No video
TrueNAS Scale: Setting up Sandboxes with Jailmaker
Рет қаралды 12,579
Күн бұрынHow to setup Sandboxes with Jailmaker for Docker, Dockge, Jellyfin and any other docker compose stacks on TrueNAS Scale Dragonfish (24.04)
‼️ IMPORTANT: Jailmaker 2.0.0 has now been released. When I use `./jlmkr.py install` in the video, you should instead setup an alias as per github.com/Jip-Hop/jailmaker#... ‼️
Sandboxes allow installing software alongside the TrueNAS Scale operating system, such as Docker, Dockge and Jellyfin. Sandboxes have negotiated native speed access to the CPU, Memory and Filesystem, which is far more efficient that either a Virtual Machine, or Kubernetes/K3S based application clusters.
Please like 👍 and subscribe 🛎️ if you'd like to see more videos like this
#truenas #jailmaker #tutorial #docker #dockercompose #dockge #jellyfin #dragonfish #truecharts
Chapters:
0:00 Intro
0:57 Overview
2:14 Creating datasets
2:58 Installing Jailmaker
4:36 Creating a Docker jail
10:45 Installing Dockge
12:48 Installing Jellyfin
TrueNAS Sandbox Docs:
www.truenas.com/docs/scale/sc...
Jailmaker Github:
github.com/Jip-Hop/jailmaker
Dockge Homepage:
dockge.kuma.pet
Jellyfin Docker Installation:
jellyfin.org/docs/general/ins...
Jailmaker Bridge Static IP Config:
github.com/Jip-Hop/jailmaker/...
Jailmaker MAC-VLAN Static IP Config:
github.com/Jip-Hop/jailmaker/...
TrueNAS Dragonfish Relese Notes: www.truenas.com/docs/scale/24...
My Guide to Setting up a Static IP and Network Bridge on TrueNAS:
• TrueNAS Scale: Setting...
Jailmaker thread on TrueNAS forums:
forums.truenas.com/t/linux-ja...
This Video's thread on TrueNAS forums:
forums.truenas.com/t/video-se...
@CaptStux 29 күн бұрын
‼IMPORTANT JAILMAKER 2.0 UPDATE ‼ Since this video was created, Jailmaker 2.0.0 has been released. The major difference is the `install` command has been removed. In the video, where I use `./jlmkr.py install`, you should instead setup a zsh alias, as per the instructions at: github.com/Jip-Hop/jailmaker#alias Once the alias is setup, the rest of the video's instructions should be correct.
@JeremyTaylorNZ 20 күн бұрын
do you mean at 3:23 in the video? could you maybe just say in the comment here what to type instead, because you pointed to a page with a whole lot on it that just raises more questions - the truenas shell, is that bash or zsh? I don't know, but apparently there are different commands I need to type depending on which is what. But you'd know, so maybe instead of leaving it for me to figure out, seeing as you know I'm following your instructions using truenas, you could just... say? Next: what does it mean when it says to source to use the alias immediately? Does that mean in this case where we are following your instructions that I need to add some further command or take some additional action? source isn't a command I recognise or am familiar with, what does it do? Do I carry on down the page at that point or do I return to the video - if it was just a matter of replacing the ./jlmkr.py install command with echo "alias jlmkr=\"sudo -E '/mnt/mypool/jailmaker/jlmkr.py'\"" >> ~/.bashrc then why wouldn't you just say that? As an aside, whoever thought that it would be better to get rid of the install action and replace ./jlmkr.py install with all that nonsense (which may not even be enough) is a genius, it has to be said.
@CaptStux 19 күн бұрын
@@JeremyTaylorNZ It depends. When using defaults, you should be using zsh. You can check by typing `ps` If you are using zsh, then I would suggest typing `nano ~/.zshrc` Then in the nano window add the following line to the bottom of the file, and save ` alias jlmkr="sudo -E '/mnt/mypool/jailmaker/jlmkr.py'" ` Where 'mypool' is the name of your pool Then close/reopen the shell. `source` is a shell command that is used to load a shellscript into the current shell. The .zshrc file is technically a shellscript. Thus obviating the need to re-open the shell to load the alias. I do source the file in my demo. Yes. It was much better when jailmaker did this for you as part of install. Yes. I plan to make a video explaining this. Yes. I tried to be succinct, following the alias instructions will work My instructions above should be simpler, and is what I will demonstrate in an upcoming video.
@mrlost117 13 күн бұрын
@@CaptStux I went with TNScale over unraid because unraid just doesnt use zfs correct. The downside is Im just starting with homelabs and Linux, and Unraid would have been far easier... this point is made worse by the recent truecharts news. I guess I'm telling you all this to say, please please please, keep making videos. Im still not totally sure on what to do with this install change but hopefully I will get it today on my own.
@MoonPresence-fg8dn Ай бұрын
whoever this dude is on the bottom right corner is the greatest man who ever lived
@edwardhammock24 11 күн бұрын
I have been watching this and following along for so many nights, I have it working. I cannot believe how nonchalantly you end it with "So then, hopefully that helps"!! Brilliant, thanks.
@jaymoores8258 12 күн бұрын
Wow... Seriously wish i had this video before i jumped into the truecharts bottomless pit of death.... With absolutely no experience TrueNAS and Truecharts was F'N hard. Million thanks to you and Bluey...
@robbie552 2 ай бұрын
LOVE docker in jail! For the exact reasons you described , Bind Mount! Low overhead! Simplicity!
@newstandardaccount 28 күн бұрын
This is one of the best technical instructional videos I've ever seen. Very direct, no fluff - you did a great job of editing out the quiet parts too. Efficient transfer of information. Thanks too for your help on the forums!
@lupusthelupus Ай бұрын
This is such a huge improvement to a TrueNAS Scale deployment. Thank you so much!!
@buggabooga Ай бұрын
Thank you so so so much for this video! I just set up a TrueNAS installation for the first time and everything in it is new to me, same with Docker. As of 10 minutes ago, because of your video and endless skimming of forums, I just finished writing a docker-compose script for Dockge which starts a wireguard container, a qbittorrent container, and then using network_mode, pipes the qbittorrent traffic through wireguard. Through your video, I also already have Jellyfin set up. I was having such a headache trying to figure out this stuff in just the TrueNAS apps and now its done!
@kaybuck8192 Ай бұрын
god tier guide, thank you. you've converted me to Dockge too, although it is challenging my shell script heavy ways, haha.
@ericerickson7417 Ай бұрын
This might well be THE BEST tech tutorial I have ever used. Well done, and thank you so much!
@timekeeper3856 2 ай бұрын
This is so amazing, helped reduce the load on my machine and improve performance:)
@MananKakkar 2 ай бұрын
Thank you. TrueNAS needs more such tuts for n00bs like me
@NickyNiclas 2 ай бұрын
Awesome! I would love to see how you backup these datasets, how you restore them and potential things to watch out for. I like this format. Subscribed
@CaptStux 2 ай бұрын
I'm working on a video for that :)
@stevekirsch8284 Ай бұрын
My favorite part is 7:49 into it when he sets up the bridge by snapping his fingers! Excellent tutorial. But there isn't an "install" argument to jlmkr so something must have changed. But the readme in the repo is correct.
@CaptStux Ай бұрын
`install` command was removed in jailmaker 2.0, I mention this in the description of the video and provided a link to the alias section in the manual, which you should follow instead 👍
@gswhite 19 күн бұрын
Fantastic Video, thanks so much. I would imagine maybe this is the direction Truecharts are taking? This opens up massive possibilities for me with some added security, so thanks for a great video.
@jacobschlater8327 Ай бұрын
Well my truecharts just got nuked. Time to contemplate life, then move onto to installing and using jailmaker over k3s. Thanks for organizing and driving this forward Stux!
@thegorn 26 күн бұрын
Aussie pride! Thank you legend - this is so friggin' awesome! I use a TrueNAS SCALE NAS for work onsite backups. I use the commercial Nakivo Backup and Replication software, which I find pretty good, but have to run it on a Linux VM inside of TrueNAS SCALE, as there's no truecharts app option for that. I intend to move Nakivo B&R to a Debian sandbox, and that should give better performance when compared to the separate VM. Can't wait to try this out!
@SiegfriedGlina 3 ай бұрын
Hmmmm. As it turns out I wanna set-up a new install, and probably test going to Scale from Core. Could be a good time. I like how you seem to explain the whole process. I'll be sure to circle back then. Look forward to more content.
@manofwar9307 2 ай бұрын
Absolutely fantastic tutorial, very clear and you touch on potential issues that may arise. Thanks for a great video 👍
@NullGlina 3 ай бұрын
Nice timely concise explanation! Thanks. I'll give it a go soon.
@123jetro 2 ай бұрын
Just setting the pool on apps made my consumption jump from 30 to 40watt. Curious to see how sandbox jails go. Old jails on core where great, but limited. Now we have best of both worlds, performance en app diversity!
@ViniciusAmancio-zz6lf Ай бұрын
Great video man, it helps a lot. I am very happy that truenas is coming with native docker in the Eletrical Eel release, until then i am going to play a little with the jailmaker! :D
@jenesuispasbavard Ай бұрын
This bind option is fantastic. I'm currently running portainer/docker in a Debian VM and any mounting of host folders in docker containers in the VM has to happen via an NFS share.
@AinzOoalG0wn 3 ай бұрын
Hei Stux :D It's moogle from the forum. nice video i'm watching. much appreciated. I first heard about jailmaker from you on the truenas forum. I don't think there was a video about this till yours. so this will help others. Really.... i came from QTS container station for deploying dockers. Jailmaker is WAY better 😍
@CaptStux 3 ай бұрын
Really glad to hear it, I think Sandboxes and Jailmaker is a game change for TrueNAS.
@AinzOoalG0wn 3 ай бұрын
@@CaptStux yeah just looking at power consumption and flexibility to upgrade/downgrade, limit certain functions already makes it better than the alternatives
@thegorn 26 күн бұрын
@@CaptStux It absolutely IS a gamechanger for TrueNAS! I run my TrueNAS SCALE on ESXi with RAID controller passthrough, and I have a separate Ubuntu VM for Docker, with SMB And NFS mounts into SCALE. A bit of a PITA. Will be much better with bind mounts. I have a good friend who has a low-end NAS box running TrueNAS CORE natively and he relies heavily on jails. He didn't want to go to SCALE because of the resource requirements of running a VM, or multiple VMs. With systemd-nspawn sandbox, he should now finally be able to move from CORE to SCALE on his old HP MicroServer (which I think is IX system's long-term plan - to eventually sunset CORE... probably a long way off but who knows)
@timgreen5235 2 ай бұрын
Many thanks, worked for me.
@Locationary 2 ай бұрын
This is awesome, really appreciate the guide.
@CaptStux Ай бұрын
Glad it helped!
@sanrajsharma2 21 күн бұрын
Amazing work Thank you very much!!!!!!!!!!👍👍👍 you are a great help
@CaptStux 16 күн бұрын
Glad you like it!
@RahumanAbdul 2 ай бұрын
Thank you.
@blade316_ 3 күн бұрын
Fellow Aussie! ... great video mate. Just a thought for another video ... maybe show how to set static IPs for containers you deploy through dockge? .... e.g. lets says the local network is 192.168.2.x / 24 ... the truenas host is .200, your docker jail is .201 and someone wants to install plex/jellyfin but give it a static ip on the local network of 192.168.2.50 ... how would they go about that on both macvlan and bridge setups. I think that would be a good helpful video
@dexterdelaski5279 29 күн бұрын
Wonderful tutorial! It would be awesome if you could make a video going in depth on how to install different services in docker. I got home bridge running on this setup, but I am struggling with implementing Tailscale and nginx, there really isnt much info out there on this setup yet.
@moeinio 11 күн бұрын
thank you so much for this guide. Would you make a video on how to do this using the built in custom apps for treunas scale?
@NickF1227 2 ай бұрын
subbed. Well done sir 😶🌫
@Locationary 2 ай бұрын
Just a tip for next time you make a video. Scroll down a bit so what you are writing isn't at the bottom of the page as the youtube play bar always gets in the way and I can't actually see what you are typing. Because when you pause the settings bar just stays there and you can't see what you've typed.
@AinzOoalG0wn 3 ай бұрын
my layout is like docker > data, stacks, old-archive. data is where the docker container persistent data go to, into each of their own folder e..g jellyfin, immich and so on. For stacks this is used by dockge to place docker compose.yaml and env file. The third folder was simply docker containers from my old QNAP QTS which i am still going through what i want to recover and what not to (it's inert, may delete it once i am done). ^^;
@africajhonstonelaphant 3 ай бұрын
whooooooooooo!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
@hackula8210 2 ай бұрын
Anyway you can demonstrate the gpu passthrough to the jail, nvidia if possible.
@thegorn 26 күн бұрын
at 2:33 when you go to make the tank/docker/data dataset, when I tried that (after following the guide exactly), I received the GUI message "[EINVAL] pool_dataset_create.aclmode: Must be set to DISCARD when acltype is POSIX or OFF". I went into the options of my tank/docker dataset and saw that ACL Type was set to POSIX, and ACL Mode was greyed-out and set to "Discard". That was what the system set - I didn't adjust any that. I only used the default dataset preset of "Generic". So I changed ACL Type to "Inherit" and got a big-ass warning and saved that. Going back into the advanced settings I see that it has saved the ACL Type as "Inherit", and also ACL mode is now greyed-out and "Inherit". I am now able to create the "docker" and "stacks" datasets as per your guide. This is in TrueNAS SCALE Dragonfish 24.04.1.1
@CaptStux 26 күн бұрын
I've seen this before when using a pool which was original created on an earlier version of TrueNAS... say Core or FreeNAS. At the end of the day the issue is that properties get inherrited from the upper layer datasets, and they may not be the same as what was demonstrated in my video. My video was created with a clean install of TrueNAS with defaults for all pools/datasets, which means for most new users it should work well. FWIW, my docker dataset has ACL Type of "POSIX" (from using Generic preset) and ACL Mode of "Discard", which is inherited from the pool dataset. If your pool does not have those as the default, then the "generic" preset will fail with the must be DISCARD message, which you could consider a TrueNAS bug. I'm glad you found a solution
@Reese268 19 күн бұрын
Thanks for sharing this solution. I hit the same issue and this worked for me as well.
@tankuisiong5030 Ай бұрын
Hi Stux, thanks for your video. I'm glad that i watched and learned from your tutorial for my first setup/attempt in learning & doing jail-docker stuffs..felt good to see the things i typed in the shell turned out all good instead of error here and there..all thanks to your video! I have a question though, in term of "best" practice for users perspective, should we be using 1 jail for 1 container/app? or 1 jail with multiple container/apps? Process of setting up the networking for multiple jails is it the same? Not even sure I'm asking the question with the correct term...Hope you give your advise on this..
@CaptStux Ай бұрын
For simplicities sake, I think it’s better to use the single jail where practical. It’s also more in keeping with docker ethos. BUT if you want some services on the truenas’s host IP, then you may want another docker jail in host networking mode (which I do not cover) And also some sufficiently complex compose installations could benefit from being in their own sandbox (for example Mail Cow) But generally, I recommend just using a single “docker” jail
@realfarfoxache 16 күн бұрын
Also FYI, I tried to do ubuntu noble but it said no image. I settled for the default debian 12 bookworm in the end. thank you for this.
@realfarfoxache 15 күн бұрын
@CaptStux here is a curly one for ya, when I restart my docker jail, sometimes when it comes back the mvlan interface is down, refuses to assign an IP even if i manually set it in the file like you demonstrate. I have to stop and start the jail a few times until it finally configures the mvlan-enp2s01 device
@mrlost117 13 күн бұрын
If anybody is super new like me, the ip you set for the docker jail cant be the same as your machine
@MarcusJanson 16 күн бұрын
Great video. Does this play nice with the built-in apps framework?
@CaptStux 16 күн бұрын
Yes it does
@daredevilcm91 12 күн бұрын
So I am new to all of this and still learning. what is the advantage of doing this vs installing the app through the TrueNAS catalog?
@CozyTek Ай бұрын
Thank you for taking the time to provide this tutorial. I have very recently switched from Ubuntu Server with docker running all apps/services including dockge to TrueNas and wish I had this info when I switched. The way you word it is that this replaces the current app system? So will this mess with currently installed apps or render them useless in any way or can this work side by side?
@CaptStux Ай бұрын
When setup with macvlan or bridge networking, the sandbox is effectively a separate “machine” to the host. Ie it’s side by side.
@ghostedragon964 13 күн бұрын
Is there any pros if I'm comfortable with the iX apps setup process and not using truecharts? Since the upgrade will auto migrate over from apps to docker
@edwardhammock24 2 күн бұрын
Hi, when I install nginx (or apache) from a compose file it seems to install fine. When I go into the folders either in my tank or in the docker shell, there are no files there. The folder structure is created but entirely empty. Any ideas? Thanks.
@Patrick33456 Ай бұрын
Hey Stux, another question. Would this also allow gpu transcoding for plex/jellyfin? Seems like your example shows cpu transcodes (unless im misunderstanding) which is great. Just hoping a cheap gpu can help alleviate my cpu during multiple streams if i move plex from truenas app to a jail. Thanks!
@CaptStux Ай бұрын
Yes. AMD, Nvidia and Intel all work, possibly depending on TrueNAS drivers etc. Refer Jailmaker GitHub website for more info.
@jonabatero.1 Ай бұрын
A question: after having everything installed as indicated in the video, how do I launch or open Dockge in the Truenas scale graphical interface. Can it be launched like I launch a truenas app or will I always have to resort to the command shell?
@CaptStux Ай бұрын
Dockge should launch when your TrueNAS system starts up. But if you are referring to the dashboard to dockge, you navigate to that in a browser. Port 5001.
@Patrick33456 2 ай бұрын
Been fiddling with setting up servarr apps on TrueNAS Scale and just hate creating apps with kubernetes and not understanding whats going on under the hood (skill issue on my behalf...). All I wanted was something like this. Spin up and monitor docker containers and thats it. Easy to understand. Would there be an issue mounting transcodes/docker image data on a separate pool? I have my app data and transcodes on an nvme drive but my media stored on HDD. In terms of backup, I've been using Backblaze setup with the built in TrueNAS Scale system for backing up data. I can't see any reason why I couldn't keep doing that with this setup correct? You're still mounting to datasets so backing up would be fine? I've never had to recover so I'm a bit worried about how that would look but willing to document and test myself. Seems like you already responded to someone about recovery and plan to do a video (awesome!). This video was extremely helpful, thank you so much for taking the time to make it!
@CaptStux 2 ай бұрын
>Would there be an issue mounting transcodes/docker image data on a separate pool? Should be no issue. >In terms of backup, I've been using Backblaze setup with the built in TrueNAS Scale system for backing up data. I can't see any reason why I couldn't keep doing that with this setup correct? Correct. >You're still mounting to datasets so backing up would be fine? I've never had to recover so I'm a bit worried about how that would look but willing to document and test myself. Seems like you already responded to someone about recovery and plan to do a video (awesome!). I do. I'm currently delayed due to a bug in 24.04.0, waiting for 24.04.1 >This video was extremely helpful, thank you so much for taking the time to make it! Thankyou
@user-xy1kf9mn3d 5 күн бұрын
hey stux, if i have a link aggregation set up, what do i put in the network part of the config for docker? i tried a few different ways but my docker service wont start, so im sure thats my issue..but i have been messing around with my system the past few days and hope i didnt really mess something up..but im almost positive its that network verbiage.
@CaptStux 4 күн бұрын
I made a bridge on top of the bond interface. Then I was able to use the bridge. See my video on Network Bridges. Not 100% sure if this actually works, but it seemed too, and I did have trouble undoing it and needed to reset the network interfaces. kzfaq.info/get/bejne/q7abosiIuszNeIk.html
@Invaderjason123 Ай бұрын
Could you possibly do a tutorial using jailmaker to create traefik or caddy? Reverse proxy is the one thing keeping me from moving all to docker.
@CaptStux Ай бұрын
Thinking of doing one. Will probably demonstrate traefik as it uses textual configuration on the compose files. Nginx Proxy Manager would be easier to get immediate results via a gui. I actually use a virtualized pfsense as my router/firewall and use its dns, dhcp, acme and haproxy features instead.
@ZielinskiIrek Ай бұрын
Great video, thank you! does this support passing usb devices to the docker container? I plan to experiment with zigbee2mqtt that needs usb zigbee stick - any advice / pointers?
@CaptStux Ай бұрын
You can bind individual devices, not sure if this is what you need, but it might be
@cliph6068 Ай бұрын
@@CaptStux Would I do that in the same section I use to bind mounts in the config? I'm having the hardest time getting my Coral USB device to show up in a docker container. It shows as available if I shell into Docker jail but it doesn't seem to assign to any specific container I try to add it to in my compose.
@CaptStux Ай бұрын
@@cliph6068 yes, same section. Once bound into the jail, I would expect you'd then have to bind it into the container too. If you ask on the TrueNAS Jailmaker thread, you'll get much better visibility: forums.truenas.com/t/linux-jails-sandboxes-containers-with-jailmaker/417
@cliph6068 Ай бұрын
@@CaptStux So I was able to get it to work by not mapping it in my docker compose for the container or docker from host. I saw that it was being passed through in docker without editing the config but it always failed to load in a contain when I specified the mapping in compose. I tried omitting it from compose and finally loaded in the container. Not sure what that's about but I'm happy to finally get it working.
@koenmartens 3 ай бұрын
Hello Sydney, can you explain to me what to enter in the nano shell at network. Been struggling all day to get that one right. Hopefully you can give me some guidance. Thanks in advance for the clear explanation. My truenas network interface settings are: Greetings Koen from de Netherlands. Name: bond1 Description: LAGG DHCP: no IPv6: no Merge protocol link: LOADBALANCE Send hash policy: LAYER2+3 Merge interface mapping: eno1,eno2 MTU: 1500
@CaptStux 3 ай бұрын
Hi Koen, Greetings from Sydney :) I'd suggest asking on the Jailmaker thread at the TrueNAS forums, and I'm sure someone could help you out forums.truenas.com/t/linux-jails-sandboxes-containers-with-jailmaker/417/47
@Locationary 2 ай бұрын
Does it support amd passthrough if I added amd to the config file?
@CaptStux 2 ай бұрын
AMD Passthrough does work, but is not fully integrated yet, you can find instructions on how to enable here: github.com/Jip-Hop/jailmaker/issues/109 And if you test it, let jiphop et al know in that thread.
@Locationary 2 ай бұрын
@@CaptStux legend, thanks again
@robertrudik3022 2 ай бұрын
So if I udnerstand it correctly this approach compared to VM is that all host resources are dynamically managed based on sandbox needs and I don't need to use NFS for datasets access inside correct? What about nvidia GPU passhtrough and nvidia container toolkit?
@CaptStux 2 ай бұрын
Yes, correct, also, there is simply less overhead as an entire machine does not need to be virtualized. Nvidia, AMD and Intel GPU passthrough is supported, but you should look at the jailmaker github discussions for exact instructions on how to configure.
@robertrudik3022 2 ай бұрын
@@CaptStux Will definitely check that later. Great tutorial btw. For now I just try Dockge. Seems nice for what I need and I'm having hard time with portainer so maybe Dockge is the solution. Thanks again.
@sebastianhernandez6104 16 күн бұрын
how do you erease de alias please help
@kylecruzah808 2 ай бұрын
When I am done installing Dockge, my port at 5001 says it cannot connect to the server, removing the 5001 gets me back into my truenas. Any clue where to hash this one out? I appreciate your time and help
@CaptStux 2 ай бұрын
If you followed the tutorial, you would've used the docker template, and then your jail should be using either a DHCP assigned or static IP. Either way, if you are accessing your TrueNAS gui it means you are not using the jail's IP. Inside your jail type "ip a" to check its IP Address. If you have one, then great, otherwise, type 'watch ip a' to wait for one... ctrl-c to exit. Once you have an IP, try using that IP to connect to dockge (with :5001) if you still can't access the dockge instance, ensure that you can "ping www.google.com" successfully.
@JustSomeNoob Ай бұрын
great video, what about stopping jailmaker when you do a server restart or shutdown?
@ViniciusAmancio-zz6lf Ай бұрын
The postinit command will start the jailmaker (see 3:57), and in docker-jail configuration file you must set the value of startup to 1 (see 11:43). You can quickly acess the docker-jail configuration file using jlmkr edit docker, if your jail name is "docker".
@JustSomeNoob Ай бұрын
@@ViniciusAmancio-zz6lf Hi :) yes I understand that part but I'm talking about when the server shuts down do we need a script to tell docker to stop the containers?
@CaptStux Ай бұрын
Shutdown is automatic. No shutdown script necessary.
@JustSomeNoob Ай бұрын
@@CaptStux Great thank you :)
@kozekistudio 15 күн бұрын
how do i use jellyfin if my media is on a different dataset? like what if i use my ssd for my jailmaker instance but my media is on my hard drive pool?
@CaptStux 14 күн бұрын
You just mount the media dataset into your jail, then mount that into jellyfin. /mnt/pool-name/path/to/dataset
@kozekistudio 13 күн бұрын
@@CaptStux inside dockge?
@Johncelissaint 2 ай бұрын
does the sandbox persisit within each scale update ?
@CaptStux 2 ай бұрын
It should. This is a quote from the TrueNAS docs: "These containers persist across upgrades in 24.04 (Dragonfish) and later SCALE major versions"
@hamurabidios Ай бұрын
So this is the advantage over using it as an app?
@CozyTek Ай бұрын
@@hamurabidios one advantage. there are others like utilization of full hardware as needed if I'm understanding correctly so no fooling with setting limits like with apps/VM's, also for a lot of us long time multi-linux users like myself that just transitioned from running headless debian based server with docker running all applications/services to TrueNas with jails/apps I think that the method shown here could have made that transition a bit easier imho. I almost decided to pay for unraid but decided on TrueNas instead and love it so far. I am just hoping that when I decide to implement this method that it doesn't screw up existing apps installed the usual way....
@ssunde4698 2 ай бұрын
Works for the most part for me, however since i use macvlan i cannot access the apps running on the host. And adding a bridge is hard, because apps binds the entire /24 i am using. Tried adding another subnet and binding to it instead, using macvlan but then the jail vm has net, but for some reason the containers do not .. :(
@CaptStux 2 ай бұрын
I have a video demonstrating how to solve this by setting up a bridge, also, in the description I mention how to solve the apps binding issue kzfaq.info/get/bejne/q7abosiIuszNeIk.html
@ssunde4698 2 ай бұрын
@@CaptStux I did manage to get a bridge going, but now i have to disable and reenable the gpu every restart, because it can't find the bridge on boot!
@CaptStux 2 ай бұрын
@@ssunde4698 this may be a bug in 24.04.0, I would suggest trying again when 24.04.1 is released, and that still doesn't work for you, report the bug to TrueNAS.
@ssunde4698 2 ай бұрын
@@CaptStux NAS-127870 Why do i hit every single bug ;_;
@kerryh8er04 Ай бұрын
I have two pools, one flash, one disks. Can I install jail maker on the flash pool and it be able to talk to the disk pool where my media is?
@kerryh8er04 Ай бұрын
Played around with it, figured it out. Great walkthrough, really got me to the starting point.
@CaptStux Ай бұрын
yes. You bind your media using the full path, which includes the pool name, ie '/mnt/pool_name/media'
@Unsmooth_Edwarda 2 ай бұрын
why was the jellyfin user ID 3001? That shows "mwriter" as 3001
@CaptStux 2 ай бұрын
It’s not actually shown in the video. It’s visible on the users list, but it is 3001. The number is picked by TrueNAS, so it depends on how many users have been created. The reason the users and groups ids are out of sync on this instance of TrueNAS is because I had already created an “mwriter” group for “media writers”, as part of setting up the “media” dataset
@PS0103 6 күн бұрын
Hello! Very helpful video, but I have some issues. I've successfully installed Jailmaker with Docker and dockge, where I've placed my Nginx Proxy Manager, but now I have a problem with 502 Bad Gateway errors with all proxy hosts that are pointing to the apps natively installed through the apps section. After some research, I assume it's because the Docker jail can't communicate with the apps, and I don't know how to fix this. Maybe you can help with some direction? Thanks! NPM is installed in a host network mode, and have static ip in the same range, as TrueNAS Scale server.
@CaptStux 6 күн бұрын
Have you created a Bridge? I have a video on this, you probably need to use bridge networking for both the apps and the jail.
@PS0103 6 күн бұрын
@@CaptStux You are right, I haven't done that, and it seems that this is the issue. After some digging in the documentation, I found out that macvlan cannot communicate with the TrueNAS host by design. I will try to create a bridge using your video and set everything up that way. I hope I didn't break anything :) Thank you!
@realfarfoxache 16 күн бұрын
Hey bro what does startup=0 do in the config? i can't find answer anywhere haha. If I set startup=1 will it auto start without the need for the Post Init script or nahhhhhh?
@CaptStux 16 күн бұрын
the post-init script will start any jail that has startup=1 set
@realfarfoxache 16 күн бұрын
@@CaptStux sweet as thanks!
@Vyker Ай бұрын
i'm a layman, so following direct instructions is pretty much all i can do - this guide was going great until it didnt. I think changes have been made that makes this no longer accurate. any chance for a new revised guide? thanks very much - subscribed.
@CaptStux Ай бұрын
Did you see the update in the video description regarding `./jlmkr install`?
@martywalters4804 29 күн бұрын
@@CaptStux I was looking for this exact thing. Do you think everybody automatically reads the video description? (spoiler: nobody does) Please create a pinned comment with this info
@Vyker 28 күн бұрын
@@CaptStux thanks for the reply, i did see it, and that wasnt what i was struggling with. when i start/restart the docker jail - i get a red error saying "job for jlmkr-docker.service failed"
@joshhardin666 23 күн бұрын
So why are they not just using standard lxc containers?
@CaptStux 22 күн бұрын
Kris Moore discussed this on Reddit www.reddit.com/r/truenas/comments/1b0hi1c/comment/ks88pm6/
@mrlost117 34 минут бұрын
So if I want a dupe of this same jail but not called docker, what do I do?
@mrlost117 31 минут бұрын
Nvm im an idiot
@MrBrancas Ай бұрын
I'm getting "Failed to get shell PTY: There is no system bus in container docker." Not sure what i did wrong :(
@CaptStux Ай бұрын
This has been resolved in a post on the Jailmaker thread It’s due to a kernel limit that needs to be increased. See the thread. forums.truenas.com/t/linux-jails-sandboxes-containers-with-jailmaker/417/293
@MrBrancas Ай бұрын
@@CaptStux thanks, that’s actually me asking on the forums. I figured it might be the proper way. Thanks for taking the time!
@TeddyRuxspn Ай бұрын
@@CaptStux I'd like to know as well. Can't enter Shell, get error on no system bus in container. Thanks!
@kirillmukhin Ай бұрын
Just in case anybody stumbles upon the same problem: Following your solution on the forums; in the System Settings -> Advanced -> Sysctl I have added and enabled fs.inotify.max_user_watches variable with value of 524288, but to get rid of the error, I had to also add fs.inotify.max_user_instances with 1024 value.
@africajhonstonelaphant 3 ай бұрын
hey yall
@stevekirsch8284 Ай бұрын
startup=0 likely means start this process first. He glossed over that in the explanation... he said you want this, but didn't explain why. I'm guessing it's the startup sequence order.
@CaptStux Ай бұрын
startup=0 means do not start this jail at startup startup=1 means to start this jail at startup `jlmkr startup` starts all jails with startup=1 the order is undefined.
@africajhonstonelaphant 3 ай бұрын
first one
@seancheng4875 2 ай бұрын
Thanks for the video! I followed steps but once I saved the docker template, I got some errors: Press Enter to open the text editor.1 Traceback (most recent call last): File "/mnt/NAS10T/jailmaker/jlmkr.py", line 2170, in main() File "/mnt/NAS10T/jailmaker/jlmkr.py", line 2165, in main sys.exit(func(**args)) ^^^^^^^^^^^^ File "/mnt/NAS10T/jailmaker/jlmkr.py", line 1335, in create_jail jail_name, config, start_now = interactive_config() ^^^^^^^^^^^^^^^^^^^^ File "/mnt/NAS10T/jailmaker/jlmkr.py", line 1084, in interactive_config config.read_file(f) File "/usr/lib/python3.11/configparser.py", line 734, in read_file self._read(f, source) File "/mnt/NAS10T/jailmaker/jlmkr.py", line 203, in _read return super()._read(lines, fpname) ^^^^^^^^^^^^^^^^^^^^^^^^^^^^ File "/usr/lib/python3.11/configparser.py", line 1112, in _read raise DuplicateOptionError(sectname, optname, configparser.DuplicateOptionError: While reading from '/tmp/tmp_hzqqkim' [line 83]: option 'gpu_passthrough_intel' in section 'a' already exists Any help would be highly appreciated!
@CaptStux 2 ай бұрын
Hi Sean, Its reporting a duplicate option error with 'gpu_passthrough_intel'. Double check the config. If you still have trouble, I'd suggest asking on the Jailmaker thread at the TrueNAS forums, and I'm sure someone could help you out forums.truenas.com/t/linux-jails-sandboxes-containers-with-jailmaker/417
Comedy Club
Рет қаралды 7 МЛН
Capt Stux
Рет қаралды 4,5 М.
Raspberry Pi Cloud
Рет қаралды 8 М.
Comedy Club
Рет қаралды 7 МЛН