From owner-freebsd-jail@FreeBSD.ORG Mon Jan 11 09:51:55 2010 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id B6C93106566B for ; Mon, 11 Jan 2010 09:51:55 +0000 (UTC) (envelope-from 000.fbsd@quip.cz) Received: from elsa.codelab.cz (elsa.codelab.cz [94.124.105.4]) by mx1.freebsd.org (Postfix) with ESMTP id 746E18FC08 for ; Mon, 11 Jan 2010 09:51:55 +0000 (UTC) Received: from elsa.codelab.cz (localhost.codelab.cz [127.0.0.1]) by elsa.codelab.cz (Postfix) with ESMTP id 2337619E023; Mon, 11 Jan 2010 10:51:54 +0100 (CET) Received: from [192.168.1.2] (r5bb235.net.upc.cz [86.49.61.235]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by elsa.codelab.cz (Postfix) with ESMTPSA id 0405519E019; Mon, 11 Jan 2010 10:51:51 +0100 (CET) Message-ID: <4B4AF4B7.7090802@quip.cz> Date: Mon, 11 Jan 2010 10:51:51 +0100 From: Miroslav Lachman <000.fbsd@quip.cz> User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.9.1.6) Gecko/20091206 SeaMonkey/2.0.1 MIME-Version: 1.0 To: Glen Barber References: <4B4A422F.9060307@netscape.net> <4B4A4DF3.5010509@quip.cz> <20100110222638.GA5300@orion.hsd1.pa.comcast.net> In-Reply-To: <20100110222638.GA5300@orion.hsd1.pa.comcast.net> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-jail@freebsd.org Subject: Re: Using 'Jails' like Solaris Zones?? X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 11 Jan 2010 09:51:55 -0000 Glen Barber wrote: > Hi, > > Miroslav Lachman wrote: >> Kaya Saman wrote: >> >> [...] >> >>> Since FreeBSD has all the software I require and is quite easy on system >>> resources I was considering using 'Jails' where in Solaris I would be >>> using Zones to dedicate an individual IP address to each instance of Bind. >>> >>> However, is it possible to dedicate a specific NIC to each instance of >>> Bind as well since this is really what I would be doing in Solaris??? >>> >>> Apologies if I seem a bit vague on which OS I will choose, it's just >>> that I am trying to consolidate as many services as possible without >>> requiring any more hardware. >> >> AFAIK FreeBSD jail can't be bound to a specific NIC, but can be bound to >> IP address(es) and addresses can be assigned to a different NICs. >> It means, if you have following NICs: nic0, nic1 and IPS on NICs: >> nic0 = 10.10.10.10 >> nic1 = 10.20.20.20 > > As of 7.2, jails can be bound directly to a specific interface. > > The example in /etc/defaults/rc.conf shows: > > #jail_example_interface="" > It is different thing and exists for more than 3 years. As is stated in the manpage, this is just a rc.conf(5) variable used to choose the interface where IP alias will be created, but is has nothing to do with jail(8) command. The command takes list of IP addresses, not NICs. jail__interface (str) Unset by default. When set, sets the interface to use when setting IP address alias. Note that the alias is cre- ated at jail startup and removed at jail shutdown. Miroslav Lachman