GSP
Quick Navigator
Search Site

Unix VPS
A - Starter
B - Basic
C - Preferred
D - Commercial
MPS - Dedicated
Previous VPSs
* Sign Up! *

Support
Contact Us
Online Help
Handbooks
Domain Status
Man Pages

FAQ
Virtual Servers
Pricing
Billing
Technical

Network
Facilities
Connectivity
Topology Map

Miscellaneous
Server Agreement
Year 2038
Credits
 

USA Flag

 

 

Man Pages
cbsd-jconstruct-tui(8) FreeBSD System Manager's Manual cbsd-jconstruct-tui(8)

cbsd jconstruct-tuiNcurses based jail creation wizard.

cbsd jconstruct-tui [mode=full] [--help]

The cbsd jconstruct-tui command uses dialog-based interface to create jail configuration used to create a new jail. There are other ways to create this configuration. Using shell-based question/answer utility jconstruct or using the web interface.

Command line option:

=full
Display all possible options, including the path selection for jail storage, etc.

Dialog menu options:

Jail profile to use, this allows some defaults to be set from the profile.
Provide package list for the new jail.
Short jail name.
FQDN for the jail environment.
IP addresses (separated by commas if more than one) or 0 for vnet/bhyve environments.
FreeBSD version for the base.
Mount copy of base via nullfs in read only (baserw=no) or populate own copy (baserw=yes) with write access.
Mount /usr/ports dir from base system to jail (read only).
Start jail automatically on the system boot.
Specify uplink for jail (on which interface to create/remove IP) or disable network.
Automatically adjust the same settings of the jail (create /etc/hosts, change WRKDIRPREFIX, etc..).
Automatically adjust /etc/resolv.conf from jnameserver IP (settings from initenv/initenv-tui)
Specify architecture of jail environment.
Use this ZFS snapshot as source for jail data (eg. zmirror/jails/jail1@init).
Change jail root password.
Create additional user account in jail.
Toggle additional startup services.
Toggle pkg bootstrap.
Show simple usage instructions.

Dialog menu options with mode=full:

path to jail mountpoint
alternative base name
alternative path to data directory

Some notes about packages selected using cbsd jconstruct-tui

When pkg.conf and repository are configured properly it is possible to select packages to be installed right after jail creation using the pkglist menu item. For security reasons it is recommended to use either official FreeBSD pkg repo, or build your own packages. If the repository is unavailable the pkglist will not show any results. Multi-repo support and the ability to choose a specific repository is missing at the time. Please remember that packages chosen using cbsd jconstruct-tui are from the host and will work in the jail only if the architecture and the FreeBSD version of the jail are the same as of the host machine.

After you have configured all the options, after hitting "GO Proceed" you will be asked one final question, if you would like to create jail right away or save the configuration for later jail creation. The later can be done by running

% cbsd jcreate jconf=path_to_cfg
The configuration files are by default saved in $workir/ftmp.

Important security implication: Make it a rule to always change the root password in newly created jails or in jails obtained from a repository. If the jail is created with "applytpl=0" the files /etc/{passwd,master.passwd,group} will be the same as original "clean" files from FreeBSD installation, leaving the root password empty. If the jail is created with "applytpl=1" $workdir/share/jail-skel files will be used as skel files. Here the default password is 'cbsd'. You can change default root password when new jail is created by editing the hash in jail-skel master.passwd:

% vipw -d ${workdir}/share/jail-skel/etc

By default, CBSD displays text in color (using escape sequences ANSII). If for some reason the color is unpleasant, or you want to use output from CBSD utilities in your scripts, you can disable the color through the environment variable NOCOLOR=1. For example:

% env NOCOLOR=1 cbsd jconstruct-tui

$workdir/ftmp
Place where generated jail configurations are stored.
${workdir}/share/jail-skel/etc
Here are all the files that will be copied over after jail creation.

The cbsd jconstruct-tui utility exits 0 on success, and >0 if an error occurs.

To enable debugging via sh xtrace and trace all operations, use --debug argument after the CBSD command, for example:

% env NOCOLOR=1 cbsd jconstruct-tui --debug

cbsd-jconstruct(8) cbsd-jcreate(8) dialog(1)

Oleg Ginzburg <olevole@olevole.ru>

December 10, 2016 FreeBSD 14.3-RELEASE
Search for    or go to Top of page |  Section 8 |  Main Index

Powered by GSP Visit the GSP FreeBSD Man Page Interface.
Output converted with ManDoc.