#reverse proxy | #traefik | #http | #load balancer | #web server | #consul

 

Traefik (Consul)

Overview

This is a flavour containing the traefik reverse proxy and load balancer preconfigured for usage with consul (e.g. consul pot image on potluck.

Installation

  • Create your local jail from the image or the flavour files.
  • Export the ports after creating the jail: pot export-ports -p <jailname> -e 8080:8080 -e 9002:9002
  • Optional: Mount your traefik log storage directory into the jail: sudo pot mount-in -p <jailname> -m /var/log/traefik -d <logdirectory_on_host>
  • Copy in local custom files.
  • Adjust to your environment: 
    sudo pot set-env -p <jailname> \
  -E DATACENTER=<datacentername> \
  -E NODENAME=<nodename> \
  -E IP=<IP address of this system> \
  -E CONSULSERVERS="<comma-deliminated list of consul IP addresses>" \
  -E GOSSIPKEY=<32 byte Base64 key from consul keygen> \
  [ -E NOCLIENTADDR=<any value enables> ] \
  [ -E REMOTELOG=<IP address> ]
  • Start jail with pot start <jailname>

Required Paramaters

The DATACENTER parameter defines a common datacenter.

The NODENAME parameter defines the name of this node.

The IP parameter is the IP address which will be used to access services.

The CONSULSERVERS parameter defines the consul server instances, and must be set as a comma-deliminated list. Do not include spaces!

e.g. CONSULSERVERS="10.0.0.2" or CONSULSERVERS="10.0.0.2,10.0.0.3,10.0.0.4,10.0.0.5,10.0.0.6"

The GOSSIPKEY parameter is the gossip encryption key for consul agent. We’re using a default key if you do not set the parameter, do not use the default key for production encryption, instead provide your own.

Optional Parameters

The DISABLEUI parameter will disable the web UI if set to any value. The UI is enabled by default.

The NOCLIENTADDR parameter will disable consul client_addr="0.0.0.0" for hosts where this won’t work, such as alias jails. Any value enables. Do not enable on vnet jails.

The REMOTELOG parameter is the IP address of a destination syslog-ng server, such as with the loki flavour, or beast-of-argh flavour.

Usage

traefik in the jail is listening on port 8080 (HTTP) and 8443 (HTTPS with self signed certificate).

You can connect to the dashboard on port 9002 of your jail IP address.

The services registered on your associated consul instance are available under their service name via the host: header (similar to e.g. Apache Virtual Hosts). To test this, you can use curl -H 'host: my-consul-servicename' <jailip>:8080.

Getting Started

How To Use The Ready-Made Image

FreeBSD 14.2:
pot import -p traefik-consul-amd64-14_2 -t 1.30.3 -U https://potluck.honeyguide.net/traefik-consul

With Signify Verification:
fetch https://potluck.honeyguide.net/potluck.pub; pot import -p traefik-consul-amd64-14_2 -t 1.30.3 -C potluck.pub -U https://potluck.honeyguide.net/traefik-consul

If you don’t want to use the default pot bridged network configuration but instead need an individual network setup (e.g. assign a host IP address), after importing it you can simply clone the jail like that (em0 is the host network adapter in this example):
pot clone -P traefik-consul-amd64-14_2 -p my-cloned-jail -N alias -i "em0|10.10.10.10"

Note: Some images might require specific network configuration, double check the Overview-chapter at the top.

Alternatively: Create a Jail With This Flavour Yourself

1. Create Flavour Files

Save all files and directories from https://codeberg.org/bsdpot/potluck/tree/master/traefik-consul to /usr/local/etc/pot/flavours/

2. Create Jail From Flavour

Run
pot create -b <FreeBSD Version> -p <jailname> -t single -N public-bridge -f fbsd-update

with your FreeBSD version (e.g. 14.1) and the name your jail should get.

Note: Some images might require specific network configuration, double check the Overview-chapter at the top.

Version History

1.30

  • Version bump for new base image
  • Remove consul client_addr setting, remove misguided ipv6-only option
  • Add new parameter NOCLIENTADDR which disables consul client_addr 0.0.0.0 in alias-based jails

1.29

  • Version bump for new base image
  • Add IPV6ONLY option

1.28

  • Version bump for new base image

1.27

  • Version bump for new base image
  • Quote PATH statements
  • Fix consul labels and set IP parameters, set 127.0.0.1 only for consul client_addr

1.26

  • Version bump for new base image

1.25

  • Version bump for new base image 14.2

1.24

  • Version bump for new base image
  • Enable milliseconds in syslog-ng for all log timestamps
  • Update syslog-ng config to use modern config options

1.23

  • Version bump for new base image 14.1
  • Extra steps to trim image size

1.22

  • Version bump for new base image

1.21

  • Version bump for new base image

1.20

  • Version bump for new base image

1.19

  • Version bump for new base image

1.18

  • Version bump for new base image

1.17

  • Version bump for new base image
  • Fix node_exporter zfs issue

1.16

  • Version bump for new base image
  • FBSD14 base image

1.15

  • Version bump for new base image

1.14

  • Version bump for new base image

1.13

  • Version bump for new base image

1.12

  • Version bump for new base image

1.11

  • Version bump for new base image

1.10

  • Version bump for new base image
  • Fix syslog-ng problems for 4.2 version, remove stats_freq option
  • Add DISABLEGUI option, defaults to unset
  • Add local unbound for consul DNS resolution
  • Minor change to consul agent config to use retry_join instead of start_join
  • Add services to consul setup
  • Fix addition of services
  • Add consul DNS info to README
  • fix local_unbound dns resolution with missing parameters for access control
  • Disable consul DNS option with local_unbound as is only practical in VNET jails with a localhost

1.9

  • Version bump for new base image

1.8

  • Version bump for new base image
  • Signified
  • Fix nologin shell for nodeexport user

1.7

  • Version increment for new feature
  • Pass consul servers in as comma-deliminated list

1.6

  • Version bump for new base image
  • Update syslog-ng.conf stats_freq(0); -> stats(freq(0));

1.5

  • Version bump for new base image

1.4

  • Version bump for new base image
  • New changelog format

1.3.5

  • Fix consul client hcl for new format

1.3.4

  • Version bump for rebuild to fix missing images on potluck site

1.3.3

  • Version bump for p3 rebuild

1.3.2

  • Version bump for rebuild
  • Added checklist

1.3.1

  • Version bump for new base image and new cook script format

1.3.0

  • Version bump for FreeBSD-13.1 image

1.2.9

  • Switch to syslog-ng. Include traefik logs in syslog-ng. Update to modern base script.

1.2.8

  • Changing method for remote syslog as variable wasn’t expanding

1.2.7

  • Implementing prometheus metrics and other minor tweaks. Updating README.

1.2.6

  • traefik service not enabled, reverting earlier change

1.2.5

  • Rebuild for latest version and adding remotelogs

1.2.4

  • Rebuild for FreeBSD 12_3 and 13 & pot 13

1.2.3

  • Rebuild for FreeBSD 13 & new packages

1.2.2

  • Install traefik instead of traefik2 since the traefik pkg is now v2

1.2.1

  • Trigger build of FreeBSD 12.2 image & rebuild FreeBSD 11.4 image to update packages

1.2

  • Moved from traefik to traefik2 port
  • Support mounting of traefik log directory to persist access logs

1.1

  • Added HTTPS with self signed certificate (port 8443)

1.0

  • Initial commit

These images were built on Sat Jun 14 18:49:12 UTC 2025

Manual Image Download Links

traefik-consul-amd64-14_2_1.30.3.xz ( )
traefik-consul-amd64-14_2_1.30.3.xz.skein ( ) traefik-consul-amd64-14_2_1.30.3.xz.skein.sig ( ) traefik-consul-amd64-14_2_1.30.3.xz.meta ( )

Jenkins Pot Creation Logs

traefik-consul-amd64-14_2_1.30.3:


traefik-consul/traefik-consul:
copy-in -s /usr/local/etc/pot/flavours/traefik-consul.d/local -d /root/.pot_local
traefik-consul/traefik-consul.sh:
#!/bin/sh

# Based on POTLUCK TEMPLATE v3.0
# Altered by Michael Gmelin
#
# EDIT THE FOLLOWING FOR NEW FLAVOUR:
# 1. RUNS_IN_NOMAD - true or false
# 2. If RUNS_IN_NOMAD is false, can delete the <flavour>+4 file, else
#    make sure pot create command doesn't include it
# 3. Create a matching <flavour> file with this <flavour>.sh file that
#    contains the copy-in commands for the config files from <flavour>.d/
#    Remember that the package directories don't exist yet, so likely copy
#    to /root
# 4. Adjust package installation between BEGIN & END PACKAGE SETUP
# 5. Adjust jail configuration script generation between BEGIN & END COOK
#    Configure the config files that have been copied in where necessary

# Set this to true if this jail flavour is to be created as a nomad
# (i.e. blocking) jail.
# You can then query it in the cook script generation below and the script
# is installed appropriately at the end of this script
RUNS_IN_NOMAD=false

# set the cook log path/filename
COOKLOG=/var/log/cook.log

# check if cooklog exists, create it if not
if [ ! -e $COOKLOG ]
then
    echo "Creating $COOKLOG" | tee -a $COOKLOG
else
    echo "WARNING $COOKLOG already exists"  | tee -a $COOKLOG
fi
date >> $COOKLOG

# -------------------- COMMON ---------------

STEPCOUNT=0
step() {
  STEPCOUNT=$(("$STEPCOUNT" + 1))
  STEP="$*"
  echo "Step $STEPCOUNT: $STEP" | tee -a $COOKLOG
}

exit_ok() {
  trap - EXIT
  exit 0
}

FAILED=" failed"
exit_error() {
  STEP="$*"
  FAILED=""
  exit 1
}

set -e
trap 'echo ERROR: $STEP$FAILED | (>&2 tee -a $COOKLOG)' EXIT

# -------------- BEGIN PACKAGE SETUP -------------

step "Bootstrap package repo"
mkdir -p /usr/local/etc/pkg/repos
# only modify repo if not already done in base image
# shellcheck disable=SC2016
test -e /usr/local/etc/pkg/repos/FreeBSD.conf || \
  echo 'FreeBSD: { url: "pkg+http://pkg.FreeBSD.org/${ABI}/quarterly" }' \
    >/usr/local/etc/pkg/repos/FreeBSD.conf
ASSUME_ALWAYS_YES=yes pkg bootstrap

step "Touch /etc/rc.conf"
touch /etc/rc.conf

# this is important, otherwise running /etc/rc from cook will
# overwrite the IP address set in tinirc
step "Remove ifconfig_epair0b from config"
# shellcheck disable=SC2015
sysrc -cq ifconfig_epair0b && sysrc -x ifconfig_epair0b || true

step "Disable sendmail"
service sendmail onedisable

step "Create /usr/local/etc/rc.d"
mkdir -p /usr/local/etc/rc.d

step "Clean freebsd-update"
rm -rf /var/db/freebsd-update
mkdir -p /var/db/freebsd-update

# we need consul for consul agent
step "Install package consul"
pkg install -y consul

step "Install package traefik"
pkg install -y traefik

step "Install package openssl"
pkg install -y openssl

step "Install package sudo"
pkg install -y sudo

# necessary if installing curl now
step "Install package ca_root_nss"
pkg install -y ca_root_nss

step "Install package curl"
pkg install -y curl

step "Install package jq"
pkg install -y jq

step "Install package jo"
pkg install -y jo

step "Install package nano"
pkg install -y nano

step "Install package bash"
pkg install -y bash

step "Install package node_exporter"
pkg install -y node_exporter

step "Install package syslog-ng"
pkg install -y syslog-ng

step "Clean package installation"
pkg clean -ay

# To allow mount in of this directory, create mountpoint
step "Create legacy mount in"
mkdir -p /var/log/traefik

# -------------- END PACKAGE SETUP -------------

#
# Now generate the run command script "cook"
# It configures the system on the first run by creating the config file(s)
# On subsequent runs, it only starts sleeps (if nomad-jail) or simply exits
#

# this runs when image boots
# ----------------- BEGIN COOK ------------------

step "Clean cook artifacts"
rm -rf /usr/local/bin/cook /usr/local/share/cook

step "Install pot local"
tar -C /root/.pot_local -cf - . | tar -C /usr/local -xf -
rm -rf /root/.pot_local

step "Set file ownership on cook scripts"
chown -R root:wheel /usr/local/bin/cook /usr/local/share/cook
chmod 755 /usr/local/share/cook/bin/*

# ----------------- END COOK ------------------


# ---------- NO NEED TO EDIT BELOW ------------

step "Make cook script executable"
if [ -e /usr/local/bin/cook ]
then
    echo "setting executable bit on /usr/local/bin/cook" | tee -a $COOKLOG
    chmod u+x /usr/local/bin/cook
else
    exit_error "there is no /usr/local/bin/cook to make executable"
fi

#
# There are two ways of running a pot jail: "Normal", non-blocking mode and
# "Nomad", i.e. blocking mode (the pot start command does not return until
# the jail is stopped).
# For the normal mode, we create a /usr/local/etc/rc.d script that starts
# the "cook" script generated above each time, for the "Nomad" mode, the cook
# script is started by pot (configuration through flavour file), therefore
# we do not need to do anything here.
#

# Create rc.d script for "normal" mode:
step "Create rc.d script to start cook"
echo "creating rc.d script to start cook" | tee -a $COOKLOG

# shellcheck disable=SC2016
echo '#!/bin/sh
#
# PROVIDE: cook
# REQUIRE: LOGIN
# KEYWORD: shutdown
#
. /etc/rc.subr
name="cook"
rcvar="cook_enable"
load_rc_config $name
: ${cook_enable:="NO"}
: ${cook_env:=""}
command="/usr/local/bin/cook"
command_args=""
run_rc_command "$1"
' > /usr/local/etc/rc.d/cook

step "Make rc.d script to start cook executable"
if [ -e /usr/local/etc/rc.d/cook ]
then
  echo "Setting executable bit on cook rc file" | tee -a $COOKLOG
  chmod u+x /usr/local/etc/rc.d/cook
else
  exit_error "/usr/local/etc/rc.d/cook does not exist"
fi

if [ "$RUNS_IN_NOMAD" != "true" ]
then
  step "Enable cook service"
  # This is a non-nomad (non-blocking) jail, so we need to make sure the script
  # gets started when the jail is started:
  # Otherwise, /usr/local/bin/cook will be set as start script by the pot
  # flavour
  echo "enabling cook" | tee -a $COOKLOG
  service cook enable
fi

# -------------------- DONE ---------------
exit_ok

traefik-consul/traefik-consul+1:
traefik-consul/traefik-consul+1.sh:

traefik-consul/traefik-consul+2:
traefik-consul/traefik-consul+2.sh:

traefik-consul/traefik-consul+3:
traefik-consul/traefik-consul+3.sh:

traefik-consul/traefik-consul+4:
traefik-consul/traefik-consul+4.sh:
=====>  Create conf dir (/mnt/srv/pot/jails/traefik-consul-amd64-14_2/conf)
=====>  Cloning freebsd-potluck-amd64-14_2_0_0_38 with snap 
=====>  clone zroot/srv/pot/jails/freebsd-potluck-amd64-14_2_0_0_38/m@1745012074 into zroot/srv/pot/jails/traefik-consul-amd64-14_2/m
=====>  Flavour: fbsd-update
=====>  Starting traefik-consul-amd64-14_2 pot for the initial bootstrap
=====>  mount /mnt/srv/pot/jails/traefik-consul-amd64-14_2/m/tmp
defaultrouter: 10.192.0.1 -> 10.192.0.1
===>  Starting the pot traefik-consul-amd64-14_2
=====>  Pot traefik-consul-amd64-14_2 jail params are: allow.set_hostname=false allow.raw_sockets allow.socket_af allow.chflags exec.clean mount.devfs enforce_statfs=2 sysvshm=new sysvsem=new sysvmsg=new children.max=0 devfs_ruleset=4 stop.timeout=10 name=traefik-consul-amd64-14_2 host.hostname=traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net osrelease=14.2-RELEASE-p3 path=/mnt/srv/pot/jails/traefik-consul-amd64-14_2/m persist vnet vnet.interface=epair0b
ELF ldconfig path: /lib /usr/lib /usr/lib/compat /usr/local/lib /usr/local/lib/compat/pkg /usr/local/lib/compat/pkg
32-bit compatibility ldconfig path: /usr/lib32
Starting Network: lo0 epair0b.
lo0: flags=1008049<UP,LOOPBACK,RUNNING,MULTICAST,LOWER_UP> metric 0 mtu 16384
	options=680003<RXCSUM,TXCSUM,LINKSTATE,RXCSUM_IPV6,TXCSUM_IPV6>
	inet 127.0.0.1 netmask 0xff000000
	inet6 ::1 prefixlen 128
	inet6 fe80::1%lo0 prefixlen 64 scopeid 0x6
	groups: lo
	nd6 options=21<PERFORMNUD,AUTO_LINKLOCAL>
epair0b: flags=1008843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST,LOWER_UP> metric 0 mtu 1500
	options=8<VLAN_MTU>
	ether 02:e2:3e:db:26:0b
	inet 10.192.0.3 netmask 0xffc00000 broadcast 10.255.255.255
	groups: epair
	media: Ethernet 10Gbase-T (10Gbase-T <full-duplex>)
	status: active
	nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
add host 127.0.0.1: gateway lo0 fib 0: route already in table
add net default: gateway 10.192.0.1
add host ::1: gateway lo0 fib 0: route already in table
add net fe80::: gateway ::1
add net ff02::: gateway ::1
add net ::ffff:0.0.0.0: gateway ::1
add net ::0.0.0.0: gateway ::1
Clearing /tmp (X related).
Updating /var/run/os-release done.
Creating and/or trimming log files.
Updating motd:.
Starting syslogd.
Starting sendmail_submit.
Starting cron.

Sat Jun 14 18:46:02 UTC 2025
/usr/local/etc/pot/flavours/fbsd-update.sh -> /mnt/srv/pot/jails/traefik-consul-amd64-14_2/m/tmp/fbsd-update.sh
=====>  Executing fbsd-update script on traefik-consul-amd64-14_2
src component not installed, skipped
Looking up update.FreeBSD.org mirrors... 3 mirrors found.
Fetching public key from update1.freebsd.org... done.
Fetching metadata signature for 14.2-RELEASE from update1.freebsd.org... done.
Fetching metadata index... done.
Fetching 2 metadata files... done.
Inspecting system... done.
Preparing to download files... done.

No updates needed to update system to 14.2-RELEASE-p3.
No updates are available to install.
=====>  Stop the pot traefik-consul-amd64-14_2
=====>  Remove p4684dc3691002a epair network interfaces
=====>  unmount /mnt/srv/pot/jails/traefik-consul-amd64-14_2/m/tmp
=====>  unmount /mnt/srv/pot/jails/traefik-consul-amd64-14_2/m/dev
=====>  Flavour: traefik-consul
=====>  Executing traefik-consul pot commands on traefik-consul-amd64-14_2
=====>  mount /mnt/srv/pot/jails/traefik-consul-amd64-14_2/m/tmp
=====>  Source /usr/local/etc/pot/flavours/traefik-consul.d/local copied in the pot traefik-consul-amd64-14_2
=====>  unmount /mnt/srv/pot/jails/traefik-consul-amd64-14_2/m/tmp
=====>  /mnt/srv/pot/jails/traefik-consul-amd64-14_2/m/dev is already unmounted
=====>  Starting traefik-consul-amd64-14_2 pot for the initial bootstrap
=====>  mount /mnt/srv/pot/jails/traefik-consul-amd64-14_2/m/tmp
defaultrouter: 10.192.0.1 -> 10.192.0.1
===>  Starting the pot traefik-consul-amd64-14_2
=====>  Pot traefik-consul-amd64-14_2 jail params are: allow.set_hostname=false allow.raw_sockets allow.socket_af allow.chflags exec.clean mount.devfs enforce_statfs=2 sysvshm=new sysvsem=new sysvmsg=new children.max=0 devfs_ruleset=4 stop.timeout=10 name=traefik-consul-amd64-14_2 host.hostname=traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net osrelease=14.2-RELEASE-p3 path=/mnt/srv/pot/jails/traefik-consul-amd64-14_2/m persist vnet vnet.interface=epair0b
ELF ldconfig path: /lib /usr/lib /usr/lib/compat /usr/local/lib /usr/local/lib/compat/pkg /usr/local/lib/compat/pkg
32-bit compatibility ldconfig path: /usr/lib32
Starting Network: lo0 epair0b.
lo0: flags=1008049<UP,LOOPBACK,RUNNING,MULTICAST,LOWER_UP> metric 0 mtu 16384
	options=680003<RXCSUM,TXCSUM,LINKSTATE,RXCSUM_IPV6,TXCSUM_IPV6>
	inet 127.0.0.1 netmask 0xff000000
	inet6 ::1 prefixlen 128
	inet6 fe80::1%lo0 prefixlen 64 scopeid 0x6
	groups: lo
	nd6 options=21<PERFORMNUD,AUTO_LINKLOCAL>
epair0b: flags=1008843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST,LOWER_UP> metric 0 mtu 1500
	options=8<VLAN_MTU>
	ether 02:11:eb:17:e9:0b
	inet 10.192.0.3 netmask 0xffc00000 broadcast 10.255.255.255
	groups: epair
	media: Ethernet 10Gbase-T (10Gbase-T <full-duplex>)
	status: active
	nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
add host 127.0.0.1: gateway lo0 fib 0: route already in table
add net default: gateway 10.192.0.1
add host ::1: gateway lo0 fib 0: route already in table
add net fe80::: gateway ::1
add net ff02::: gateway ::1
add net ::ffff:0.0.0.0: gateway ::1
add net ::0.0.0.0: gateway ::1
Clearing /tmp (X related).
Updating /var/run/os-release done.
Creating and/or trimming log files.
Updating motd:.
Starting syslogd.
Starting sendmail_submit.
Starting cron.

Sat Jun 14 18:46:29 UTC 2025
/usr/local/etc/pot/flavours/traefik-consul.sh -> /mnt/srv/pot/jails/traefik-consul-amd64-14_2/m/tmp/traefik-consul.sh
=====>  Executing traefik-consul script on traefik-consul-amd64-14_2
WARNING /var/log/cook.log already exists
Step 1: Bootstrap package repo
pkg already bootstrapped at /usr/local/sbin/pkg
Step 2: Touch /etc/rc.conf
Step 3: Remove ifconfig_epair0b from config
Step 4: Disable sendmail
sendmail disabled in /etc/rc.conf
sendmail_submit disabled in /etc/rc.conf
sendmail_msp_queue disabled in /etc/rc.conf
Step 5: Create /usr/local/etc/rc.d
Step 6: Clean freebsd-update
Step 7: Install package consul
Updating FreeBSD repository catalogue...
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] Fetching data.pkg: .......... done
Processing entries: .......... done
FreeBSD repository update completed. 35989 packages processed.
All repositories are up to date.
New version of pkg detected; it needs to be installed first.
The following 1 package(s) will be affected (of 0 checked):

Installed packages to be UPGRADED:
	pkg: 2.1.0 -> 2.1.2

Number of packages to be upgraded: 1

12 MiB to be downloaded.
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [1/1] Fetching pkg-2.1.2.pkg: .......... done
Checking integrity... done (0 conflicting)
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [1/1] Upgrading pkg from 2.1.0 to 2.1.2...
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [1/1] Extracting pkg-2.1.2: .......... done
Updating FreeBSD repository catalogue...
FreeBSD repository is up to date.
All repositories are up to date.
The following 1 package(s) will be affected (of 0 checked):

New packages to be INSTALLED:
	consul: 1.20.5

Number of packages to be installed: 1

The process will require 117 MiB more space.
24 MiB to be downloaded.
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [1/1] Fetching consul-1.20.5.pkg: .......... done
Checking integrity... done (0 conflicting)
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [1/1] Installing consul-1.20.5...
===> Creating groups
Creating group 'consul' with gid '469'
===> Creating users
Creating user 'consul' with uid '469'
===> Creating homedir(s)
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [1/1] Extracting consul-1.20.5: ..... done
Step 8: Install package traefik
Updating FreeBSD repository catalogue...
FreeBSD repository is up to date.
All repositories are up to date.
The following 1 package(s) will be affected (of 0 checked):

New packages to be INSTALLED:
	traefik: 3.4.1

Number of packages to be installed: 1

The process will require 204 MiB more space.
37 MiB to be downloaded.
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [1/1] Fetching traefik-3.4.1.pkg: .......... done
Checking integrity... done (0 conflicting)
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [1/1] Installing traefik-3.4.1...
===> Creating groups
Creating group 'traefik' with gid '475'
===> Creating users
Creating user 'traefik' with uid '475'
===> Creating homedir(s)
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [1/1] Extracting traefik-3.4.1: ....... done
=====
Message from traefik-3.4.1:

--
Note that traefik starts as unpriviliged user. Thus, it cannot
bind to privileged ports (by default, ports below 1024) and
will exit when configured to do so.

If traefik should serve ports in the privileged range, there
are options to achieve this:
- Have traffic bind to an unprivileged port and use the
  packet filter configuration to redirect requests to the
  desired privileged port to the unprivileged port in
  traefik's configuration file e.g. the rdr rules in pf(4).
- The mac_portacl kernel module allows unprivileged processes
  to bind to privileged ports.
Step 9: Install package openssl
Updating FreeBSD repository catalogue...
FreeBSD repository is up to date.
All repositories are up to date.
Checking integrity... done (0 conflicting)
The most recent versions of packages are already installed
Step 10: Install package sudo
Updating FreeBSD repository catalogue...
FreeBSD repository is up to date.
All repositories are up to date.
Checking integrity... done (0 conflicting)
The most recent versions of packages are already installed
Step 11: Install package ca_root_nss
Updating FreeBSD repository catalogue...
FreeBSD repository is up to date.
All repositories are up to date.
Checking integrity... done (0 conflicting)
The most recent versions of packages are already installed
Step 12: Install package curl
Updating FreeBSD repository catalogue...
FreeBSD repository is up to date.
All repositories are up to date.
The following 1 package(s) will be affected (of 0 checked):

Installed packages to be UPGRADED:
	curl: 8.12.1 -> 8.14.0

Number of packages to be upgraded: 1

2 MiB to be downloaded.
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [1/1] Fetching curl-8.14.0.pkg: .......... done
Checking integrity... done (0 conflicting)
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [1/1] Upgrading curl from 8.12.1 to 8.14.0...
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [1/1] Extracting curl-8.14.0: .......... done
Step 13: Install package jq
Updating FreeBSD repository catalogue...
FreeBSD repository is up to date.
All repositories are up to date.
Checking integrity... done (0 conflicting)
The most recent versions of packages are already installed
Step 14: Install package jo
Updating FreeBSD repository catalogue...
FreeBSD repository is up to date.
All repositories are up to date.
Checking integrity... done (0 conflicting)
The most recent versions of packages are already installed
Step 15: Install package nano
Updating FreeBSD repository catalogue...
FreeBSD repository is up to date.
All repositories are up to date.
Checking integrity... done (0 conflicting)
The most recent versions of packages are already installed
Step 16: Install package bash
Updating FreeBSD repository catalogue...
FreeBSD repository is up to date.
All repositories are up to date.
Checking integrity... done (0 conflicting)
The most recent versions of packages are already installed
Step 17: Install package node_exporter
Updating FreeBSD repository catalogue...
FreeBSD repository is up to date.
All repositories are up to date.
The following 1 package(s) will be affected (of 0 checked):

New packages to be INSTALLED:
	node_exporter: 1.8.2_1

Number of packages to be installed: 1

The process will require 11 MiB more space.
4 MiB to be downloaded.
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [1/1] Fetching node_exporter-1.8.2_1.pkg: .......... done
Checking integrity... done (0 conflicting)
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [1/1] Installing node_exporter-1.8.2_1...
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [1/1] Extracting node_exporter-1.8.2_1: .......... done
=====
Message from node_exporter-1.8.2_1:

--
If upgrading from a version of node_exporter <0.15.0 you'll need to update any
custom command line flags that you may have set as it now requires a
double-dash (--flag) instead of a single dash (-flag).
The collector flags in 0.15.0 have now been replaced with individual boolean
flags and the -collector.procfs` and -collector.sysfs` flags have been renamed
to --path.procfs and --path.sysfs respectively.
Step 18: Install package syslog-ng
Updating FreeBSD repository catalogue...
FreeBSD repository is up to date.
All repositories are up to date.
The following 10 package(s) will be affected (of 0 checked):

New packages to be INSTALLED:
	e2fsprogs-libuuid: 1.47.2
	glib: 2.80.5_1,2
	ivykis: 0.43.2
	json-c: 0.18
	libffi: 3.4.6
	mpdecimal: 4.0.0
	pcre2: 10.45
	py311-packaging: 24.2
	python311: 3.11.12_1
	syslog-ng: 4.8.2

Number of packages to be installed: 10

The process will require 242 MiB more space.
34 MiB to be downloaded.
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [1/10] Fetching ivykis-0.43.2.pkg: .......... done
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [2/10] Fetching mpdecimal-4.0.0.pkg: ......... done
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [3/10] Fetching py311-packaging-24.2.pkg: .......... done
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [4/10] Fetching glib-2.80.5_1,2.pkg: .......... done
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [5/10] Fetching syslog-ng-4.8.2.pkg: .......... done
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [6/10] Fetching pcre2-10.45.pkg: .......... done
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [7/10] Fetching libffi-3.4.6.pkg: ........ done
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [8/10] Fetching json-c-0.18.pkg: .......... done
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [9/10] Fetching e2fsprogs-libuuid-1.47.2.pkg: ...... done
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [10/10] Fetching python311-3.11.12_1.pkg: .......... done
Checking integrity... done (0 conflicting)
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [1/10] Installing e2fsprogs-libuuid-1.47.2...
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [1/10] Extracting e2fsprogs-libuuid-1.47.2: .......... done
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [2/10] Installing ivykis-0.43.2...
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [2/10] Extracting ivykis-0.43.2: .......... done
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [3/10] Installing json-c-0.18...
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [3/10] Extracting json-c-0.18: .......... done
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [4/10] Installing libffi-3.4.6...
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [4/10] Extracting libffi-3.4.6: .......... done
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [5/10] Installing mpdecimal-4.0.0...
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [5/10] Extracting mpdecimal-4.0.0: .......... done
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [6/10] Installing pcre2-10.45...
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [6/10] Extracting pcre2-10.45: .......... done
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [7/10] Installing python311-3.11.12_1...
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [7/10] Extracting python311-3.11.12_1: .......... done
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [8/10] Installing py311-packaging-24.2...
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [8/10] Extracting py311-packaging-24.2: .......... done
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [9/10] Installing glib-2.80.5_1,2...
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [9/10] Extracting glib-2.80.5_1,2: .......... done
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [10/10] Installing syslog-ng-4.8.2...
[traefik-consul-amd64-14_2.vsf00002.cpt.za.honeyguide.net] [10/10] Extracting syslog-ng-4.8.2: .......... done
==> Running trigger: glib-schemas.ucl
Compiling glib schemas
No schema files found: doing nothing.
==> Running trigger: gio-modules.ucl
Generating GIO modules cache
=====
Message from python311-3.11.12_1:

--
Note that some standard Python modules are provided as separate ports
as they require additional dependencies. They are available as:

py311-gdbm       databases/py-gdbm@py311
py311-sqlite3    databases/py-sqlite3@py311
py311-tkinter    x11-toolkits/py-tkinter@py311
=====
Message from syslog-ng-4.8.2:

--
syslog-ng is now installed!  To replace FreeBSD's standard syslogd
(/usr/sbin/syslogd), complete these steps:

1. Create a configuration file named /usr/local/etc/syslog-ng.conf
   (a sample named syslog-ng.conf.sample has been included in
   /usr/local/etc). Note that this is a change in 2.0.2
   version, previous ones put the config file in
   /usr/local/etc/syslog-ng/syslog-ng.conf, so if this is an update
   move that file in the right place

2. Configure syslog-ng to start automatically by adding the following
   to /etc/rc.conf:

        syslog_ng_enable="YES"

3. Prevent the standard FreeBSD syslogd from starting automatically by
   adding a line to the end of your /etc/rc.conf file that reads:

        syslogd_enable="NO"

4. Shut down the standard FreeBSD syslogd:

     kill `cat /var/run/syslog.pid`

5. Start syslog-ng:

     /usr/local/etc/rc.d/syslog-ng start
Step 19: Clean package installation
The following package files will be deleted:
	/var/cache/pkg/e2fsprogs-libuuid-1.47.2~1056dc8e10.pkg
	/var/cache/pkg/pcre2-10.45.pkg
	/var/cache/pkg/traefik-3.4.1~ad9b40d866.pkg
	/var/cache/pkg/json-c-0.18~18cb3a81e4.pkg
	/var/cache/pkg/traefik-3.4.1.pkg
	/var/cache/pkg/libffi-3.4.6~5b384f8767.pkg
	/var/cache/pkg/e2fsprogs-libuuid-1.47.2.pkg
	/var/cache/pkg/mpdecimal-4.0.0.pkg
	/var/cache/pkg/json-c-0.18.pkg
	/var/cache/pkg/curl-8.14.0~4ed4348278.pkg
	/var/cache/pkg/ivykis-0.43.2.pkg
	/var/cache/pkg/python311-3.11.12_1~090d19032a.pkg
	/var/cache/pkg/node_exporter-1.8.2_1~270aba3cab.pkg
	/var/cache/pkg/glib-2.80.5_1,2.pkg
	/var/cache/pkg/consul-1.20.5~952916ce42.pkg
	/var/cache/pkg/mpdecimal-4.0.0~134034a2cd.pkg
	/var/cache/pkg/consul-1.20.5.pkg
	/var/cache/pkg/curl-8.14.0.pkg
	/var/cache/pkg/syslog-ng-4.8.2~39835351b3.pkg
	/var/cache/pkg/glib-2.80.5_1,2~60ef40d44f.pkg
	/var/cache/pkg/python311-3.11.12_1.pkg
	/var/cache/pkg/pkg-2.1.2.pkg
	/var/cache/pkg/syslog-ng-4.8.2.pkg
	/var/cache/pkg/ivykis-0.43.2~8d63344ec6.pkg
	/var/cache/pkg/pcre2-10.45~a9848dc181.pkg
	/var/cache/pkg/node_exporter-1.8.2_1.pkg
	/var/cache/pkg/pkg-2.1.2~add5bde14a.pkg
	/var/cache/pkg/libffi-3.4.6.pkg
	/var/cache/pkg/py311-packaging-24.2.pkg
	/var/cache/pkg/py311-packaging-24.2~5dc8a10a47.pkg
The cleanup will free 112 MiB
Deleting files: .......... done
Step 20: Create legacy mount in
Step 21: Clean cook artifacts
Step 22: Install pot local
Step 23: Set file ownership on cook scripts
Step 24: Make cook script executable
setting executable bit on /usr/local/bin/cook
Step 25: Create rc.d script to start cook
creating rc.d script to start cook
Step 26: Make rc.d script to start cook executable
Setting executable bit on cook rc file
Step 27: Enable cook service
enabling cook
cook enabled in /etc/rc.conf
=====>  Stop the pot traefik-consul-amd64-14_2
=====>  Remove p4684dc3841002a epair network interfaces
=====>  unmount /mnt/srv/pot/jails/traefik-consul-amd64-14_2/m/tmp
=====>  unmount /mnt/srv/pot/jails/traefik-consul-amd64-14_2/m/dev
===>  exporting traefik-consul-amd64-14_2 @ 1749926854 to /tmp/traefik-consul-amd64-14_2_1.30.3.xz

Similar articles

This site © Honeyguide Group (Pty) Ltd, all the hosted software their respective license owners 2020 - 2021 - Disclaimer