From owner-freebsd-questions Sun Feb 10 6: 0:30 2002 Delivered-To: freebsd-questions@freebsd.org Received: from smtp2.mbox.com.au (203-134-146-019.cust.pth.iprimus.net.au [203.134.146.19]) by hub.freebsd.org (Postfix) with ESMTP id 4F2B637B417 for ; Sun, 10 Feb 2002 06:00:23 -0800 (PST) Received: from nms2.mbox.com.au (webmail.mbox.com.au [192.168.20.4]) by smtp2.mbox.com.au (Sun Internet Mail Server sims.4.0.2000.05.17.04.13.p6) with ESMTP id <0GRB00CGJLDZXA@smtp2.mbox.com.au> for freebsd-questions@FreeBSD.ORG; Sun, 10 Feb 2002 21:56:28 +0800 (WST) Received: from mbox.com.au ([127.0.0.1]) by nms2.mbox.com.au (Netscape Messaging Server 4.15) with ESMTP id GRBLFI03.523 for ; Sun, 10 Feb 2002 21:57:18 +0800 Date: Mon, 11 Feb 2002 00:57:17 +1100 From: BSD Freak Subject: file system partitioning and multiple jails To: FreeBSD Questions Message-id: <105aaff105a29f.105a29f105aaff@mbox.com.au> MIME-version: 1.0 X-Mailer: Netscape Webmail Content-type: text/plain; charset=us-ascii Content-language: en Content-disposition: inline Content-transfer-encoding: 7BIT X-Accept-Language: en Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Hi all.... I have a FreeBSD 4.5 system running multiple jails (7 actually) that will run each run a particular application (apache, sendmail, MySQL etc), the host system runs no services (apart from SSH for administraion and NTP). My reason for this "viritual machine" type of architecture are many including: 1. I can easily move one of these virtual machines (jail) to a "real" seperate machine if load gets too high 2. The server is overkill for handling only one application and can easily handle all 7 applications at this stage. 3. Security. I have each service segregated, this mitigates the effects of a compromised service on one of those machines. 4. Easier backups and hardware portability. I just tar and gzip the entire jail file system and can easily move it to different hardware if I need to (since only the host has to worry about kernels, drivers etc.) At this stage I have not put the system into production, I am still testing and looking for intelligent feedback from the list, especially in regard to file system partitioning for such a configuration. To me it make the most sense to have a single large / partition (and swap ofcourse) for the following reasons: 1. I don't know which application will have the most disk requirements at this stage and am afraid of under allocating space. 2. simplicity 3. I may need to add or remove jails The only valid negative point I have seen to this approach so far is /var/log filling up and effectivly bringing about a denial of service. Is there some way to limit the size of the /var/log directory? It really doesnt seem practical to me to create 7 seperate /var/log partitions ( one for each jail) and then what if I add or remove a jail? If anyone had experience with this kind of configuration advice would be greatly appreciated...... such an approach has been negat --------------------------------------------------------------------- Would you like to receive faxes to your personal email address? You can with mBox. Visit http://www.mbox.com.au/fax To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message