FreeBSD Admin: Difference between revisions
Jump to navigation
Jump to search
No edit summary |
No edit summary |
||
| Line 15: | Line 15: | ||
ezjail-admin update -u | ezjail-admin update -u | ||
ezjail-admin update -U -s 10.1-RELEASE | ezjail-admin update -U -s 10.1-RELEASE | ||
mergemaster - | mergemaster -iFUP -D /usr/jails/www | ||
Original Dateien werden in /var/tmp/mergemaster/preserved... gespeichert | |||
'''Ports''' | '''Ports''' | ||
* Update outdated installed ports | * Update outdated installed ports | ||
Revision as of 15:47, 21 December 2016
EZJail
- Update ports:
ezjail-admin update -P
- Upgrade release:
Erst das Host System upgraden [1]
freebsd-update upgrade -r 11.0-RELEASE
freebsd-update install
<reboot the system>
freebsd-update install
<rebuild third-party software> - if necessary
freebsd-update install
Dann über ezjail-admin die Jails [2]
ezjail-admin update -b
ezjail-admin update -i
ezjail-admin update -u
ezjail-admin update -U -s 10.1-RELEASE
mergemaster -iFUP -D /usr/jails/www
Original Dateien werden in /var/tmp/mergemaster/preserved... gespeichert
Ports
- Update outdated installed ports
portmaster -b -a
- List outdated ports
pkg_version -vIL=
- Uninstall all unused pkgs
pkg_cutleaves
Mail
- sendmail from Jail
Sendmail im Jail mit Smarthost
Im Jail rennt nur ein 1 Sendmail, falls der Smarthost nicht erreichbar ist.
/etc/rc.conf
sendmail_enable="NO" sendmail_submit_enable="NO" sendmail_outbound_enable="NO" sendmail_msp_queue_enable="YES"
/etc/mail/freebsd.submit.mc
dnl FEATURE(`msp')dnl FEATURE(`msp',`[172.16.3.6]')dnl
submit.cf bauen und starten:
cd /etc/mail make make install make start
Der Smarthost muss den Hostnamen des Jails kennen, z.B. in /etc/mail/local-host-names [3]
Fail2ban PF um IP Adressen zu blockieren - diese werden in Tabelle fail2ban eingetragen. Action pf-jan.conf entsprechend [4] anpassen.