From owner-freebsd-jail@freebsd.org Thu Dec 8 16:42:13 2016 Return-Path: Delivered-To: freebsd-jail@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id D60F0C6DF8B for ; Thu, 8 Dec 2016 16:42:13 +0000 (UTC) (envelope-from fbstable@cps-intl.org) Received: from berkeley.cps-intl.org (websense.cps-intl.org [81.137.176.89]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 6ED96F6 for ; Thu, 8 Dec 2016 16:42:12 +0000 (UTC) (envelope-from fbstable@cps-intl.org) Received: from [172.16.0.79] (helo=bdLL65j) by berkeley.cps-intl.org with esmtpsa (TLSv1:DHE-RSA-AES128-SHA:128) (Exim 4.80.1 (FreeBSD)) (envelope-from ) id 1cF1lU-000Cgv-Oy; Thu, 08 Dec 2016 16:41:49 +0000 To: Miroslav Lachman <000.fbsd@quip.cz>, freebsd-jail References: <584986D0.3040109@quip.cz> From: SK Message-ID: <2b6346f8-ed02-0e6d-bd89-106098e7eb2d@cps-intl.org> Date: Thu, 8 Dec 2016 16:41:29 +0000 User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:45.0) Gecko/20100101 Thunderbird/45.3.0 MIME-Version: 1.0 In-Reply-To: <584986D0.3040109@quip.cz> Content-Type: text/plain; charset=windows-1252; format=flowed Content-Transfer-Encoding: 7bit X-SA-Exim-Connect-IP: 172.16.0.79 X-SA-Exim-Mail-From: fbstable@cps-intl.org X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on berkeley.lan.cps-intl.org X-Spam-Level: X-Spam-Status: No, score=-1.0 required=10.0 tests=ALL_TRUSTED,URIBL_BLOCKED autolearn=ham autolearn_force=no version=3.4.0 Subject: Re: ZFS and Jail :: nullfs mount :: nothing visible from host X-SA-Exim-Version: 4.2 X-SA-Exim-Scanned: Yes (on berkeley.cps-intl.org) X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 08 Dec 2016 16:42:13 -0000 On 08/12/2016 16:14, Miroslav Lachman wrote: > SK wrote on 2016/12/08 15:22: > >> So far I have tried to follow as many google results as possible using >> jail, zfs, mountpoint, nullfs, manage zfs and so on. There were a few >> sites coming up again and again but they were talking about ezjail (not >> that I have anything against it, but I would prefer to be able to use >> the base system as it is -- might help me learn a few things that ezjail >> will hide from me :D) > > If you want to manage ZFS dataset from withing a jail, then you need > to use zfs set jailed=on property (see man zfs). But this data set > cannot be mounted as nullfs, it should be dedicated to the jail. > > You don't need ezjail because ezjail cannot do anything more than you > can do. It is just a shell script wrapper. > > Miroslav Lachman > Hi Miroslav Thank you for your response. I tried setting it up like that (use zfs set jailed=on), and that did not work. I could not even run zfs from within the jail. Maybe I did something wrong -- so I am setting up a test box where I can try them all out. I also came across these links https://clinta.github.io/freebsd-jails-the-hard-way/ http://aaron.baugher.biz/unix/freebsd-jails-zfs-1 I will give these a try. However, neither confirms (or maybe I missed it) if I can manage/manupulate the zfs datasets from within the jail -- and that seems to be the logical approach based on various emails on the mailing lists. So, what I am really after is some kind of a pointer/direction, maybe even a rough sketch of a how-to, that would help in getting started at least. I am not new to jails -- it is just that so far most of my jails were on UFS systems and I never encountered this issue of data mismatch between what the Jail can see and what the host can see. Thanks again SK