David and Jeff; This is the information I needed to clarify my understanding. Thank you both for your input.
Daniel >>> Jeff Victor <[EMAIL PROTECTED]> 10/16/2006 7:09 PM >>> David Powell wrote: > Daniel, > > On Mon, Oct 16, 2006 at 05:00:44PM -0400, Daniel Synnott wrote: > >>Just to clarify, I would be creating a project database and assigning my >>zones >>to a particular project with resource controls like the following >>partial list. >> >> project.max-shm-ids >> project.max-msg-ids >> project.max-sem-ids >> project.max-shm-memory >> process.max-sem-nsems >> process.max-sem-ops >> process.max-msg-qbytes >> project.max-device-locked-memory >> project.max-port-ids >> process.max-port-events >> >>Do I understand this correctly? Would I also be correct in assuming >>that this must be configured in the global zone? > > > Almost. While entire zones can be assigned to pools, they aren't > assigned to projects. The processes within a zone run in projects > which are defined by the zone. If this is confusing, think of pools > as being an abstraction representing a chunk of hardware (at this > point just CPUs), and projects as being an administrative abstraction > representing a collection of users. Just like a zone isn't assigned > to a particular user, a zone isn't assigned to a project. > > So you can set these resource controls on any project in the system, > be it in a global zone or a non-global zone. This will let you > control how these resources are used by each project, but since a > zone defines its own projects, this won't give you absolute control > over how these resources are used by a zone. Further, there are benefits to create network-wide projects, and using the network-wide projects database in each zone's /etc/nsswitch.conf . Maybe all production databases will use the same limits, and they can be defined and maintained in one central place. Even if they won't use the same limits, for many sites it will be saner (simpler, less confusing) to store all of those limits in one place, rather than having each zone's project info stored in each zone. -- -------------------------------------------------------------------------- Jeff VICTOR Sun Microsystems jeff.victor @ sun.com OS Ambassador Sr. Technical Specialist Solaris 10 Zones FAQ: http://www.opensolaris.org/os/community/zones/faq -------------------------------------------------------------------------- _______________________________________________ opensolaris-help mailing list [email protected]
