Running multiple services safely on a single FreeBSD system? That’s where jails come in. Lightweight, secure, and around long before Docker, jails make it easy to contain services and minimize exposure in case of security issues.

Read the full guide: https://buff.ly/jTAGzlc

#FreeBSD#Jails#OpenSource

Running multiple services safely on a single FreeBSD system? That’s where jails come in. Lightweight, secure, and around long before Docker, jails make it easy to contain services and minimize exposure in case of security issues.

Read the full guide: https://buff.ly/jTAGzlc

#FreeBSD#Jails#OpenSource

Started building my entire infrastructure monitoring solution from scratch!

- Powered by FreeBSD! freebsd
- Using Jails and seperation of duty:
- One Jail running Grafana and Prometheus
- One Jail running Netbird Wireguard to connect my infra securely
- One Jail running Nginx and Certbot

All ZFS based for backup / snapshots and rollback options.

Routed and NAT'ed via a seperate dedicated pf jail.

All working fine, I get first metrics and can start slowly improve from here.

Todo:
- Alerts via AlertManager
- Log-Ingestion via promtail
- Log analysis with Grafana Loki
- Adding remaining servers via WireGuard Mesh VPN
- Adding another Jail for Uptime-Kuma

#monitoring #freebsd #grafana #loki #linux #devops #jails #bastille #zfs

Started building my entire infrastructure monitoring solution from scratch!

- Powered by FreeBSD! freebsd
- Using Jails and seperation of duty:
- One Jail running Grafana and Prometheus
- One Jail running Netbird Wireguard to connect my infra securely
- One Jail running Nginx and Certbot

All ZFS based for backup / snapshots and rollback options.

Routed and NAT'ed via a seperate dedicated pf jail.

All working fine, I get first metrics and can start slowly improve from here.

Todo:
- Alerts via AlertManager
- Log-Ingestion via promtail
- Log analysis with Grafana Loki
- Adding remaining servers via WireGuard Mesh VPN
- Adding another Jail for Uptime-Kuma

#monitoring #freebsd #grafana #loki #linux #devops #jails #bastille #zfs

Added 𝗨𝗣𝗗𝗔𝗧𝗘 𝟮 [UPDATE 2] to 𝗡𝗲𝘄 𝗷𝗺𝗼𝗿𝗲(𝟴) 𝗙𝗿𝗲𝗲𝗕𝗦𝗗 𝗝𝗮𝗶𝗹𝘀 𝗟𝗶𝘀𝘁/𝗠𝗮𝗻𝗮𝗴𝗲 𝗧𝗼𝗼𝗹 [New jmore(8) FreeBSD Jails List/Manage Tool] article.

Now with CPU/RAM info.

https://vermaden.wordpress.com/2024/11/22/new-jless-freebsd-jails-list-manage-tool#UPDATE2

#verblog #containers #freebsd #jails #jexec #jls #jmore

Added 𝗨𝗣𝗗𝗔𝗧𝗘 𝟮 [UPDATE 2] to 𝗡𝗲𝘄 𝗷𝗺𝗼𝗿𝗲(𝟴) 𝗙𝗿𝗲𝗲𝗕𝗦𝗗 𝗝𝗮𝗶𝗹𝘀 𝗟𝗶𝘀𝘁/𝗠𝗮𝗻𝗮𝗴𝗲 𝗧𝗼𝗼𝗹 [New jmore(8) FreeBSD Jails List/Manage Tool] article.

Now with CPU/RAM info.

https://vermaden.wordpress.com/2024/11/22/new-jless-freebsd-jails-list-manage-tool#UPDATE2

#verblog #containers #freebsd #jails #jexec #jls #jmore

⁂ Article

WordPress on FreeBSD with BastilleBSD: A Secure Alternative to Linux/Docker

Tired of the Linux/Docker “monoculture” for WordPress? This article guides you step-by-step through the secure installation of WordPress on FreeBSD using BastilleBSD. Discover how jail separation, performance, and the versatility of ZFS offer a more robust and easily manageable environment, far from common vulnerabilities often linked to poorly maintained plugins. Get ready to make your site more secure and reliable.

Added 𝗨𝗣𝗗𝗔𝗧𝗘 𝟭 - 𝗧𝗵𝗼𝘂𝗴𝗵𝘁𝘀 𝗔𝗳𝘁𝗲𝗿 𝗖𝗼𝗺𝗺𝗲𝗻𝘁𝘀 to the 𝗙𝗿𝗲𝗲𝗕𝗦𝗗 𝗝𝗮𝗶𝗹𝘀 𝗦𝗲𝗰𝘂𝗿𝗶𝘁𝘆 article.

https://vermaden.wordpress.com/2025/04/11/freebsd-jails-security/

#containers#CVE #docker #freebsd #jail #jails #linux #podman #security #server #vnet #cve

Today I saw that since Bastille's last release at the end of January there have been 625(!) commits to the repo. Many bug fixes, new features, subcommands, doc updates (💜), ...
Big props to Victor for working tiredlessly on the project. https://github.com/BastilleBSD/bastille/

Also, there have been some new videos on Bastille's Youtube channel: https://www.youtube.com/@BastilleBSD demonstration upcoming features in Bastille 0.14.

#FreeBSD#Jails#Bastille#BastilleBSD #container