From owner-freebsd-questions@freebsd.org  Mon Dec 21 18:30:33 2015
Return-Path: <owner-freebsd-questions@freebsd.org>
Delivered-To: freebsd-questions@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 68EC7A4E43D
 for <freebsd-questions@mailman.ysv.freebsd.org>;
 Mon, 21 Dec 2015 18:30:33 +0000 (UTC)
 (envelope-from trashcan@ellael.org)
Received: from mx1.enfer-du-nord.net (mx1.enfer-du-nord.net
 [IPv6:2001:41d0:1008:bcb:1:1:0:1])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id 376AC1CAE
 for <freebsd-questions@freebsd.org>; Mon, 21 Dec 2015 18:30:33 +0000 (UTC)
 (envelope-from trashcan@ellael.org)
Received: from [IPv6:2003:45:4818:c101:d5df:badc:3020:2d1]
 (p200300454818C101D5DFBADC302002D1.dip0.t-ipconnect.de
 [IPv6:2003:45:4818:c101:d5df:badc:3020:2d1])
 by mx1.enfer-du-nord.net (Postfix) with ESMTPSA id 3pPTr66RjjzFQ
 for <freebsd-questions@freebsd.org>; Mon, 21 Dec 2015 19:30:30 +0100 (CET)
Content-Type: text/plain; charset=utf-8
Mime-Version: 1.0 (Mac OS X Mail 8.2 \(2104\))
Subject: Re: How to define the order of starting jails?
From: Michael Grimm <trashcan@ellael.org>
In-Reply-To: <20151221161655.GA33124@becker.bs.l>
Date: Mon, 21 Dec 2015 19:30:29 +0100
Content-Transfer-Encoding: quoted-printable
Message-Id: <EDF63018-005B-464C-A99B-A16B7274CDF4@ellael.org>
References: <5D6BA0FE-60E1-4C6B-906B-BB62A1AB9BE8@odo.in-berlin.de>
 <20151221161655.GA33124@becker.bs.l>
To: freebsd-questions <freebsd-questions@freebsd.org>
X-Virus-Scanned: clamav-milter 0.99 at mail
X-Virus-Status: Clean
X-Mailer: Apple Mail (2.2104)
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.20
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions/>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 21 Dec 2015 18:30:33 -0000

Bertram Scharpf <lists@bertram-scharpf.de> wrote:
>=20
> On Sunday, 20. Dec 2015, 17:50:28 +0100, Michael Grimm wrote:

>> But I am bit stuck in finding a way to start my jails in a
>> pre-defined order (e.g. first DNS, then mail, =E2=80=A6). Well, I
>> can achieve that during boot time by using jail_list=3D"dns
>> mail =E2=80=A6" in rc.conf. But, this is respected during boot
>> time, *only*. Whenever I do run a "jail -rc '*'" that
>> shutdown and starting order becomes arbitrary. It doesn't
>> follow the sequence of my jail definitions in jail.conf,
>> either.
>=20
> When I hear something about dependencies what first comes
> into my mind is to map it to a hierarchy, in this case maybe
> nested jails. Is this approach legitimate or is it too
> weird?

I need to start my jail running UNBOUND (besides NSD), first. Here =
UNBOUND acts as the *only* local, trustworthy resolver for all the other =
service jails. (Their starting sequence is uninteresting to me, though.) =
Reason for that prerequisite is: I am using DNSSEC/DANE.

Thus, hierarchical jails are a solution, but that would mean, that I =
will end up with more running DNS jails. Doable, but I'm somehow lazy =
;-)

Thanks and regards,
Michael=