-
Important Announcement for the TrueNAS Community.
The TrueNAS Community has now been moved. This forum has become READ-ONLY for historical purposes. Please feel free to join us on the new TrueNAS Community Forums
Veracrypt in FreeNAS Jail
- Thread starter RosePeach
- Start date
- Joined
- Apr 24, 2020
- Messages
- 5,399
No, FreeNAS 11.x jails don't support FUSE filesystems. You'll need to upgrade to TrueNAS Core 12.0-U1.1 to run jails with FUSE support.
RosePeach
Cadet
- Joined
- Dec 27, 2019
- Messages
- 5
Ok, I have upgraded to TrueNAS-12.0-U1.1 Core. I have a new jail that has release 12.1-RELEASE-p13. How can I get the fuse kernel module working inside the jail? I was able to add
Code:
fuse_load="YES"
Code:
/boot/loader.conf
Code:
Error: fuse: failed to open fuse device: No such file or directory
Code:
kldload fuse
Code:
kldload: can't load fuse: Operation not permitted
- Joined
- Apr 24, 2020
- Messages
- 5,399
You have to run FUSE on the host, not inside the jail.
- In System->Tunables, set loader tunable
fuse_load="YES", which will load the FUSE module on the next boot. - Run
kldload fuseif you don't want to wait until the next reboot. - In System->Tunables, set sysctl tunables
security.jail.mount_allowed=1andsecurity.jail.mount_fusefs_allowed=1to enable the security flags in the host to allow jails to use FUSE mounts. - In System->Tunables, set sysctl tunables
security.jail.enforce_statfs=0,security.jail.mount_devfs_allowed=1, andvfs.usermount=1to enable the security flags in the host to allow /dev/fuse to appear in the jail. - Set the following properties in iocage for the jail:
Code:allow_mount:1 allow_mount_devfs:1 allow_mount_fusefs:1 devfs_ruleset:0 mount_devfs:1 securelevel:0
