I’m liking what I’m reading so far ...
RACCT/RCTL, Netgraph, OCI support.
https://appjail.readthedocs.io/en/latest/

#freebsd #jails #appjail

Jail app update

The appjail journey ends for now. Spent to much time on various things Promising and easy to initially use. But very difficult to get it running with vnet and accessible jails for the LAN. DHCP works but I cannot set any limits on IP ranges. Config files for jails are on strange locations, no jail.conf to have to all in one place.

So... the journey continues.
I tried Pot, and in no time I got jails running isolated, on my LAN ip range and with selective ports to open.
See https://pot.pizzamig.dev/

Installation was a breeze, ZFS support, import export and clone is possible.
Templates (so called) flavors) are available:
https://potluck.honeyguide.net/
A flavour is a template that after creating an empty pot, installs the dependencies and sets settings. Configuration before start is done via pot set-env and some parameters. Easy once you get the heck of it.

Networking is a relief and well documented:
https://pot.pizzamig.dev/Network/

Support on github is fast.

Example pot based on Freebsd 14.1 on a fixed LAN address:
pot create -p mypot2 -t single -b 14.1 -N alias -i 192.168.3.2 -S ipv4 -f fbsd-update

(the -f is the favor, in this case the update script for freebsd)

So exploration started and who knows what follows?

#jails #appjail #cbsd #bastille #pot #freebsd #server #networking

trying #appjail for the first time, but it's not for me who lazy to read documentation and always relying on `--help` flag everytime in CLI.

but appjail doesn't have that command. 😔

read again the documentation but I can't find related CLI for appjail.
OK it's time to delete appjail and test jail created before, not forget to set `chflags` before delete `/usr/local/appjail`

Hi Bastille, how are you going?

As you may know I am exploring Appjail for creation and maintenance of Freebsd jails

This tutorial I found yesterday and helps you to get to know the app and its options
#freebsd #appjail #jails

https://rubn0x52.com/2024/01/11/nextcloud-with-appjail/

Freebsd virtualization is easy with the correct tools
Of course one can use the basic jail command but to make life easier: I prefer a tool around it.

I use now BastilleBSD to create Freebsd jails, Bhyve for VMs.
I was looking for a combination tool with more options for export / clone easy backup and linux virtual machines/instances

--> I tried CBSD: good command set, relatively easy to use, no good documentation. The Freebsd system install was a bit more invasive then I wanted. Too bad, a nice tool.

--> Then the (I hope) final solution which is a perfect match: appjail
1: The comparison table: https://appjail.readthedocs.io/en/latest/compare/
2: The documentation is sold, supported by a good repository of samples and jail templates
3: Easy to create a "native" freebsd jail, and linux in various flavours.
4: Vnets are auto created and maintained during start and stop

Example for Freebsd:
appjail quick hello \
virtualnet=":ajnet" \
overwrite
done ;)

Example for Alpine:
appjail makejail \
-j alpine \
-f gh+AppJail-makejails/alpine-linux \
-o template=/usr/local/share/examples/appjail/templates/linux.conf \
-o alias \
-o virtualnet=":ajnet address:192.168.X.XXX default" \
-o nat

appjail login alpine
Welcome to Alpine!
alpine:~#

And for Debian Bookworm,:
appjail makejail \
-j debian \
-f gh+AppJail-makejails/debian \
-o template=/usr/local/share/examples/appjail/templates/linux.conf \
-o alias -o linuxfs -o osversion=bookworm -o type=linux+debootstrap \
-o virtualnet=":ajnet address:192.168.X.XXX default" \
-o nat -o devfs_ruleset=11

appjail login debian
Linux debian.appjail 5.15.0 FreeBSD 14.1-RELEASE-p3 GENERIC x86_64
root@debian:~#

#vm #jail #appjail #freebsd #virtualization #linux