From owner-freebsd-questions@FreeBSD.ORG Sun Feb 10 13:48:56 2013 Return-Path: Delivered-To: questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by hub.freebsd.org (Postfix) with ESMTP id 91D72FEB for ; Sun, 10 Feb 2013 13:48:56 +0000 (UTC) (envelope-from nvass@gmx.com) Received: from mout.gmx.net (mout.gmx.net [74.208.4.200]) by mx1.freebsd.org (Postfix) with ESMTP id 20423E2C for ; Sun, 10 Feb 2013 13:48:56 +0000 (UTC) Received: from mailout-us.gmx.com ([172.19.198.47]) by mrigmx.server.lan (mrigmxus001) with ESMTP (Nemesis) id 0MCLxN-1UD1bK2s9h-00982q for ; Sun, 10 Feb 2013 14:48:55 +0100 Received: (qmail invoked by alias); 10 Feb 2013 13:48:55 -0000 Received: from 188.4.187.198.dsl.dyn.forthnet.gr (EHLO [192.168.1.64]) [188.4.187.198] by mail.gmx.com (mp-us007) with SMTP; 10 Feb 2013 08:48:55 -0500 X-Authenticated: #46156728 X-Provags-ID: V01U2FsdGVkX1/HpXN1EifHjaBTwBZ8Q+vYfAr8Inalo01yEkO8Nt 8Ugnnk3mk2wQ6C Message-ID: <5117A540.1060702@gmx.com> Date: Sun, 10 Feb 2013 15:48:48 +0200 From: Nikos Vassiliadis User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:17.0) Gecko/17.0 Thunderbird/17.0 MIME-Version: 1.0 To: "Teske, Devin" Subject: Re: vnet without epair References: <511671FA.3050801@a1poweruser.com> <511680AD.1040209@gmx.com>, <5116A452.6030104@a1poweruser.com> <13CA24D6AB415D428143D44749F57D7201EA6A3F@ltcfiswmsgmb21>, <511780DF.6010600@gmx.com> <13CA24D6AB415D428143D44749F57D7201EA6BAB@ltcfiswmsgmb21> In-Reply-To: <13CA24D6AB415D428143D44749F57D7201EA6BAB@ltcfiswmsgmb21> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Y-GMX-Trusted: 0 Cc: Fbsd8 , FreeBSD questions X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 10 Feb 2013 13:48:56 -0000 On 2/10/2013 2:54 PM, Teske, Devin wrote: > It's not in ports only because I first wanted to see where jail.conf would take us w/respect to vimages. I see. > However, this package not being in ports shouldn't prevented you from trying it -- it's extremely stable and as I mentioned, we've been using it heavily at $work for over 12 months now. When you download the package (*.tgz) and pkg_add it, it installs the following two files only: > > /etc/rc.d/vimage > /etc/rc.conf.d/vimage > > NOTE: The rc.conf.d file is the "documentation" on usage > > If you haven't tried it, then I hope you will because I think the new jail.conf stuff falls short. Don't get me wrong, jail.conf is a great start, but simply adding the ability to manage the vnet aspect of a jail does not make a vimage (what's missing is the built-in support for generating bridges as vimages are brought up/down dynamically). > > I feel that before I add this to ports I need to reprogram it to use jail.conf (not directly). That will simplify its code and [should] make it smaller. I was somewhat waiting on /etc/rc.d/jail to blaze the trail for me. > > In short, the landscape has been changing fast enough that it's prevented me from adding this to ports, but in spite of that it's still very much real _and_ real stable. > Yes, of course. I will try it and report back to you my findings. What I - nikos - really need from a script like yours is the ability to generate arbitrarily complex topologies with interconnected vnet jails. Something like: a----b----c---d | | h----e----f---g | | i Like a cut-down version of imunes[1] without the need of a graphical user interface. I understand that is not common case and that is why I was always using ad hoc scripts. But one can always hope(or write one himself/herself of course!). 1. http://web.archive.org/web/20120418053250/http://imunes.tel.fer.hr/imunes/ Thanks, Nikos