Hacker News new | ask | show | jobs
by philkrylov 1636 days ago
> jails require you to create a chroot and network interface,

They don't: you may chroot to /, share the host's network interface, or disable networking.
2 comments
trasz 1636 days ago
It's literally a single command:

  trasz@v3:~ % doas jail / foo 127.0.0.1 /bin/sh
  # ps aux
  USER   PID %CPU %MEM   VSZ  RSS TT  STAT STARTED    TIME COMMAND
  root 37975  0,0  0,0 13500 3056  3  SJ   09:11   0:00,01 /bin/sh
  root 37976  0,0  0,0 13624 2776  3  R+J  09:11   0:00,00 ps aux
link
kazen44 1636 days ago
also, with epairs you can do some really flexible networking stuff on freebsd between jails/jails and the host system and even jails and ipsec tunnels.
link