FreeBSD Admin: Difference between revisions

Revision as of 10:29, 21 December 2016

EZJail

Update ports:

  ezjail-admin update -P

Upgrade release:

Erst das Host System upgraden [1]

     # freebsd-update upgrade -r 11.0-RELEASE
     # freebsd-update install
     <reboot the system>
     # freebsd-update install
     <rebuild third-party software>
     # freebsd-update install

Dann über ezjail-admin die Jails [2]

    ezjail-admin update -b
    ezjail-admin update -i
    ezjail-admin update -u
    ezjail-admin update -U -s 10.1-RELEASE
    mergemaster -U -D /usr/jails/www

Ports

Update outdated installed ports

  portmaster -b -a

List outdated ports

  pkg_version -vIL=

Uninstall all unused pkgs

pkg_cutleaves

Mail

sendmail from Jail

Sendmail im Jail mit Smarthost

Im Jail rennt nur ein 1 Sendmail, falls der Smarthost nicht erreichbar ist.

/etc/rc.conf

sendmail_enable="NO"
sendmail_submit_enable="NO"
sendmail_outbound_enable="NO"
sendmail_msp_queue_enable="YES"

/etc/mail/freebsd.submit.mc

dnl FEATURE(`msp')dnl
FEATURE(`msp',`[172.16.3.6]')dnl

submit.cf bauen und starten:

cd /etc/mail
make
make install
make start

Der Smarthost muss den Hostnamen des Jails kennen, z.B. in /etc/mail/local-host-names [3]

Fail2ban PF um IP Adressen zu blockieren - diese werden in Tabelle fail2ban eingetragen. Action pf-jan.conf entsprechend [4] anpassen.

FreeBSD Admin: Difference between revisions

Revision as of 10:29, 21 December 2016

Navigation menu

Search