Christer Edwards

`sysrc bastille_enable=YES` `sysrc bastille_list="jail1 jail2 jail3"` This functionality is already supported with the above configuration. Having said that I do like the dynamic nature of an enable/disable. Will think about...

Can you provide examples and/or usage?

I threw together a patch to support ip4/ip6 inherit. Will do a bit more testing before I merge.

This looks related to the regression that was discovered in the 0.9.20211225 release. It has been fixed in GitHub and available in the 0.9.20220216 release now. Please verify the new...

Normal behavior shouldn't take long but I've seen similar reports in the past due to nuance in configuration. Can you tell me how the network is configured for this jail?...

The rdr system is designed primarily for loopback networking where the container cannot be accessed directly. VNET containers can handle their own firewalls and can be accessed by the outside...

The auto-detection is not always perfect. Gateway can be defined in the `bastille.conf` using the `bastille_network_gateway=aa.bb.cc.dd` will be used to override auto-detection.

Thank you for the PR. I like this idea.

No issue changing the release manually in the fstab. Make sure the jail is stopped first.

To clarify, `uname -r` will always report host information. I don't recommend using it inside jails. `freebsd-version` is the most reliable report of the jail version status.