This role just creates a jail. Nothing more. Is used by other roles to create jailed services.
This role is intent to be used with a fresh FreeBSD installation. There is a Vagrant Box (https://app.vagrantup.com/JoergFiedler) for your convenience with providers for VirtualBox and EC2 you may use.
The name for the jail. Local part of the hostname. Default: '{{ jail_net_ip }}'
.
Domain part of the hostname. Default: 'darkcity'
.
Set to yes
if you want to create backup file for file modifications done by Ansible. Default: no
.
The FreeBSD distribution to use for this jail, e.g. 12.1-RELEASE
. If not set, it will hosts release version. Default: {{ ansible_distribution_version }}-RELEASE
The interface to which the jail's ip address is added. Default: 'lo0'
.
The jail's ip address. No default value.
The DNS server that will be used as a resolver. If set to none
resolver
config from jail host apply to the jails. Default: none
.
Set this as specified in man 8 iocage
, e.g. nameserver 1.1.1.1
. The setting
will be used to create the jail's /etc/resolv.conf
.
If the value contains the ip of the jail, unbound resolver will be installed.
The syslogd server to which all syslog messages are going to be forwarded. If not set messages stay with local syslog. No default value.
This feature is only active if the variable jail_use_syslogd_server
is set.
Use own build server repository to install customized build ports. Default: no
If enable the FreeBSD repo /etc/pkg/FreeBSD.conf
will be disabled. So, please
make sure all packages you want to install are present in jail_build_server_url
.
The build server repo http url. Default: ''
The public key to use to verify signatures. Default: 'poudriere.pub'
- hosts: all
become: true
tasks:
- import_role:
name: 'JoergFiedler.freebsd-jail-host'
- include_role:
name: 'JoergFiedler.freebsd-jailed'
vars:
jail_net_ip: '10.1.0.10'
jail_name: 'jailed'
BSD
If you like it or do have ideas to improve this project, please open an issue on Github. Thanks.