From owner-freebsd-questions Wed Dec 4 9: 9: 1 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id EFD1937B404 for ; Wed, 4 Dec 2002 09:08:59 -0800 (PST) Received: from homer.bignose.ca (static-89-42.dsl.tht.net [216.126.89.42]) by mx1.FreeBSD.org (Postfix) with SMTP id C0AC543EB2 for ; Wed, 4 Dec 2002 09:08:58 -0800 (PST) (envelope-from jeff@interchange.ca) Received: (qmail 20861 invoked from network); 4 Dec 2002 17:08:07 -0000 Received: from unknown (HELO jeffmfgsfzhqjc) (192.168.0.2) by 192.168.0.1 with SMTP; 4 Dec 2002 17:08:07 -0000 From: "Jeff MacDonald" To: "Marc G. Fournier" Cc: Subject: RE: Another Jail Question Date: Wed, 4 Dec 2002 12:09:00 -0500 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) In-Reply-To: <20021204115636.V36076-100000@hub.org> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG > Jeff, check with Chris on this, as I believe he's actually running a game > server inside of one of his jails, with his machine running off of the one > IP ... in fact, and I may be wrong about this, but you *should* be able to > avoid the other machine altogether and use IPFW for this, as I *believe* I'm just gonna use my sparc as a firewall and then deligate ip's. It's been my plan to use it for a while as a dedicated firewall anyway. > Actually, you *can* run PgSQL inside of the jail ... the issue is that > there are security implications of doing that ... the shared memory isn't > "per jail", so someone in another jail could attach to the shared memory > in another jail ... by default, shared memory access is disabled inside a > jail, but there is a sysctl value you can set to enable it ... Yeah, i think i'll go the safe route and keep away from shared memory as such will likly run it on the host. > > server is a dual PII 300 with 512 megs of ram, this should be fine > > to handle 2 jails, right ? > > unless you start gettinjg into high memory circumstances (ie. > jakarta-tomcat is a major dog for memory), 2 wouldn't be a problem ... cool thanks. Jeff. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message