Date: Fri, 27 Apr 2018 12:22:39 -0500 From: Eric Borisch <eborisch@gmail.com> To: Mark Raynsford <list+org.freebsd.virtualization@io7m.com> Cc: freebsd-virtualization@freebsd.org Subject: Re: Read-only view of a ZFS filesystem inside a bhyve guest? Message-ID: <CAMsT2=m1JQkmdsnOBt52qqPZ3N=q1Q6Pc1-2-_12Wy6GEDwbiw@mail.gmail.com> In-Reply-To: <20180427174341.03373bc8@almond.int.arc7.info> References: <20180427174341.03373bc8@almond.int.arc7.info>
next in thread | previous in thread | raw e-mail | index | archive | help
I use NFS for (*nix) guests, and SMB for Windows guests; both work well, and can be restricted to specific IPs / ranges to help minimize security concerns. On Fri, Apr 27, 2018 at 11:43 AM, Mark Raynsford via freebsd-virtualization <freebsd-virtualization@freebsd.org> wrote: > Hello. > > I'm looking to do what the subject says: I have an existing ZFS > filesystem (/storage/xyz) and I'd like to provide a read-only view of > the filesystem to a set of bhyve guests. The guests in this case could > be solely FreeBSD guests, but if there's a pleasant way to allow for > OpenBSD or Linux guests, I'd like that. > > I'm essentially looking to move some jail-based infrastructure to bhyve > guests. With the jails, I have a ZFS filesystem on the host that's > mounted read-only inside some of the jails using nullfs. I'm not sure > if there's something analogous for bhyve guests. > > I've looked at NFS, but this seems like overkill and possibly hard to > secure. Same applies to Samba. sshfs might be an option, but I'd really > prefer to have as few daemons listening on the host machine as possible > for security reasons. > > -- > Mark Raynsford | http://www.io7m.com > >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAMsT2=m1JQkmdsnOBt52qqPZ3N=q1Q6Pc1-2-_12Wy6GEDwbiw>