Am I the only one who regularly wishes #BastilleBSD would let you choose the zpool when creating a jail? 🤔

We may be in the market to hire a part-time FreeBSD and Bastille sysadmin (~20hrs week) specifically in the EMEA or APAC timezones (eventually both).

The roles require experience with FreeBSD, Bastille, nginx, and at least one useful coding language.

Timeline is mid-to-late 2026 to start.

Any of our EU / APAC friends want to come work part-time with the Bastille creator on a cybersecurity startup?

#FreeBSD #BastilleBSD #Cybersecurity

@BastilleBSD @patpro Thank you for your toot about this 🙏🏻
I posted a comment in the PR I created to update to port https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=294574
I didn’t find how to use this new port version in a jail. Luckily I made a backup of /usr/local/etc/rc.d/adguardhome and I easily restored it to be able to launch the service.
I hesitated to create a new PR for this issue. I posted a comment in the initial PR.
If you know how to deal with this new way (aka security/portacl-rc), please let me know.
#FreeBSD #AdGuardHome #Bastille #Jail #BastilleBSD
294574 – www/adguardhome: update to 0.107.74

SYNOPSIS
bastille console [-ax] TARGET [USER]

DESCRIPTION
The bastille console sub-command will enter a jails shell. If a user is given, it will enter as that user.

EXAMPLES
Console into myjail:
# bastille console myjail

Console into myjail as bob:
# bastille console myjail bob

Console into a stopped jail as bob:
# bastille console -a myjail bob

#ManpageMonday #BastilleBSD #FreeBSD

SYNOPSIS
bastille config [-x] set|add PROPERTY [VALUE]
bastille config [-x] get|remove PROPERTY

DESCRIPTION
The bastille config sub-command will modify targeted jail(s) configuration and get, set, add or remove properties.

EXAMPLES
Set allow.mlock inside myjail:
# bastille config myjail set allow.mlock 1

Set to priority value of myjail:
# bastille config myjail set priority 10

Set the boot value:
# bastille config myjail set boot off

#ManpageMonday #BastilleBSD #FreeBSD

SYNOPSIS
bastille template [-ax] TARGET|convert TEMPLATE

DESCRIPTION
The bastille template sub-command will apply the specified TEMPLATE to TARGET.

-a, --auto : Auto mode. Start/stop jail(s) if required.

-x, --debug : Enable debug mode.

EXAMPLES
Apply www/nginx to myjail:
bastille template myjail www/nginx

#ManpageMonday #BastilleBSD #FreeBSD

SYNOPSIS
bastille tags [-x] TARGET add|delete tag1,tag2
bastille tags [-x] TARGET list [tag]

DESCRIPTION
The bastille tags sub-command add, remove and list tags for jails.

EXAMPLES
Add 'prod' tag to myjail and yourjail:
# bastille tags 'myjail yourjail' add prod

Show jails with the tag 'web':
# bastille tags ALL list web

#ManpageMonday #BastilleBSD #FreeBSD

I've got a Lenovo M93p Tiny with 16GB RAM and a Haswell Xeon. It's a great little unit that I used to use as my Haiku build box.

I'm thinking about using it as a #Forgejo (and maybe eventually #Codeberg) Actions runner, with a handful of lightweight VMs (Alpine, FreeBSD, NetBSD, OpenBSD, Haiku), each using no more than a gig or two of memory.

Does anyone have any tips on doing this? I'm guessing #Proxmox would be a good start, but I wonder if #FreeBSD with #bhyve and #BastilleBSD might also do a good job.

SYNOPSIS
bastille setup [-ax]
bastille setup [-ax]
bridge|linux|loopback|netgraph|firewall|shared|storage|vnet

DESCRIPTION
The bastille setup sub-command will attempt to configure different options for your environment.

#ManpageMonday #BastilleBSD #FreeBSD

NAME
bastille etcupdate – Update /etc for jail(s).

SYNOPSIS
bastille etcupdate [-fx] bootstrap RELEASE
bastille etcupdate [-dx] TARGET update RELEASE
bastille etcupdate [-x] TARGET diff|resolve

DESCRIPTION
The bastille etcupdate sub-command will bootstrap a tarball from RELEASE which can then be used to update the contents of /etc inside jails after performing an upgrade.

#ManpageMonday #BastilleBSD #FreeBSD