So this freebsd newbie learned to setup jails in freebsd 4.10.
Does anyone want my notes for it?
Full Version: ne1 want my jail notes?
i want it ... it looks u have gone far and deep into the jungles of freebsd server setyp anshu.kyro at gmail dot com
Post it here (if possible).
I am sure that others will find it handy, too!
I am sure that others will find it handy, too!
Quote -
it looks u have gone far and deep into the jungles of freebsd server setyp
you have no idea how hard it is for a freebsd newbie. Every document you read is different from the previous one.run export DIR=/usr/jails/ip.address
then download makejail.sh.txt script [rename to makejail.sh]
Then the following will take you all the way to setting up apache
Quote -
:: Removing a jail ::
cd into the jail folder (usually /usr/jails/<ip.address>
chflags -R noschg * && rm -rf *
then cd .. && rmdir jail
:: Starting the Jail installation ::
export DIR=/usr/jails/ip.address
./makejail.sh
YES
cp -R /usr/ports /usr/jails/ip.address/usr/
cp /etc/rc.conf /usr/jails/ip.address/etc/
cp /etc/resolv.conf /usr/jails/ip.address/etc/
add 'jail /usr/jails/ip.address webmatrix /usr/local/bin/bash /etc/rc' to /etc/rc.local
:: entering jail ::
jail /usr/jails/ip.address/ webmatrix ip.address /bin/tcsh
*** webmatrix is the jail's hostname
added the following to /etc/hosts
ip.address hostname
ip.address hostname
ip.address hostname
cd /usr/ports
cd security/ssh2
make -DWITHOUT_X11 install clean
cd /usr/ports/shells/bash2
make install
vi /usr/local/etc/ssh2/sshd_config
- uncomment and edited the following:
PermitRootLogin no
ListenAddress ip.address
touch /etc/fstab
passwd root
*** enter root's password ***
pw user add -n <username> -G wheel -k /etc/skel -s /usr/local/bin/bash -d /home/<username> -m
passwd username
*** enter username's password ***
:: edit /etc/profile ::
alias ls="ls -G"
export PS1="\n\[\e[00m\e[2;32m[\e[0m\e[1;01m\T \e[00m\e[1;32m\u@\h\e[00m\e[2;32m\]:\[\e[00m\e[1;01m\w\e[00m\e[2;32m]\e[00m\n\e[1;32m$\e[0m "
tzsetup
:: exiting jail ::
ps -aux | grep ssh
root 5698 0.0 0.2 2476 2092 ?? SJ 3:39PM 0:00.13 /usr/local/sbin/sshd2
root 5678 0.0 0.2 2332 2020 ?? IsJ 3:39PM 0:00.00 /usr/local/sbin/sshd2
kill -HUP 5678
sh /etc/rc.shutdown
kill -15 -1
:: On the main install ::
jail /usr/jails/ip.address webmatrix /usr/local/bin/bash /etc/rc
::SSH into the jail::
cd /usr/ports
make search name=mysql
cd databases/mysql323-server
make install
/usr/local/bin/mysqladmin -u root password 'new-password'
added /usr/local/etc/rc.d/mysql-server.sh to /etc/rc.conf
cd /usr/ports/www/apache13
make APACHE_PREF_TUNING=YES all install
added apache_enable="YES" to /etc/rc.conf
cd into the jail folder (usually /usr/jails/<ip.address>
chflags -R noschg * && rm -rf *
then cd .. && rmdir jail
:: Starting the Jail installation ::
export DIR=/usr/jails/ip.address
./makejail.sh
YES
cp -R /usr/ports /usr/jails/ip.address/usr/
cp /etc/rc.conf /usr/jails/ip.address/etc/
cp /etc/resolv.conf /usr/jails/ip.address/etc/
add 'jail /usr/jails/ip.address webmatrix /usr/local/bin/bash /etc/rc' to /etc/rc.local
:: entering jail ::
jail /usr/jails/ip.address/ webmatrix ip.address /bin/tcsh
*** webmatrix is the jail's hostname
added the following to /etc/hosts
ip.address hostname
ip.address hostname
ip.address hostname
cd /usr/ports
cd security/ssh2
make -DWITHOUT_X11 install clean
cd /usr/ports/shells/bash2
make install
vi /usr/local/etc/ssh2/sshd_config
- uncomment and edited the following:
PermitRootLogin no
ListenAddress ip.address
touch /etc/fstab
passwd root
*** enter root's password ***
pw user add -n <username> -G wheel -k /etc/skel -s /usr/local/bin/bash -d /home/<username> -m
passwd username
*** enter username's password ***
:: edit /etc/profile ::
alias ls="ls -G"
export PS1="\n\[\e[00m\e[2;32m[\e[0m\e[1;01m\T \e[00m\e[1;32m\u@\h\e[00m\e[2;32m\]:\[\e[00m\e[1;01m\w\e[00m\e[2;32m]\e[00m\n\e[1;32m$\e[0m "
tzsetup
:: exiting jail ::
ps -aux | grep ssh
root 5698 0.0 0.2 2476 2092 ?? SJ 3:39PM 0:00.13 /usr/local/sbin/sshd2
root 5678 0.0 0.2 2332 2020 ?? IsJ 3:39PM 0:00.00 /usr/local/sbin/sshd2
kill -HUP 5678
sh /etc/rc.shutdown
kill -15 -1
:: On the main install ::
jail /usr/jails/ip.address webmatrix /usr/local/bin/bash /etc/rc
::SSH into the jail::
cd /usr/ports
make search name=mysql
cd databases/mysql323-server
make install
/usr/local/bin/mysqladmin -u root password 'new-password'
added /usr/local/etc/rc.d/mysql-server.sh to /etc/rc.conf
cd /usr/ports/www/apache13
make APACHE_PREF_TUNING=YES all install
added apache_enable="YES" to /etc/rc.conf
Hope this helps anyone that might be trying to setup a jail.
The 'man jail' documentation made it look so easy. It tells you to copy /stand/sysinstall to the jail's folder and then run sysinstall. The only thing is that it will error because the jail doesn't have any nameserver setup in the /etc/resolv.conf file. So you will get an error stating that no network is found or something like that.
*EDIT*
Where it reads
it should read instead:
jail /usr/jails/ip.address webmatrix ip.address /bin/sh /etc/rc
If you used the previous command, you will get an error:
Where it reads
QUOTE
:: On the main install ::
jail /usr/jails/ip.address webmatrix /usr/local/bin/bash /etc/rc
jail /usr/jails/ip.address webmatrix /usr/local/bin/bash /etc/rc
it should read instead:
jail /usr/jails/ip.address webmatrix ip.address /bin/sh /etc/rc
If you used the previous command, you will get an error:
QUOTE
jail: Could not make sense of ip-number: /bin/sh
^ thanx for the corrections and posting this all
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.