Hey All,
This is a really limited usecase that I am just trying to remove an old server that handles this. If it is not possible then I will just go another route in general but i have my freenas box lying around. The current Jail has as openvpn tunnel to another location. This location has the NFS share. I am half assuming after trying all these things that it is just not possible.
Whenever I try to mount the nfs share it throws:
[root@core /]# mount -vt nfs 10.100.0.230:/Str /mnt/b/
mount_nfs: nmount: /mnt/b: Operation not permitted
str/iocage/jails/core/root on /mnt/iocage/jails/core/root (zfs, local, nfsv4acls)
I know it can see the nfs mounts ie:
[root@core /]# showmount -e 10.100.0.230
Exports list on 10.100.0.230:
/Str
/test
I just about tried every option here and there thus most are enabled.
root@nas:~ # iocage get all core
CONFIG_VERSION:14.1
allow_chflags:1
allow_mlock:1
allow_mount:1
allow_mount_devfs:1
allow_mount_nullfs:1
allow_mount_procfs:1
allow_mount_tmpfs:1
allow_mount_zfs:1
allow_quotas:0
allow_raw_sockets:1
allow_set_hostname:1
allow_socket_af:0
allow_sysvipc:1
allow_tun:1
available:readonly
basejail:no
boot:on
bpf:yes
children_max:0
cloned_release:11.2-RELEASE-p10
comment:none
compression:lz4
compressratio:readonly
coredumpsize:off
count:1
cpuset:off
cputime:off
datasize:off
dedup:off
defaultrouter:192.168.1.1
defaultrouter6:none
depends:none
devfs_ruleset:0
dhcp:off
enforce_statfs:0
exec_clean:1
exec_fib:0
exec_jail_user:root
exec_poststart:/usr/bin/true
exec_poststop:/usr/bin/true
exec_prestart:/usr/bin/true
exec_prestop:/usr/bin/true
exec_start:/bin/sh /etc/rc
exec_stop:/bin/sh /etc/rc.shutdown
exec_system_jail_user:0
exec_system_user:root
exec_timeout:60
host_domainname:none
host_hostname:core
host_hostuuid:core
host_time:yes
hostid:a9017a15-0e29-11e9-a2f6-d05099c3839e
hostid_strict_check:no
interfaces:vnet0:bridge0
ip4:new
ip4_addr:vnet0|192.168.1.8/24
ip4_saddrsel:1
ip6:new
ip6_addr:none
ip6_saddrsel:1
jail_zfs:off
jail_zfs_dataset:iocage/jails/core/data
jail_zfs_mountpoint:none
last_started:2019-06-03 16:29:02
login_flags:-f root
mac_prefix:d05099
maxproc:off
memorylocked:off
memoryuse:off
mount_devfs:1
mount_fdescfs:1
mount_linprocfs:1
mount_procfs:1
mountpoint:readonly
msgqqueued:off
msgqsize:off
nmsgq:off
notes:none
nsemop:off
nshm:off
nthr:off
openfiles:off
origin:readonly
owner:root
pcpu:off
priority:99
pseudoterminals:off
quota:none
release:11.2-RELEASE-p10
reservation:none
resolver:/etc/resolv.conf
rlimits:off
securelevel:2
shmsize:off
stacksize:off
state:up
stop_timeout:30
swapuse:off
sync_state:none
sync_target:none
sync_tgt_zpool:none
sysvmsg:new
sysvsem:new
sysvshm:new
template:no
type:jail
used:readonly
vmemoryuse:off
vnet:on
vnet0_mac:d05099f7cf0b d05099f7cf0c
vnet1_mac:none
vnet2_mac:none
vnet3_mac:none
vnet_default_interface:auto
vnet_interfaces:none
wallclock:off
This is a really limited usecase that I am just trying to remove an old server that handles this. If it is not possible then I will just go another route in general but i have my freenas box lying around. The current Jail has as openvpn tunnel to another location. This location has the NFS share. I am half assuming after trying all these things that it is just not possible.
Whenever I try to mount the nfs share it throws:
[root@core /]# mount -vt nfs 10.100.0.230:/Str /mnt/b/
mount_nfs: nmount: /mnt/b: Operation not permitted
str/iocage/jails/core/root on /mnt/iocage/jails/core/root (zfs, local, nfsv4acls)
I know it can see the nfs mounts ie:
[root@core /]# showmount -e 10.100.0.230
Exports list on 10.100.0.230:
/Str
/test
I just about tried every option here and there thus most are enabled.
root@nas:~ # iocage get all core
CONFIG_VERSION:14.1
allow_chflags:1
allow_mlock:1
allow_mount:1
allow_mount_devfs:1
allow_mount_nullfs:1
allow_mount_procfs:1
allow_mount_tmpfs:1
allow_mount_zfs:1
allow_quotas:0
allow_raw_sockets:1
allow_set_hostname:1
allow_socket_af:0
allow_sysvipc:1
allow_tun:1
available:readonly
basejail:no
boot:on
bpf:yes
children_max:0
cloned_release:11.2-RELEASE-p10
comment:none
compression:lz4
compressratio:readonly
coredumpsize:off
count:1
cpuset:off
cputime:off
datasize:off
dedup:off
defaultrouter:192.168.1.1
defaultrouter6:none
depends:none
devfs_ruleset:0
dhcp:off
enforce_statfs:0
exec_clean:1
exec_fib:0
exec_jail_user:root
exec_poststart:/usr/bin/true
exec_poststop:/usr/bin/true
exec_prestart:/usr/bin/true
exec_prestop:/usr/bin/true
exec_start:/bin/sh /etc/rc
exec_stop:/bin/sh /etc/rc.shutdown
exec_system_jail_user:0
exec_system_user:root
exec_timeout:60
host_domainname:none
host_hostname:core
host_hostuuid:core
host_time:yes
hostid:a9017a15-0e29-11e9-a2f6-d05099c3839e
hostid_strict_check:no
interfaces:vnet0:bridge0
ip4:new
ip4_addr:vnet0|192.168.1.8/24
ip4_saddrsel:1
ip6:new
ip6_addr:none
ip6_saddrsel:1
jail_zfs:off
jail_zfs_dataset:iocage/jails/core/data
jail_zfs_mountpoint:none
last_started:2019-06-03 16:29:02
login_flags:-f root
mac_prefix:d05099
maxproc:off
memorylocked:off
memoryuse:off
mount_devfs:1
mount_fdescfs:1
mount_linprocfs:1
mount_procfs:1
mountpoint:readonly
msgqqueued:off
msgqsize:off
nmsgq:off
notes:none
nsemop:off
nshm:off
nthr:off
openfiles:off
origin:readonly
owner:root
pcpu:off
priority:99
pseudoterminals:off
quota:none
release:11.2-RELEASE-p10
reservation:none
resolver:/etc/resolv.conf
rlimits:off
securelevel:2
shmsize:off
stacksize:off
state:up
stop_timeout:30
swapuse:off
sync_state:none
sync_target:none
sync_tgt_zpool:none
sysvmsg:new
sysvsem:new
sysvshm:new
template:no
type:jail
used:readonly
vmemoryuse:off
vnet:on
vnet0_mac:d05099f7cf0b d05099f7cf0c
vnet1_mac:none
vnet2_mac:none
vnet3_mac:none
vnet_default_interface:auto
vnet_interfaces:none
wallclock:off
