ezjail Starting jails timeout and WARNING: Per-jail configuration via jail_* variables is obsolete...
David Christensen
dpchrist at holgerdanske.com
Fri Nov 29 17:35:35 UTC 2019
freebsd-questions:
I have a FreeBSD system:
root at soho2:~ # freebsd-version ; uname -a
11.3-RELEASE-p5
FreeBSD soho2.tracy.holgerdanske.com 11.3-RELEASE-p5 FreeBSD
11.3-RELEASE-p5 #0: Tue Nov 12 08:59:04 UTC 2019
root at amd64-builder.daemonology.net:/usr/obj/usr/src/sys/GENERIC amd64
I am attempting to use ezjail:
http://erdgeist.org/arts/software/ezjail/
I am also referring to some additional resources:
https://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/jails.html
man 8 jail
man 7 ezjail
man 8 ezjail-admin
man 5 ezjail.conf
https://nostarch.com/absfreebsd3
I limited listening ports on the host:
# sockstat -46l
USER COMMAND PID FD PROTO LOCAL ADDRESS FOREIGN
ADDRESS
root sendmail 751 3 tcp4 127.0.0.1:25 *:*
root sshd 744 3 tcp4 192.168.5.11:22 *:*
_ntp ntpd 713 6 udp4 192.168.5.11:123 *:*
root syslogd 544 6 udp4 192.168.5.11:514 *:*
I configured the system to add aliases to the primary network interface
at boot:
# grep alias /etc/rc.conf
ifconfig_igb0_alias0="inet 192.168.5.100 netmask 255.255.255.255"
ifconfig_igb0_alias1="inet 192.168.5.101 netmask 255.255.255.255"
ifconfig_igb0_alias2="inet 192.168.5.102 netmask 255.255.255.255"
ifconfig_igb0_alias3="inet 192.168.5.103 netmask 255.255.255.255"
I configured the system to clone the loopback interface at boot:
# grep cloned_interfaces /etc/rc.conf
cloned_interfaces="lo1"
I rebooted.
I installed ezjail from ports:
# cd /usr/ports/sysutils/ezjail
# make install clean
I configured ezjail:
# egrep '^[^#].' /usr/local/etc/ezjail.conf
ezjail_ftphost=http://ftp.freebsd.org
ezjail_use_zfs="YES"
ezjail_use_zfs_for_jails="YES"
ezjail_jailzfs="soho2_zroot/ezjail"
I enabled ezjail at boot:
# grep ezjail /etc/rc.conf
ezjail_enable="YES"
I started the ezjail service:
# service ezjail start
ezjail
I performed the ezjail initial setup:
# ezjail-admin install -p
I created a test jail:
# ezjail-admin create testjail 'lo1|127.0.1.1,igb0|192.168.5.100'
# cat /usr/local/etc/ezjail/testjail
# To specify the start up order of your ezjails, use these lines to
# create a Jail dependency tree. See rcorder(8) for more details.
#
# PROVIDE: standard_ezjail
# REQUIRE:
# BEFORE:
#
export jail_testjail_hostname="testjail"
export jail_testjail_ip="lo1|127.0.1.1,igb0|192.168.5.100"
export jail_testjail_rootdir="/usr/jails/testjail"
export jail_testjail_exec_start="/bin/sh /etc/rc"
export jail_testjail_exec_stop=""
export jail_testjail_mount_enable="YES"
export jail_testjail_devfs_enable="YES"
export jail_testjail_devfs_ruleset="devfsrules_jail"
export jail_testjail_procfs_enable="YES"
export jail_testjail_fdescfs_enable="YES"
export jail_testjail_image=""
export jail_testjail_imagetype="zfs"
export jail_testjail_attachparams=""
export jail_testjail_attachblocking=""
export jail_testjail_forceblocking=""
export jail_testjail_zfs_datasets=""
export jail_testjail_cpuset=""
export jail_testjail_fib=""
export jail_testjail_parentzfs="soho2_zroot/ezjail"
export jail_testjail_parameters="allow.raw_sockets=1"
export jail_testjail_post_start_script=""
export jail_testjail_retention_policy=""
I started the jail:
# ezjail-admin start testjail
Starting jails: testjail.
/etc/rc.d/jail: WARNING: Per-jail configuration via jail_*
variables is obsolete. Please consider migrating to /etc/jail.conf.
Any ideas about the warning?
I started a console in the jail, looked around, set the root password,
set timezone, create /etc/resolv.conf, created /etc/rc.conf, etc., and
logged out:
# ezjail-admin console testjail
FreeBSD 11.3-RELEASE-p5 (GENERIC) #0: Tue Nov 12 08:59:04 UTC 2019
Welcome to FreeBSD!
<snip>
I stopped the jail:
# ezjail-admin stop testjail
Stopping jails: testjail.
When I reboot, I see:
ezjaileval:
jail_testjail-20191128-120605_exec_start=-20191128-120605_exec_start:
not found
Warning: root directory -20191128-120605_rootdir of
testjail-20181128-120605 does not exist.
Starting jails:
Boot hangs after "Starting jails", then times out after 1+ minute:
testjail.
/etc/rc.d/jail: WARNING: Per-jail configuration via jail_*
variables is obsolete. Please consider migrating to /etc/jail.conf.
Any ideas why the system hangs at boot when starting jails?
TIA,
David
More information about the freebsd-questions
mailing list