Bastille vs. iocage vs.CBSD opinions?
0 views
Skip to first unread message
Alejandro Imass
Apr 3, 2020, 4:52:26 PM4/3/20
to FreeBSD Questions
I'm having a hard time picking between these three.
Just want to get a general pulse on the long-time experts here.
No intention to create any flame wars, just objective comments pls.
TIA!
--
Alex
_______________________________________________
freebsd-...@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questi...@freebsd.org"
Just want to get a general pulse on the long-time experts here.
No intention to create any flame wars, just objective comments pls.
TIA!
--
Alex
_______________________________________________
freebsd-...@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questi...@freebsd.org"
Mark Blackman
Apr 3, 2020, 4:59:45 PM4/3/20
to Alejandro Imass, FreeBSD Questions
> On 3 Apr 2020, at 21:48, Alejandro Imass <aim...@yabarana.com> wrote:
>
> I'm having a hard time picking between these three.
> Just want to get a general pulse on the long-time experts here.
> No intention to create any flame wars, just objective comments pls.
Regards
Mark
Alejandro Imass
Apr 3, 2020, 5:09:21 PM4/3/20
to Mark Blackman, FreeBSD Questions
On Fri, Apr 3, 2020 at 4:57 PM Mark Blackman <ma...@exonetric.com> wrote:
>
>
> > On 3 Apr 2020, at 21:48, Alejandro Imass <aim...@yabarana.com> wrote:
> >
> > I'm having a hard time picking between these three.
> > Just want to get a general pulse on the long-time experts here.
> > No intention to create any flame wars, just objective comments pls.
>
> For what? Technically, you can get by entirely without them.
>
>
CI/CD pipelines, Orchestration etc.
>
>
> > On 3 Apr 2020, at 21:48, Alejandro Imass <aim...@yabarana.com> wrote:
> >
> > I'm having a hard time picking between these three.
> > Just want to get a general pulse on the long-time experts here.
> > No intention to create any flame wars, just objective comments pls.
>
> For what? Technically, you can get by entirely without them.
>
>
Of course, you can write your own using FBSD jail primitives but why would
you want to, if these projects seem to be doing just that ?
Mark Blackman
Apr 3, 2020, 5:16:18 PM4/3/20
to Alejandro Imass, FreeBSD Questions
> On 3 Apr 2020, at 22:05, Alejandro Imass <aim...@yabarana.com> wrote:
>
> On Fri, Apr 3, 2020 at 4:57 PM Mark Blackman <ma...@exonetric.com <mailto:ma...@exonetric.com>> wrote:
>
>
> > On 3 Apr 2020, at 21:48, Alejandro Imass <aim...@yabarana.com <mailto:aim...@yabarana.com>> wrote:
> >
> > I'm having a hard time picking between these three.
> > Just want to get a general pulse on the long-time experts here.
> > No intention to create any flame wars, just objective comments pls.
>
> For what? Technically, you can get by entirely without them.
>
>
> CI/CD pipelines, Orchestration etc.
> Of course, you can write your own using FBSD jail primitives but why would you want to, if these projects seem to be doing just that ?
Ok, I had no idea what your use case was.
>
> > On 3 Apr 2020, at 21:48, Alejandro Imass <aim...@yabarana.com <mailto:aim...@yabarana.com>> wrote:
> >
> > I'm having a hard time picking between these three.
> > Just want to get a general pulse on the long-time experts here.
> > No intention to create any flame wars, just objective comments pls.
>
> For what? Technically, you can get by entirely without them.
>
>
> CI/CD pipelines, Orchestration etc.
> Of course, you can write your own using FBSD jail primitives but why would you want to, if these projects seem to be doing just that ?
- Mark
Ihor Antonov
Apr 3, 2020, 5:40:57 PM4/3/20
to Alejandro Imass, FreeBSD Questions
On 2020-04-03 16:48, Alejandro Imass wrote:
> I'm having a hard time picking between these three.
> Just want to get a general pulse on the long-time experts here.
> No intention to create any flame wars, just objective comments pls.
Hey Alejandro,
> I'm having a hard time picking between these three.
> Just want to get a general pulse on the long-time experts here.
> No intention to create any flame wars, just objective comments pls.
I can't give any advice on CBSD, but here is my 2 cents on iocage vs
bastille
Iocage:
- Written in python, so has bigger dependencies footprint
- ZFS only (does not work with UFS)
- Uses its own settings files and format, disconnected from jails.conf
(this is good and bad, bad if iocage breaks you cant start the jail
manually)
- Supported by IXSystems ( not 100% sure on this one)
- Has a concept of "plugins". "plugins" is a misnomer, in fact this is
a way to allow user to provide some input to a deployed image to
customize it. My experience with plugins was not very successful.
Plugins are expressed in awkward json format without proper
documentation (I haven't found any, so if someone knows where to find
it - please share)
- Core set of features is mature enough to use it in the wild
- M.Lucas in his Jails book advocates iocage as one of the recommended
tools
- supports resouce control with rctl
BastilleBSD
- Written in shell, zero dependencies if you have shell interpreter :)
- Works with UFS and ZFS
- AFAIK uses jail.conf to store configuration (not 100% sure)
- Has concept of templates, which I find to be much better than iocage's
plugins
- Less mature, I often encounter bugs or unexpected behaviour.
To it's defence the tools is very young, and is being actively
developed, new features and fixes are being added every day. It did
not exists at the time M.Lucas was writing Jails book.
- The author is very responsive and replies to comments and issues on
github (same thing can probably be said about iocage, but I personally
did not test this)
- last time I checked did not support rctl
Both tools support VNET jails.
Overall you should pick a tool for your task. But if both tools fit I'd
recommend trying BastilleBSD as I personally like it's approach better.
It might not be a super smooth ride, but you can help improve the tool
and give the author first hand feedback
----
Ihor
Alejandro Imass
Apr 3, 2020, 7:02:45 PM4/3/20
to FreeBSD Questions
Thanks for your responses so far, very instructive.
As Ihor, I am also inclined towards Bastille for many of the same reasons.
NVL iocage seems very cool as well as does CBSD.
But, since I am a biased pro-Perl person (which is almost the same as
saying anti-python) I am trying to be objective and avoid confirmation bias.
I've been happily using EzJail for about 14 years now, and never had a
serious issue. But these other tools seem more container oriented and I
want to be able to do many of the things people are doing with Docker and
ECS but on FBSD in bare metal (I am NOT a fan of virtualization and AWS).
As Ihor, I am also inclined towards Bastille for many of the same reasons.
NVL iocage seems very cool as well as does CBSD.
But, since I am a biased pro-Perl person (which is almost the same as
saying anti-python) I am trying to be objective and avoid confirmation bias.
I've been happily using EzJail for about 14 years now, and never had a
serious issue. But these other tools seem more container oriented and I
want to be able to do many of the things people are doing with Docker and
ECS but on FBSD in bare metal (I am NOT a fan of virtualization and AWS).
Reply all
Reply to author
Forward
0 new messages