Mastodawn

BastilleBSD

6d ago

Bastille networks can be bridged, NAT’d, or VNET’d.

Run jails like mini-VMs, or keep them lean on localhost.

Flexibility is baked in.

Which setup do you prefer?

#FreeBSD #BastilleBSD #VNET #NAT

AzureTracks Sep 4

Today we start a journey into the heart of Azure’s DDoS protection capabilities—not just to check a box, but to build a resilient, observable, and defensible cloud perimeter.

DDoS attacks are no longer rare anomalies. #azure #ddos #law #PublicIP #sentinel #vnet

https://azuretracks.com/?p=2798

articuno7613 at KillBait Sep 3

Analysts Rate VNET Group Stock with Average Price Target of $9.96 Amid Mixed Guidance

Shares of VNET Group, Inc., traded on NASDAQ as an unsponsored ADR under the ticker VNET, currently carry an average 'Buy' rating from seven analysts covering the stock. Of these, five have issued a 'Buy' recommendation, while two analysts have rated it as 'Strong Buy.' The average twelve-month pric... [More info]

patpro Jul 24

Hey #FreeBSD friends, I’m testing #BastilleBSD and I’ve created my first VNET Jails.
It’s all great and good but what is the use case that make you choose a #VNET #jail instead of a "regular" jail? (I’m using regular jails for many years)

thank you! :)

rvstaveren May 25

If you have a bridge on #FreeBSD with many members, but no addresses (#vnet jails, #bhyve VMs?) there may be a performance improvement for you in this patch that landed in stable/14 https://cgit.freebsd.org/src/commit/?h=stable/14&id=ff1980d569c8167d38cda5f2713664866d9802bc

Making sure you're not a bot!

Larvitz

May 16

After a while of fiddling, I got dual-stack for FreeBSD (IPv4 and IPv6) VNet Jails working properly and reliably 🙂

The important lessons, I've learned:

/etc/sysctl.conf:
+net.link.bridge.inherit_mac=1

/boot/loader.conf:
+if_epair_load="YES"

/etc/rc.conf:
+create_args_bridge0="inet6 auto_linklocal -ifdisabled addm vtnet0"
+ifconfig_vtnet0="up -tso -vlanhwtso"
+rtsold_enable="YES"
+rtsold_flags="-i -m bridge0"

Then, configuring ifconfig_bridge0_ipv6 as well as ipv6_defaultrouter for the host to have IPv6 connectivity as well as the network-configuration in the jail via $jail/etc/rc.conf (The jail of course needs it's own IP on the same subnet as the host)

Screenshots of the fully working configuration with a connectivity test are attached :-)

#freebsd #jails #vnet #ipv6 #container #networking