[Vserver] network isolation implementation - pros and cons
Hi guys, I am collecting informations concerning existing network isolation/virtualization done in several container solutions like openvz, xen, vserver, metacluster, bsd jails, etc ... The objective is to find the cons and pros for each solutions. For example, can we do broadcast and multicast between containers on the same machine ? What is the performance impact ? Is the ressource management easy to implement ? Is the network more difficult to manage ? Do we need specific user tools ? If my application does bind INADDR_ANY:80, can I connect via loopback address ? etc ... The collected information will be compiled in order to write a paper. Has someone informations on that ? url ? faq (not vserver) ? or time to answer ? ;) Thanks in advance -- Daniel ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] Problem using vcopy and vyum
Hi all, I recently was priviliged to work with vserver the first time and I can only say "great" - really easy to use and simply a joy to work with (and along the way very usefull too ;-). I was able to set up the necessary environment, to create some guest with some additional packages beeing installed via vyum, but one awkward problem is left which I really need to be solved. As I mentioned I can use vyum after I created a guest using "vserver ... build ... -m yum ... -d fc5" - all additional packages installed without any problems. If I now use vcopy to clone a guest, the guest itself (after changing ip-adress etc.) works fine (it can be started and entered) but vyum doenst work anymore on those cloned guests (but still works on the original guest). As far as I can see vyum is the absolutely only thinkg that doesn't work on cloned guests. The error message I get is: # vyum clone -- install less Can not find file for 'RPMSTATEDIR'; aborting I am using yum 2.6.1, util-vserver (-core etc.) 0.30.210 on fc5 (2.6.17-1.2157_FC5.vs2.0.2.0.rc26.1smp), all guests are fc5 too (created according to http://linux-vserver.org/VServer+installation+Fedora+Core +5). Any ideas on this, what could be the problem, are there any other steps to perform to clone a guest but using vcopy and changing the individual configuration of the clone? Thanks in advance! Regards, Thomas Frenken ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] guest network interface disappears
Hi there, on Tuesday, July 25, 2006 at 5:58:17 PM there was posted: MSZ> There is a flag in /proc, I forget where, that can be set MSZ> to change the above behavior. # /sbin/sysctl -w net.ipv4.conf.all.promote_secondaries=1 MSZ> With the flag set - then when you take down the (current) MSZ> primary address, one of the secondary addresses becomes MSZ> primary. MSZ> This has been on the mailing list before, should be findable. See above. -- regards 'n greez, Guenther Fuchs (aka "muh" and "powerfox") ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] guest network interface disappears
On Tue July 25 2006 09:01, Martin Pajak wrote: > Herbert Poetzl schrieb: > > > suspect that one guest gets a 'primary' (i.e. not > > secondary) ip on the network (check with ip a ls) > > I tested this and all guests have only their designated addresses bound, > so this shouldn't be the cause here. I don't know the > "primary/secondary propagation", but I guess I don't need it in this > scenario. > The first address assigned to a nic becomes the primary (only). Additional addresses become 'secondary'. With the default set-up, then if you take down the primary, all addresses go down. There is a flag in /proc, I forget where, that can be set to change the above behavior. With the flag set - then when you take down the (current) primary address, one of the secondary addresses becomes primary. This has been on the mailing list before, should be findable. Mike ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] guest network interface disappears
Herbert Poetzl schrieb: On Thu, Jul 13, 2006 at 05:29:28PM +0200, Martin Pajak wrote: We are running latest Gentoo vserver with 8 guest instances on it. Most of them are migrated from a xen environment to vserver and are running fine, but we encountered a strange problem there: 3 of the systems lost their network interface 4 times within a week If I enter the guest in such a case, the "ip" or "ifconfig" commands shows no network interfaces and I can only restart the guest to get it to work again for now. Have anyone an idea how it comes to and how can I avoid it? Meanwhile I tested a bit more and found out that there are 3 of 8 systems involved. One backup system and two production systems. Everytime time if I shutdown the backup system (normally every midnight to reset the snapshots for backup) the both other systems looses their network interface. If I shutdown the systems to restart them, I get "RTNETLINK answers: Cannot assign requested address" error. After restart everything is fine. although I have no details about your setup, I'd Our setup: single amd64 with 2GB ram 2 300GB hdd running as softraid 1 with lvm2 and evms latest gentoo vserver all guests have own internet ip's and are running on a evms volumes with snapshot feature for backup purposes suspect that one guest gets a 'primary' (i.e. not secondary) ip on the network (check with ip a ls) I tested this and all guests have only their designated addresses bound, so this shouldn't be the cause here. I don't know the "primary/secondary propagation", but I guess I don't need it in this scenario. Does anyone have a suggestion with these additional infos? Thanks in advance Martin ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
