English Norwegian Bokmål
Part III. System Administration
Chapter 15. Jails
A jail is characterized by four elements:
A directory subtree: the starting point from which a jail is entered. Once inside the jail, a process is not permitted to escape outside of this subtree.
A hostname: which will be used by the jail.
An IP address: which is assigned to the jail. The IP address of a jail is often an alias address for an existing network interface.
A command: the path name of an executable to run inside the jail. The path is relative to the root directory of the jail environment.
After reading this chapter, you will know:
What a jail is and what purpose it may serve in FreeBSD installations.
How to build, start, and stop a jail.
The basics of jail administration, both from inside and outside the jail.
Terms Related to Jails
To facilitate better understanding of parts of the FreeBSD system related to jails, their internals and the way they interact with the rest of FreeBSD, the following terms are used further in this chapter:
man:chroot[8] (command)
Utility, which uses man:chroot[2] FreeBSD system call to change the root directory of a process and all its descendants.
man:chroot[2] (environment)
man:jail[8] (command)
The system administration utility which allows launching of processes within a jail environment.