From owner-freebsd-jail@FreeBSD.ORG Tue Jan 27 20:36:28 2015 Return-Path: Delivered-To: jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 0DD8F917 for ; Tue, 27 Jan 2015 20:36:28 +0000 (UTC) Received: from cosmo.uchicago.edu (cosmo.uchicago.edu [128.135.52.97]) by mx1.freebsd.org (Postfix) with ESMTP id D9F7D75D for ; Tue, 27 Jan 2015 20:36:27 +0000 (UTC) Received: by cosmo.uchicago.edu (Postfix, from userid 48) id 4D98BCB8C9D; Tue, 27 Jan 2015 14:36:26 -0600 (CST) Received: from 128.135.70.2 (SquirrelMail authenticated user valeri) by cosmo.uchicago.edu with HTTP; Tue, 27 Jan 2015 14:36:26 -0600 (CST) Message-ID: <61100.128.135.70.2.1422390986.squirrel@cosmo.uchicago.edu> In-Reply-To: <54C7F109.2040405@erdgeist.org> References: <20150127012347.GA4940@lonesome.com> <20150127141239.V77290@sola.nimnet.asn.au> <54C7958B.40007@gmail.com> <54C7C828.4070703@erdgeist.org> <14943.128.135.70.2.1422381245.squirrel@cosmo.uchicago.edu> <54C7D371.9010609@erdgeist.org> <13934.128.135.70.2.1422383293.squirrel@cosmo.uchicago.edu> <54C7F109.2040405@erdgeist.org> Date: Tue, 27 Jan 2015 14:36:26 -0600 (CST) Subject: Re: preferred jail management tool From: "Valeri Galtsev" To: "Dirk Engling" Reply-To: galtsev@kicp.uchicago.edu User-Agent: SquirrelMail/1.4.8-5.el5.centos.7 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal Cc: jail@freebsd.org X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 27 Jan 2015 20:36:28 -0000 On Tue, January 27, 2015 2:11 pm, Dirk Engling wrote: > On 27.01.15 21:01, Peter Toth wrote: > >> The most important part is jail(8) and properties can be passed to >> jail(8) >> very easily. >> >> This is the very reason I stopped relying on any rc.d/jai or jail.conf >> for >> iocage. It is much easier/simpler to add/modify features when dealing >> with >> jail(8) directly. > > This means that you need to keep your config in yet another place. I > think it's much nicer to point a user to a defined location where he > would find everything that magically creates those jail containers at > system startup. > > I think that rc.d/jail and its config should provide all the means > necessary to describe the state of the system's jails after booting up. > If it doesn't, the tool is useless. Could you please explain what > features are missing in jail.conf for you to not use it? Maybe we can > layout a path to a better config abstraction. > Now I feel ultimately confused. I [still] have all my jail configurations in /etc/rc.conf, and I can start or stop one of the jails by /etc/rc.d/jail [start|stop] jailname If I switch all configurations to /etc/jail.conf, will the same commands work for starting/stopping jails? Valeri ++++++++++++++++++++++++++++++++++++++++ Valeri Galtsev Sr System Administrator Department of Astronomy and Astrophysics Kavli Institute for Cosmological Physics University of Chicago Phone: 773-702-4247 ++++++++++++++++++++++++++++++++++++++++