From owner-freebsd-questions@FreeBSD.ORG Tue Apr 22 21:47:47 2014 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 5F04496F for ; Tue, 22 Apr 2014 21:47:47 +0000 (UTC) Received: from mail-ob0-x233.google.com (mail-ob0-x233.google.com [IPv6:2607:f8b0:4003:c01::233]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 2AFB511B7 for ; Tue, 22 Apr 2014 21:47:47 +0000 (UTC) Received: by mail-ob0-f179.google.com with SMTP id vb8so101446obc.10 for ; Tue, 22 Apr 2014 14:47:46 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:date:message-id:subject:from:to:content-type; bh=S/dhPCvaNhAEeaTKUrL+6foKFdAOdm0z1IXQZttm35A=; b=XU9yQX3TgwnnSWr3u6JtWmJhxVEa4OVHajZdTutPH+EE1UkLOWOxYfCI0MXf/I34at 7dotM4UhEXoXa9ASGLd6NPkxT+6/kPwm9lL4lv0X8GD3a88MMQ3YaHD4nTLZ+lg9u6GW Ofl0PgluGn+w3uX1WwgOr1tgD31BUdBcv63xquEnMH5Ft1s0wgk55tGnG/MI2xG7a98y lXwtL1CDksvp2EJo/hC0X9RAs9LsPztQpjJE10jj/Zh8Cnzu5ghVK64JK+8LTqDLulkn +62a/SAoR02JNDg98lG4urNw34jMqqNA5JYH3IDwRqdfx/8jZXPEdBtvGsQOxhfJq52t lSBg== MIME-Version: 1.0 X-Received: by 10.182.60.4 with SMTP id d4mr12108464obr.4.1398203265976; Tue, 22 Apr 2014 14:47:45 -0700 (PDT) Received: by 10.60.144.137 with HTTP; Tue, 22 Apr 2014 14:47:45 -0700 (PDT) Date: Tue, 22 Apr 2014 14:47:45 -0700 Message-ID: Subject: FBSD jail versus VMWare? What services do YOU run in a jail? From: "edflecko ." To: freebsd-questions@freebsd.org Content-Type: text/plain; charset=UTF-8 X-Content-Filtered-By: Mailman/MimeDel 2.1.17 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 22 Apr 2014 21:47:47 -0000 I'm really interested in the comparison of using a FBSD jail rather than VMWare in the context of virtualization. At my business, we heavily use VMWare - you might say we consider ourselves a VMWare "shop". 99% of our servers are virtualized. I've heard that it's possible to run hundreds, if not thousands, of services in FBSD jails on a given host server because of the sharing of resources that all of your jails take advantage of. If I understand that correctly, that's one of the HUGE advantages of running services in jails as opposed to creating VM after VM after VM - each VM eats up disk space on the SAN as well as memory resources, etc. Additionally, the jailed service is far better from a security perspective? Having said all of that, I'm curious to hear from some of you who may be doing just this - are you running a FBSD server with some of your mission critical services (Apache, Bind, DHCP, etc., etc.) within jails and how do you like it versus running hundreds of VMs and VMWare? What type of services CAN be run from within a jail? Thank you, Ed