Mirrors/hackacad
2
0
Fork 0
mirror of https://github.com/hackacad/bastille.git synced 2025-12-24 03:01:01 +01:00
Code Issues Packages Projects Releases Wiki Activity
1,874 Commits 17 Branches 20 Tags
ffcc2371dac1fc543f22753105bc6e0314b284e5
Commit Graph

50 Commits

Author SHA1 Message Date
tschettervictor
90ceb69eb0 conf: Add vlan template 2025-03-03 12:34:32 -07:00
Paul Wilde
12e0782bb7 Put sleep delay before starting jail instead of after 2025-02-13 20:01:13 +00:00
Paul Wilde
4c2d6774a2 add initial startup delay option 2025-02-13 14:00:56 +00:00
Michael Osipov
d0f890890f "bastille boostrap" gives spurious and wrong warning about "bastille_zfs_enable" (#688) 
Simply set to "NO" to satisfy setter function.

This fixes #688
 2024-11-29 16:17:54 +01:00
msoudny
6ef1a7c208 Update bastille.conf.sample 
removed $bastille_zfs_zpool from bastille zfs_prefix as it's called as $bastille_zfs_zpool/$bastille_zfs_prefix in bootstrap.sh, clone.sh, create.sh, destroy.sh, export.sh, import.sh, rename.sh, zfs.sh and causes duplicate zpool name which leads to errors.
 2024-11-05 09:50:24 +01:00
yaazkal
1a27a7e0d4 [FIX] correctly use bastille_zfs_prefix to also work on pools different than zroot see PR #685 2024-07-14 18:32:32 -05:00
Juan David Hurtado G
9f2cf6651b Merge pull request #686 from deadbeef2000/master 
[FIX] Fixed rcorder startup
 2024-07-13 21:05:59 -05:00
yaazkal
6568a28c15 [FIX] bastille rc script to require jail closes #698 2024-06-05 22:33:38 -05:00
Christopher Kepes
1d14badc4a Fixed rcorder startup (added -a to basename) 2024-02-29 11:40:55 +01:00
Denis Shaposhnikov
a38403b028 rcorder(8)-ed startup script 
With

```sh
bastille_enable="YES"
bastille_rcorder="YES"
```

in `/etc/rc.conf`, the script will the script will start all jails, except jails
with "KEYWORD: nostart" in jail.conf.

Example of `jail.conf` with `KEYWORD: nostart`:

```
jailname {
...
}
```

`PROVIDE:` is optional. Actually all `rcorder(8)` labels are optional, but we
can use it to build jail dependencies. For instance, if we have jail `db` and
jails `alfa` and `zeta`, we can configure it so both jails require jail `db`:

`alfa/jail.conf`:
```
alfa {
...
}
```

`zeta/jail.conf`:
```
zeta {
...
}
```

`db/jail.conf`:
```
db {
...
}
```

With this configuration jail `db` will start first and stop last.
 2023-11-11 19:35:56 +01:00
JRGTH
9fc8804f97 Update bastille.conf.sample 
Update config file for bastille export options.
 2023-09-07 09:05:47 -04:00
skenizen
373ccd45d9 changed the occurence of path /etc/pf.conf in the rdr.sh script for reading it as a variable from the bastille configuration. 2023-07-12 10:57:46 +02:00
M.Shirk
be50bd2359 Update to default conf 2023-04-05 14:08:37 -04:00
Chris Wells
dd7f195c1e Make pf table name and external interface configurable. 
Closes #508
 2022-11-26 23:24:33 -05:00
Christer Edwards
6a7ab04d9b fixes #389 regarding shutdown order 2022-11-01 17:23:00 -06:00
JRGTH
03b9817f5a Initial support for clone jails 2022-01-15 11:32:28 -04:00
yaazkal
35d3038bea [REF] Use host's time zone for jails by default 2021-12-12 12:10:39 -05:00
yaazkal
77afbd189f Sets require NETWORKING in the rc script 
In general and knowing what role will play bastille in the system, has more sense to require networking than login.

This can also helps speeding up boot time if for instance some jails in bastille provide some kind of networking role like acting as a DNS server.
 2021-08-07 18:23:10 -05:00
Florian Gattermeier
2581218f82 Added logic for setting ipv6_defaultrouter for vnet template 2021-07-26 11:13:04 +02:00
JRGTH
961731b063 New features and improvements revised and re-added 2021-07-07 05:05:38 -04:00
Lucas Holt
1710a09f6a Add preliminary support for MidnightBSD. 2021-02-26 16:55:56 -05:00
Jose
d2fcc011be Feature option for safe ZFS jail exports, config update 2021-01-08 20:30:03 -04:00
Chris Wells
c2839f859e Use templates for configuring new jails. 
Allow user to override default templates.

Closes #205.
 2020-11-29 14:19:41 -05:00
Christer Edwards
b9efa0ad04 update bastille log path 2020-07-10 08:18:21 -06:00
Christer Edwards
547aa27816 Merge pull request #213 from X86BSD/patch-1 
Clarify description of bastille_bootstrap_archives
 2020-06-19 08:43:21 -06:00
X86BSD
b6b76fb7ae Correct a typo 
Compatibility was spelled wrong.
 2020-05-03 17:21:08 -05:00
X86BSD
3035e86d55 Clarify description of bastille_bootstrap_archives 
Make it clear its a white space separated list not a ',' separated list.
 2020-05-03 16:59:33 -05:00
Jose
702a0b8318 Update config, missing quotes added 2020-04-25 08:43:59 -04:00
Jose
9617a2ab9a Update sendmail rcvars, code consistency maintenance. 2020-04-25 08:26:12 -04:00
Marius van Witzenburg
597175bafb Correct capital E in zonepath to UTC 2020-04-14 11:38:47 +02:00
Christer Edwards
106c566c88 network cleanup; default route addition for vnet 2020-04-12 17:04:37 -06:00
hackacad
3171015ea3 move config file to .sample to avoid overwriting it when updating/upgrading bastille 2020-02-04 09:32:45 +01:00
Jose
b3a30a8951 Delete cache files on destroy if force option, remove alternate urls 2020-02-02 19:55:18 -04:00
Jose
874e3696e3 Do not hardcode alternate url's in bootstrap.sh 2020-02-02 12:00:09 -04:00
Jose
7620d61e49 Add HardenedBSD CURRENT and LATEST download options, and code improvements 2020-02-02 02:42:22 -04:00
Jose
38ae0ed4a6 Update list command and config 2020-01-28 18:57:51 -04:00
Jose
095075b142 Initial support for container export and import 2020-01-26 19:45:26 -04:00
Jose
39b3c25bb5 Add support for thinjail to thickjail conversion, minor code fixes 2020-01-16 15:03:05 -04:00
Christer Edwards
c4172250c0 updating output to RC script 2019-11-22 21:59:39 -07:00
Christer Edwards
341469a1db added previously undocumented networking config options 2019-10-25 19:33:16 -06:00
olgeni
fd92827735 Alignment fix in 'bastille.conf'. 2019-10-15 20:23:05 +02:00
Christer Edwards
e74bbd089c update bastille.conf for updated options 2019-06-22 09:55:28 -06:00
Christer Edwards
c9ebc886fd May 2019 update: HardenedBSD, tzdata, NS 
- closes #32: support HardenedBSD
 - adds support for defined nameservers in new jails (up to three)
 - adds support for defined nameserver options (eg; options edns0 rotate)
 - adds support for defined tzdata in new jails (eg; America/Denver, etc/UTC)
 - adds support for dynamic hw.machine/hw.machine_arch downloads
 - new jails now output default rc.conf settings (sysrc) at creation
 - no longer use freebsd_dist_fetch.sh; replaced with simpler fetch
 2019-05-22 21:50:29 -06:00
Christer Edwards
e2b4f84cfe update copyright; fixes #28 2019-02-04 21:08:00 -07:00
Christer Edwards
a495350d26 0.3.20181130 damned typos 2018-11-30 09:12:43 -07:00
Christer Edwards
eb4aab01f9 0.3.20181128 go go gadget git clone templates 2018-11-28 21:02:42 -07:00
Christer Edwards
c98229066d 0.3.20181124 patch 2018-11-24 09:55:16 -07:00
Christer Edwards
a85397484a 0.3.20181112 additional bugfix 2018-11-13 10:56:47 -07:00
Christer Edwards
5d56b9c223 0.3.20181112 template config bugfix 2018-11-13 10:53:43 -07:00
Christer Edwards
7700b9beff 0.3.20181112 template support 2018-11-13 10:38:33 -07:00