I'm new to jails, having not used them on FreeBSD or FreeNAS. The guide looks fairly straightforward. I'd like to check my understanding and make sure I have some stuff right, though. I'm happy using UI or CLI to manage them, but will probably create using GUI.
*brain dump start *
Thanks for quick replies - any other relevant comments very appreciated!
*brain dump start *
- We have warden (old), iocage (new) and transition (now). Should I create my jail using iocage or use warden + convert it when 11.2 comes out?
- Do I need to create my jail using newUI or CLI if I want to use iocage as the doc suggests? If so, is iocage complete and "production ready" (the jail system that is, if not fully set up for GUI management yet)?
- What happens when FreeNAS upgrades? Will my jails need to be set up freshly, or do they "just work"?
- Suppose I reinstall on a new platform (importing existing config). I might import pool+config or just config, so the expected file paths and files might or might not all exist. What's the scope for confusion and how easy is it to put right (e.g., is it easy to get them running by just copying over the relevant directories it's expecting, or what else might be needed?)
- I gather that to control a jail's permissions for external paths it's allowed to access (is that the right teminology?), I need to create users within the jail whose uids and/or gids match the expected uids/gids of permissions/ACLs it needs to access. Is that about right, and what's involved (to make it work and to make sure it stays secure). I'm assuming root wouldn't be mapped over but are all others or just some? Any suggested resources to understand how to control this aspect?
- Is the basic install in a jail a pure FreeBSD install (not customised for FreeNAS), or is it customised/minimised some way? I assume you can always add packages but it would help to know anything that's not set up as standard, so I don't get confused if I assume it's identical to doing a clean install of a FreeBSD ISO and it's got config/changes to it by default.
- If a bare jail has any changes from FreeBSD, what do I need to do, to run a full "unmodified" FreeBSD install? (Or a full install less anything that can be added using pkg, at most) - meaning no config changes or unexpected differences?
Thanks for quick replies - any other relevant comments very appreciated!