From owner-freebsd-questions@freebsd.org Thu Jul 30 13:19:10 2015 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id AEAC69AE5E9 for ; Thu, 30 Jul 2015 13:19:10 +0000 (UTC) (envelope-from pathiaki2@yahoo.com) Received: from nm40-vm6.bullet.mail.bf1.yahoo.com (nm40-vm6.bullet.mail.bf1.yahoo.com [72.30.239.214]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 5FB0DFCC for ; Thu, 30 Jul 2015 13:19:09 +0000 (UTC) (envelope-from pathiaki2@yahoo.com) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; t=1438262194; bh=osmONR4lODZcI7E8SOjWo9kTihE+7m3trPb4TRaV7ss=; h=Date:From:To:Subject:References:In-Reply-To:From:Subject; b=btnWjpqgo5PBZLNTYjzJAjhlrDd79e4N9/xDtodJS7Wc/H1dxdcgHoEf/yqHKMd1FzsfDmBKhXcv9MSPaqr2/AO9G9/vsfZd/EZ7EfAJwzNlhDkHhtepX8eFXvre6Htl8FDBXzv3G2l7iRao3HFlsRjDOE4Cpd6ZgmkLGUXPltfTZj7ISaBPSs87uv+uswOmwPt4sefWvbH9FSKRD0Ee8dWm4lVjGtTyU/uDfov3PIj+XX1nITaxo0/RBq2d8+Lh0fkD5tattnrOApJMxJnJgEBrY9NWO2xcZkNZx/ty6i70eVsIQQMgCI1EY8vtl/YnV6PdslT204RFDZuWRZ5CYw== Received: from [66.196.81.171] by nm40.bullet.mail.bf1.yahoo.com with NNFMP; 30 Jul 2015 13:16:34 -0000 Received: from [98.139.213.9] by tm17.bullet.mail.bf1.yahoo.com with NNFMP; 30 Jul 2015 13:16:34 -0000 Received: from [127.0.0.1] by smtp109.mail.bf1.yahoo.com with NNFMP; 30 Jul 2015 13:16:34 -0000 X-Yahoo-Newman-Id: 753339.66862.bm@smtp109.mail.bf1.yahoo.com X-Yahoo-Newman-Property: ymail-3 X-YMail-OSG: Eo.EYVQVM1lGpp.YczMS9UOSptSbt24.t1qFC48pgInec97 PfTRzgRSLj1rnZjIvnlOR28mhzXAVxPwr33iv0l.AdJoJB9p3JPceN5dTibR x2QWaR2k0LRSJrRzNyM.qc8q7MzLbIPArpFpElf107tmUSnXCU141ECkzW_7 7PBc6GA5W0tLCcnaIT0O7Ufxl7XMbmPbbNnEUxUYeZbQVi45jT7si2JYCuQY DCz7O4hgeQoajSNHpGnS_gevV4T81y9tUUn9XUCd9Mk5DXom58rF57_wDNaD m8KWYsyVdfXncdPqqRKmg9QZyHyNTEzagF8NqaYyygj7p.aas4k3aPMrIs98 cigffdTyQbqrgDMkrh8wIDt2XAEMIDLdhDZQCFx5O5FsllLwX7clLezMnUqT 1nTA11z4aKbi8YbeQKqAF5mIHLe.oYkwsZjYqwyFO31Z3IPVWMwR0xMsgLBg nXbC3QN1WBOk8UHNkkXx0q1my1VwCvcFA6_6iNGZcYr5.QejAcvDBZNNoeFw vXQFRQllojj4L20yQ6u3P0XI4U7TqQBGV X-Yahoo-SMTP: h3Xqg6.swBC0yI913RMMwp94grO_cg-- Message-ID: <55BA23B0.6050900@yahoo.com> Date: Thu, 30 Jul 2015 09:16:32 -0400 From: Paul Pathiakis User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:31.0) Gecko/20100101 Thunderbird/31.7.0 MIME-Version: 1.0 To: freebsd-questions@freebsd.org Subject: Re: Virtualization on FreeBSD References: <55BA1306.3070201@yahoo.com> <55BA18C3.3040307@hiwaay.net> <9375E0BE-864C-4087-BC9C-1BCC243524A4@elde.net> In-Reply-To: <9375E0BE-864C-4087-BC9C-1BCC243524A4@elde.net> Content-Type: text/plain; charset=windows-1252; format=flowed Content-Transfer-Encoding: 7bit X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 30 Jul 2015 13:19:10 -0000 On 07/30/2015 08:55, Terje Elde wrote: > On 30. juli 2015, at 14:29, "William A. Mahaffey III" wrote: > >> Can jails run non-native guests/VM's (M$FT, for example) ? I thought I saw something about this online a while back, but haven't been able to re-acquire it .... I'm on 9.3R-p20, BTW .... > Jails are not - and this is the good part - virtualization. It's a way of compartmentalizing so you can have multiple FreeBSD installs in different jails, or even just single programs. > > For web for example, I'll often run webservers in one jail, and database server in another, to get a degree of isolation between them. > > It's not really intended to solve running another operating system, though you might be able to run some linux binaries in a jail. > > Terje > I agree with the first part. They are not virtualization... they don't hog resources that they don't need (like CPUs, disk space, etc - They're to resource sharing like zpools are to ZFS - everything is in one bucket that everyone shares; Before ZFS, in order to keep logging from wedging a system, you'd have to create a partition of certain sizes (of course, prior to the ability to grow filesystems).) Someone mentioned they are enhanced 'chroot'. Well, chroot has been proven insecure in many regards over time. Jails have been found to be secure. I disagree with the last part. I implemented debootstrap and loaded Debian 6 when I needed a Linux specific app. *shrug* No big deal. Same thing for CentOS. I expect BHYVE will be the virtualization for FreeBSD in the future. Also, jails are being enhanced to have virtualization "features". That is, there looks to be work going on to allow the complete allocation/dedication of resources to a jail. I'm not sure this should happen, especially CPU/RAM. Of course, if it could be made such that I have a 16 core CPU and have 32 jails.... I might want to be able to allow a load of 2.00 in one jail so allow the other 31 to share the remaining CPUs. Abilities on those lines would keep jails from becoming the issue that virtualization has... dedicating resources that can't be used by other virtual machines. I like the fact I don't need to have at least as many cores as machines in virtualization. (Of course, they may have resolved this and my knowledge is out of date) P.