The document discusses virtualization technologies including application virtual machines, virtual environments, and jail virtualization using FreeBSD. It provides steps for creating a FreeBSD jail within a ZFS filesystem for virtualization and isolation of operating system instances. Configuration options are also listed to enable and customize the jail.

2. •
•
•
•
Web Server
Webapp Webapp Webapp Webapp Webapp

3. •
•
Web Server
Webapp Webapp Webapp Webapp Webapp
2차 공격
3차 공격

4. •
•
•
•

5. •
•
•
•
•
•

6. •
•
•
•
•
•

7. •
•
•
•
•
•
•
•
•
Hypervisor(VMM)
app app app app
Hardware
Guest
OS
Guest
OS
Guest
OS
Guest
OS
mgmt

8. •
•
•
•
•
•
•
Hardware VM A
app app app app
Hardware
Guest
OS
Guest
OS
Guest
OS
Guest
OS
Guest
OS
Hardware VM B
app

9. •
•
•
•
•
•
Hypervisor(VMM)
app app app app
Hardware
Modified
Guest OS
Modified
Guest OS
Modified
Guest OS
Modified
Guest OS mgmt

10. •
•
•
•
•
•
•
•
Operating System
Hardware
Server Server Server Server Server

11. •
• HTTP://EN.WIKIPEDIA.ORG/WIKI/COMPARISON_OF_APPLICATION_VIRTUAL_M
ACHINES
•
•
•
•
Virtual Environment
OS
App App App App App

12. Resource Virtualization
•
•
•
•
•
•
•

13. Virtualization Under Linux(1)
•
•
•
•
•
•
•

14. •
• HTTP://FABRICE.BELLARD.FREE.FR/QEMU/
•
•
•
•
•

15. •
•
• HTTP://BOCHS.SOURCEFORGE.NET/
•
• HTTP://WWW.VIRTUALBOX.ORG/
•

16. •
• HTTP://WWW.SWSOFT.COM
• HTTP://WWW.PARALLELS.COM/
• HTTP://OPENVZ.ORG/
•
•
•
•
•

17. •
•
•
•
•

18. •
HTTP://WWW.COLINUX.ORG/
•
HTTP://WWW.TOPOLOGILINUX.COM

19. •
•
• GNUWIN32
• GNUWINII
• UNXUTILS
• UWIN
•

20. •
•
zfs create -o compress=lz4 -o mountpoint=/usr/jail sys/jail
zfs create sys/jail/.base10x64
wget ftp://ftp.freebsd.org/pub/FreeBSD/releases/amd64/10.0-RELEASE/base.txz
wget ftp://ftp.freebsd.org/pub/FreeBSD/releases/amd64/10.0-RELEASE/lib32.txz
wget ftp://ftp.freebsd.org/pub/FreeBSD/releases/amd64/10.0-RELEASE/games.txz
wget ftp://ftp.freebsd.org/pub/FreeBSD/releases/amd64/10.0-RELEASE/src.txz
tar -JxvC /usr/jail/.base10x64/ -f base.txz
tar -JxvC /usr/jail/.base10x64/ -f lib32.txz
tar -JxvC /usr/jail/.base10x64/ -f games.txz
tar -JxvC /usr/jail/.base10x64/ -f src.txz

21. •
•
cp /etc/resolv.conf /usr/jail/.base10x64/etc/
chroot /usr/jail/.base10x64
passwd
mkdir /usr/ports
mkdir /usr/home
ln -s /usr/home /home
cd /etc/mail
make aliases
freebsd-update fetch install
zfs snapshot sys/jail/.base10x64@p0

22. •
•
jail_enable="YES"
exec.prestart = "/sbin/mount -t nullfs -o ro /usr/ports/ /usr/jail/$name/usr/ports";
exec.start = "/bin/sh /etc/rc";
exec.stop = "/bin/sh /etc/rc.shutdown";
exec.poststop = "/sbin/umount -f /usr/jail/$name/usr/ports";
exec.clean;
mount.devfs;
mount.fstab = "/etc/fstab.$name";
host.hostname = "$name.somehost.example.com";
allow.nomount;