Tag: security
-
pf switcher: a pf interface selector made with bsddialog
External network access for Bastille jails requires configuring a table and NAT rule in pf for the bastille0 loopback interface, as explained on the BastilleBSD getting started page: https://bastillebsd.org/getting-started/ I use a bastille jail to run unbound as an ad blocker. There is a convenient template on the Bastille Gitlab page to bootstrap Unbound +…
-
WireGuard VNET jail
Creating the Jail: I created the jail using Bastille like this: bastille create -V wirevnet 14.0-RELEASE 0.0.0.0 bge1 Initially, I assigned the IP address “0.0.0.0” to the jail. Then, using bastille cmd wirevnet ifconfig, I retrieved the Ethernet address and utilized it to create a static reservation on the router. Configuring Hostname and SSH: Next, I assign…