state of the art ?
Nikos Vassiliadis
nvass at gmx.com
Thu Apr 25 12:13:58 UTC 2013
On 04/25/2013 07:40 AM, zulu wrote:
> VNET is supported and there is a "soft" jail restart option which
> prevents the "kern/164763: Memory leak in VNET" issue from appearing.
This is a really interesting workaround!
Yes, ipfw is vnet-capable since a long time and it works as good
as the non-virtualized version. Well... except for dummynet which
isn't virtualized yet.
My point is, VIMAGE is really stable except for:
1) tearing-down a vnet
2) running non-vnet-ready code (pf, dummynet, lagg, ipf etc)
Number one is trigged by destroying a jail.
Number two is usually triggered *immediately* after trying to use a
non-vnet-ready driver.
You can avoid these two and if you avoid them it is perfectly stable...
Also, I have to say that i like vimage very much so i might be biased:)
Just my 2 cents,
Nikos
More information about the freebsd-jail
mailing list