/freebsd-jail
To un=
subscribe, send any mail to
"freebsd-jail-unsubscribe@freebsd.org=
"

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1366868448.5178c1e04043f>