Date: Mon, 6 Jun 2005 09:45:45 -0600 From: "Chad Leigh -- Shire.Net LLC" <chad@shire.net> To: Tim Aslat <tim@spyderweb.com.au> Cc: freebsd-questions@freebsd.org Subject: Re: Jail and disk space Message-ID: <ED5A0999-5A35-4C7E-875C-B03CE86EF925@shire.net> In-Reply-To: <20050606163909.4b628b63@bofh.spyderweb.com.au> References: <20050605065237.M7642@anonymnet.net> <20050606163909.4b628b63@bofh.spyderweb.com.au>
next in thread | previous in thread | raw e-mail | index | archive | help
On Jun 6, 2005, at 1:09 AM, Tim Aslat wrote:
> On Sun, 5 Jun 2005 02:00:35 -0500
> "DrVince" <drvince@anonymnet.net> wrote:
>
>> Could I use quota to limit jails?
>>
>
> Not really, but you might be able to use a "memory disk" (man md,
> mdconfig) to limit the entire jail to a set size.
Yes, I do this. Almost all my jails reside in md devices (or more
than one if I have separate ones for logs etc).
Dump works on md devices so it makes it pretty easy.
Since I use a shared master jail mounted readony inside each jail,
the jail md devices only have the jail specific files in them and the
jail users data. /bin /sbin /lib /usr/bin etc are all shared
readonly. Appropriate links into the md device for /usr/local . /
etc and /var are in the md device.
Chad
>
> I haven't tried this myself, but I'm guessing something like this
> should
> work.
>
> #------------------- create jail script -----------------------
> #!/bin/sh
> ID=${ARGV[1]}
> DEST=/jails/jail.${ID}
> IMAGE=/jails/images/jail.${ID}
>
> # create a blank disk image of 512 Mb
> dd if=/dev/zero of=${IMAGE} bs=1024k count=512
> mdconfig -a -t vnode -f ${IMAGE} -u ${ID}
> bsdlabel -w md${ID} auto
> newfs md${ID}c
> mount /dev/md${ID}c ${DEST}
>
> # create jail using created image
> cd /usr/src
> mkdir -p ${DEST}
> make world DESTDIR=${DEST}
> cd etc
> make distribution DESTDIR=${DEST}
> mount_devfs devfs ${DEST}/dev
> cd ${DEST}
> ln -sf dev/null kernel
> #------------------------ End script -----------------------
>
> Again, I haven't tested this, I've just copied & pasted from the
> various man pages into a semi-coherent script.
>
> Cheers
>
> Tim
>
> --
> Tim Aslat <tim@spyderweb.com.au>
> Spyderweb Consulting
> http://www.spyderweb.com.au
> Phone: +61 8 84193434
> Mobile: +61 0401088479
> _______________________________________________
> freebsd-questions@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-
> unsubscribe@freebsd.org"
>
---
Chad Leigh -- Shire.Net LLC
Your Web App and Email hosting provider
chad@shire.net
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?ED5A0999-5A35-4C7E-875C-B03CE86EF925>