Mirrors/BastilleBSD_bastille
1
0
Fork 1
mirror of https://github.com/BastilleBSD/bastille.git synced 2025-12-11 01:19:52 +01:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #1025 from BastilleBSD/bmac2-patch-1

Browse Source 
Bmac2 patch 1
This commit is contained in:
tschettervictor
2025-05-07 11:52:20 -06:00
committed by GitHub
parent 01553ba44a fe40466a0d
commit ae07cb1d56
4 changed files with 187 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

30
COMPARE.md Normal file
View File

@@ -0,0 +1,30 @@
| Feature | BastilleBSD | Appjail | pot | ezjail | iocage |
| --- | --- | --- | --- | --- | --- |
| OCI Compliant | No | Yes | No | No | No |
| Writen In | Bourne Shell | Bourne Shell, C | Bourne Shell | Bourne Shell | Bourne Shell, Rust |
| Dependencies | None | C | None | None | Rust|
| Jail Types | vnet, bridged vnet, thin, thick, empty, clone, Linux | clone, copy, tiny thin, thick, empty, linux+debootstrap | thick | basejail | clone, basejail, template, empty, thick |
| Jail dependency | Yes | Yes | Yes | No | Yes |
| Import/Export | Yes | Yes | Yes | Yes | Yes |
| Support Boot Order Priorities| Yes | Yes | No | Yes using `rcorder` | Yes |
| Linux containers | Yes | Yes | No | No | Yes |
| Automation | Templates | Makejail, Initscripts, Images | Flavors, Images | Flavours | Plugins |
| Package Management | Yes | No | No | No | No |
| ZFS Support | Yes | Yes | Yes | No | No |
| Volume management | No | Yes | Basic | No | Basic |
| VNET Support | Yes | Yes | Yes | No | Yes |
| IPv6 Support| Yes | Yes | Yes | Yes | Yes |
| Dual Network Stack | Yes | ?? | Yes | No | No |
| Netgraph | Yes | Yes | No | No | No | Netgraph |
| Dynamic Firewall | Yes | Yes | Yes | No | No|
| Network Management | VLANS, Bridges | Virtual Networks, Bridges | Subnet, requires `sysutils/potnet` | No | No |
| Dynamic DEVFS Ruleset Management | No | Yes | No | No | No |
| Resource Control | Yes | Yes | CPU and Memory | No | Legacy Only |
| CPU Sets | No | Yes | Yes | Yes | Yes |
| Parallel startup | Yes | Yes (Healthcheckers, jails & NAT) | No | No | No |
| Log Management | No | Yes | No | No | No |
| Copy Files Between Jails | Yes | No | No | No | No |
| Top Support | Yes | No | No | No | No|
| HTop Support | Yes | No | No | No | No |
| X11 support | No | Yes | No | No | No |

34
README.md
View File

@@ -5,6 +5,40 @@ deployment and management of containerized applications on FreeBSD.
[Bastille Documentation](https://bastille.readthedocs.io/en/latest/)
Bastille Compared to Other Jail Managers
========================================
| Feature | BastilleBSD | Appjail | pot | ezjail | iocage |
| --- | --- | --- | --- | --- | --- |
| OCI Compliant | No | Yes | No | No | No |
| Writen In | Bourne Shell | Bourne Shell, C | Bourne Shell, Rust | Bourne Shell | Bourne Shell, Python |
| Dependencies | None | C | Rust | None | Python |
| Jail Types | vnet, bridged vnet, thin, thick, empty, clone, Linux | clone, copy, tiny, thin, thick, empty, linux+debootstrap | thick | basejail | clone, basejail, template, empty, thick |
| Jail dependency | Yes | Yes | Yes | No | Yes |
| Import/Export | Yes | Yes | Yes | Yes | Yes |
| Boot Order Priorities| Yes | Yes | No | Yes using `rcorder` | Yes |
| Linux containers | Yes | Yes | No | No | Yes |
| Automation | Templates | Makejail, Initscripts, Images | Flavours, Images | Flavours | Plugins |
| Cloning | Yes | No | No | No | No |
| Package Management | Yes | No | No | No | No |
| ZFS Support | Yes | Yes | Yes | No | Yes |
| Volume management | Basic | Yes | Basic | No | Basic |
| VNET Support | Yes | Yes | Yes | No | Yes |
| IPv6 Support| Yes | Yes | Yes | Yes | Yes |
| Dual Network Stack | Yes | Yes | Yes | No | No |
| Netgraph | Yes | Yes | No | No | No |
| Dynamic Firewall | Yes | Yes | Yes | No | No |
| Dynamic DEVFS Ruleset Management | No | Yes | No | No | No |
| Resource Control | Yes | Yes | CPU and Memory | No | Legacy Only |
| CPU Sets | Yes | Yes | Yes | Yes | Yes |
| Parallel Startup | Yes | Yes (Healthcheckers, jails & NAT) | No | No | No |
| Multi-Target Commands | Yes | No | No | No | No |
| Log Management | Basic (console logs) | Yes | No | No | No |
| Copy Files Between Jails | Yes | No | No | No | No |
| Automated Jail Migration Between Servers | Yes | No | No | No | No |
| Top/Htop Support | Yes | No | No | No | No|
Installation
============
Bastille is available for installation from the official FreeBSD ports tree.

122
docs/chapters/comparing.rst Normal file
View File

@@ -0,0 +1,122 @@
Comparing
=========
Most jail managers have a table showing what they and their competitors are
capable of. While this is a good idea, the maintainers and developers of each
jail manger do not regulary visit each others projects to update these tables.
Below is a table of what we feel is most important for a jail manager, as well
as a list of popular managers and their status on each option.
+--------------+-------------+--------------+-----------+-----------+-----------+
| Feature | BastilleBSD | Appjail | pot | ezjail | iocage |
+==============+=============+==============+===========+===========+===========+
| OCI | No | Yes | No | No | No |
| Compliant | | | | | |
+--------------+-------------+--------------+-----------+-----------+-----------+
| Writen In | Bourne | Bourne | Bourne | Bourne | Bourne |
| | Shell | Shell, C | Shell, | Shell | Shell, |
| | | | Rust | | Python |
+--------------+-------------+--------------+-----------+-----------+-----------+
| Dep | None | C | Rust | None | Python |
| endencies | | | | | |
+--------------+-------------+--------------+-----------+-----------+-----------+
| Jail | vnet, | clone, | thick | basejail | clone, |
| Types | bridged | copy, | | | basejail, |
| | vnet, | tiny, | | | template, |
| | thin, | thin, | | | empty, |
| | thick, | thick, | | | thick |
| | empty, | empty, | | | |
| | clone, | linux+de | | | |
| | Linux | bootstrap | | | |
+--------------+-------------+--------------+-----------+-----------+-----------+
| Jail | Yes | Yes | Yes | No | Yes |
| Dependency | | | | | |
+--------------+-------------+--------------+-----------+-----------+-----------+
| Impo | Yes | Yes | Yes | Yes | Yes |
| rt/Export | | | | | |
+--------------+-------------+--------------+-----------+-----------+-----------+
| Boot | Yes | Yes | No | Yes using | Yes |
| Order | | | | 'rcorder' | |
| Priorities | | | | | |
+--------------+-------------+--------------+-----------+-----------+-----------+
| Linux | Yes | Yes | No | No | Yes |
| c | | | | | |
| ontainers | | | | | |
+--------------+-------------+--------------+-----------+-----------+-----------+
| Automation | Templates | Makejail, | Flavours, | Flavours | Plugins |
| | | Initscripts, | Images | | |
| | | Images | | | |
+--------------+-------------+--------------+-----------+-----------+-----------+
| Cloning | Yes | No | No | No | No |
+--------------+-------------+--------------+-----------+-----------+-----------+
| Package | Yes | No | No | No | No |
| Management | | | | | |
+--------------+-------------+--------------+-----------+-----------+-----------+
| ZFS | Yes | Yes | Yes | No | Yes |
| Support | | | | | |
+--------------+-------------+--------------+-----------+-----------+-----------+
| Volume | Basic | Yes | Basic | No | Basic |
| Management | | | | | |
+--------------+-------------+--------------+-----------+-----------+-----------+
| VNET | Yes | Yes | Yes | No | Yes |
| Support | | | | | |
+--------------+-------------+--------------+-----------+-----------+-----------+
| IPv6 | Yes | Yes | Yes | Yes | Yes |
| Support | | | | | |
+--------------+-------------+--------------+-----------+-----------+-----------+
| Dual | Yes | Yes | Yes | No | No |
| Network | | | | | |
| Stack | | | | | |
+--------------+-------------+--------------+-----------+-----------+-----------+
| Netgraph | Yes | Yes | No | No | No |
+--------------+-------------+--------------+-----------+-----------+-----------+
| Dynamic | Yes | Yes | Yes | No | No |
| Firewall | | | | | |
+--------------+-------------+--------------+-----------+-----------+-----------+
| Dynamic | No | Yes | No | No | No |
| DEVFS | | | | | |
| Ruleset | | | | | |
| Management | | | | | |
+--------------+-------------+--------------+-----------+-----------+-----------+
| Resource | Yes | Yes | CPU and | No | Legacy |
| Control | | | Memory | | Only |
+--------------+-------------+--------------+-----------+-----------+-----------+
| CPU Sets | Yes | Yes | Yes | Yes | Yes |
+--------------+-------------+--------------+-----------+-----------+-----------+
| Parallel | Yes | Yes | No | No | No |
| Startup | | (Health | | | |
| | | checkers, | | | |
| | | jails & | | | |
| | | NAT) | | | |
+--------------+-------------+--------------+-----------+-----------+-----------+
| Multi-target | Yes | No | No | No | No |
| Commands | | | | | |
+--------------+-------------+--------------+-----------+-----------+-----------+
| Log | Basic | Yes | No | No | No |
| Management | (console | | | | |
| | logs) | | | | |
+--------------+-------------+--------------+-----------+-----------+-----------+
| Copy | Yes | No | No | No | No |
| Files | | | | | |
| Between | | | | | |
| Jails | | | | | |
+--------------+-------------+--------------+-----------+-----------+-----------+
| Automated | Yes | No | No | No | No |
| Jail | | | | | |
| Migration | | | | | |
| Between | | | | | |
| Servers | | | | | |
+--------------+-------------+--------------+-----------+-----------+-----------+
| Top/Htop | Yes | No | No | No | No |
| Support | | | | | |
+--------------+-------------+--------------+-----------+-----------+-----------+
We do our best to stay true and honest as to what other jail managers do and don't do.
If you see an error, you can open a PR on the BastillBSD github repo.
We also realize that each jail manger does certain things better than other, and perhaps
certain things worse. Some do this, others do that. They are all different, and each user
should choose the one they want to use based on their needs.
Thanks for using BastilleBSD!

1
docs/index.rst
View File

@@ -18,6 +18,7 @@ https://docs.bastillebsd.org.
chapters/jail-startup-configuration
chapters/networking
chapters/usage
chapters/comparing
chapters/upgrading
chapters/centralized-assets
chapters/subcommands/index