jail configs separation
Dirk Engling
erdgeist at erdgeist.org
Tue Jun 6 18:32:49 PDT 2006
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
The patch available at
http://erdgeist.org/arts/software/jail/jail.1.34.diff
does the following things:
* Allow jail names of the kind foo.com, those are converted into foo_com
* Scan /etc/jails for jail configs, sort them by rcorder and add them to
jail_list, when script is invoked without parameters
* Test for /etc/jails/<JAILNAME> for each jail and try to source config file
This helps in the automation of jail creation, deletion and
configuration. You can put configs for all your jails into a central
directory and have the list automatically generated by the directories
content. Editing /etc/rc.conf and providing lots of repetitive lines
becomes unnecessary.
The rcorder statements inside jail configs enable the user to exactly
specify startup order of jails.
The clean up of jail configs enables configuration utilities to easily
access config for certain jails without expansive parsing of
/etc/rc.conf. For an outline of how this might look like, see the ezjail
project page.
Further the patch removes the "ifconfig <interface> -alias <ip>" when
stopping jails, since this is outright dangerous as already described in
http://docs.freebsd.org/cgi/getmsg.cgi?fetch=14661+0+archive/2006/freebsd-rc/20060514.freebsd-rc
Having the IP configured on your interface, even if you don't need it,
should not be a problem.
Comments? Suggestions?
erdgeist
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (Darwin)
iD8DBQFEhihjImmQdUyYEgkRAlCeAKCA6in7kRhE1uq2KF1UIIXEr1xKhgCbBOXc
Nk5J6hodYWjt4LRE0+DVI1U=
=VHjH
-----END PGP SIGNATURE-----
More information about the freebsd-rc
mailing list