Use iocage Plugins to Jail Common Applications
The plugin feature in iocage makes it easy to create pre-configured container jails for many common applications.
Use iocage list to see the available applications.
$ su
Password:
# iocage -v
Version 1.1 RELEASE 2019/01
# iocage list --plugins --remote
'HTTPResponse' object has no attribute 'geturl'For me, the list command didn’t work properly in version 1.1. Fortunately, it was easy to install the latest version from source.
To do so, first install the FreeBSD source tree into /usr/src.
# ls /usr/src/
# fetch -o /tmp ftp://ftp.freebsd.org/pub/`uname -s`/releases/`uname -m`/`uname -r | cut -d'-' -f1,2`/src.txz
# tar -C / -xvf /tmp/src.txz
# ls /usr/src/
.arcconfig README.md rescue
.arclint UPDATING sbin
.gitattributes bin secure
.gitignore cddl share
COPYRIGHT contrib stand
LOCKS crypto sys
MAINTAINERS etc targets
Makefile gnu tests
Makefile.inc1 include tools
Makefile.libcompat kerberos5 usr.bin
Makefile.sys.inc lib usr.sbin
ObsoleteFiles.inc libexec
README releaseNext, install the lastest master branch of iocage from source.
# cd /tmp
# pkg install python36 git-lite py36-cython py36-pip
# git clone --recursive https://github.com/iocage/iocage
# cd iocage && make installTry iocage list again.
# iocage -v
Version 1.2 RC
# iocage list -PR
Branch 12.0-RELEASE does not exist at https://github.com/freenas/iocage-ix-plugins.git!
Using "master" branch for plugin, this may not work with your RELEASE
+-------------------+-------------------+-------------------+------------------+
| NAME | DESCRIPTION | PKG | ICON |
+===================+===================+===================+==================+
| BackupPC | BackupPC is a | backuppc | https://www.true |
| | high-performance, | | os.org/iocage-ic |
| | enterprise-grade | | ons/backuppc.png |
| | system for | | |
| | backing up Linux, | | |
| | WinXX and MacOSX | | |
| | PCs and laptops | | |
| | to a server's | | |
| | disk. | | |
+-------------------+-------------------+-------------------+------------------+
[...]
+-------------------+-------------------+-------------------+------------------+
| Nextcloud | Access, share and | nextcloud | https://www.true |
| | protect your | | os.org/iocage-ic |
| | files, calendars, | | ons/nextcloud.pn |
| | contacts, | | g |
| | communication & | | |
| | more at home and | | |
| | in your | | |
| | enterprise. | | |
+-------------------+-------------------+-------------------+------------------+
[...]To create a jailed application, such as NextCloud, call iocage fetch and use the -P option to specify the PKG name from the list above.
To make the jail request its IP address using DHCP, also specify the bpf and dhcp parameters.
# iocage fetch -P nextcloud vnet="on" allow_raw_sockets="1" boot="on" bpf="yes" dhcp="on"
Plugin: Nextcloud
Official Plugin: True
Using RELEASE: 11.2-RELEASE
Using Branch: 12.0-RELEASE
Post-install Artifact: https://github.com/freenas/iocage-plugin-nextcloud.git
These pkgs will be installed:
- nextcloud-php71
- nginx
- mysql56-server
[...]
Admin Portal:
http://192.168.0.117Alternatively, to create a NextCloud jail using a static IP address, specify the defaultrouter and ip4_addr parameters.
# iocage fetch -P nextcloud vnet="on" allow_raw_sockets="1" boot="on" defaultrouter="192.168.0.1" ip4_addr="192.168.0.254/24"
Plugin: Nextcloud
Official Plugin: True
Using RELEASE: 11.2-RELEASE
Using Branch: 12.0-RELEASE
Post-install Artifact: https://github.com/freenas/iocage-plugin-nextcloud.git
These pkgs will be installed:
- nextcloud-php71
- nginx
- mysql56-server
[...]
Admin Portal:
http://192.168.0.254Finally, open the jailed address in a web browser.
