Dear Harri,
I don't check it yet, but is -XX:+UseContainerSupport a requirement for this??
>root@c526096eb86e:/# java -XX:MaxRAMPercentage=20.0 -XX:MinRAMPercentage=10.0
>-XX:+PrintFlagsFinal -
>root@debian10:~# java -XX:MaxRAMPercentage=20.0 -XX:MinRAMPercentage=10.0
>-XX:+PrintFlagsFinal
Hello,
can't verify this in a hurry, but IMHO this more likely caused by others than
LXC, like a regression in ps. The top command also offer a column for this, you
might to have to enable it via the 'f'(ields) menu.
Compare the ouput of 'ps --version'; maybe you can try to use the older ps
Dear Mike,
for LXD, I don't know. For LXC, to my knowledge only for that moment you named
"launch", .i.e. while lxc-start is reading this files in the phase of preparing
the container environment.
With other word: It's "save" to change configuration for an running container;
it will be used
Dear Oliver,
I just want to mention, that with this workaround it isn't a real snapshot
anymore but may be called a "slow bullet" instead: It will take some real time
to copy the whole image and in contrast to a snapshot, it will be not
completely consistent if the Container is running at this
NULL;
743 }
744 *p2 = '\0';
[...]
>-----Original Message-
>From: lxc-users [mailto:lxc-users-boun...@lists.linuxcontainers.org] On Behalf
>Of Jäkel, Guido
>Sent: Thursday, August 15, 2019 3:13 PM
>To: 'LXC users mailing-list'
>Subject: [lxc-users] LXC 3.2.1 ./. CGroup
Dear all,
Using LXC in my Gentoo environment for years (since 0.8.4) and currently using
V2.1.1 in Production, I'm just evaluating LXC 3.2.1.
I'm still using CGroups V1 with all available controllers mounted on /cgroups
and /cgroups/lxc as a parent group. Until yet, this works well. But with
Because
* your Container is not started as a privileged one?
* you let bind-mount /sys readonly?
Guido
>-Original Message-
>From: lxc-users [mailto:lxc-users-boun...@lists.linuxcontainers.org] On Behalf
>Of Saint Michael
>Sent: Monday, May 27, 2019 1:49 PM
>To: LXC users mailing-list
Dear Michael,
> For me, the single point of using LXC is to be able to redeploy a
complex
> app from host to host in a few minutes. I use
one-host->one-Container. So
> what is the issue of giving all power to the containers?
I don't understand yet, why you want to use
c-users [mailto:lxc-users-boun...@lists.linuxcontainers.org] On Behalf
>Of Jäkel, Guido
>Sent: Thursday, January 10, 2019 9:26 AM
>To: 'lxc-users'
>Subject: [lxc-users] Issue concerning total CPU usage in top (package procps)
>
>Dear all,
>
>I'm using Gentoo for LXC host and contai
Dear all,
I'm using Gentoo for LXC host and containers. After upgrading the procps
package from 3.3.12 to 3.3.15, in the top application the value of summed CPU
usage inside a container is always 0 (zero).
* This issue shows up in the containers only, but not on the host
* If I switch the
Hi,
in
https://stackoverflow.com/questions/45905642/mapping-kernel-config-variables-to-modules
there's described that the corresponding module Makefile will have line like
obj-${CONFIG_...} [:+]= .o
But this will require the kernel sources at runtime, which is not reasonable of
>I have no idea on how LXD container works now.
>Maybe udev is disabled or some other mechanism may be used to manage device.
LXC/LXD is not limited to that, but the probably most used model for Containers
it that it should form a key-ready environment for a Linux userland to run
applications,
an apache2 on port 8082, and it falls at the same time as
>haproxy ports 80 and 443. Only ssh keeps responding.
>Weird!
>
>Michel
>
>
>
>
>
> On 8 Jun 2018, at 08:15, Jäkel, Guido <mailto:g.jae...@dnb.de> > wrote:
>
> Dear Michel,
>
>
Dear Michel,
did you already take a look on the other parts of the involved network
environment? Maybe you have an issue on layer two vs. three concerning the MAC
<-> IP correlation on the involved next upstream switch. You may check the ARP
tables.
And -- because you "loose" port 80 and 443,
Dear Michel,
Thank you! That's I was looking for long.
From a quick look, IMHO the short paragraph about the Linux bridge miss the
fact, that this "device" -- in addition to attach other NICs to it -- has a
"build-in" pseudo-NIC to attach the hosts "IP Stack" here.
Like the additional MACVLAN
Dear G.,
may you provide you the ebuild for V3 or point me to a source? Me and others
are interested in, see https://bugs.gentoo.org/652582
Your lxc-start fail at
if (!cgroup_init(handler)) {
ERROR("Failed initializing cgroup support");
goto
Dear Fajar,
with respect, imho this time you go too far. It's definite not in the
responsibility of any common application to be data-consistent at every point
in time. In the opposite, there are well-known and well-respected signaling
mechanisms at both sides -- application and operating
Dear Stéphane,
I got time to play around with injecting mounts into a running container
You suggest:
Setup steps, before you first start the container:
1) mkdir /tmp/shared-c1
2) mount --bind /tmp/shared-c1 /tmp/shared-c1
3) mount --make-rshared /tmp/shared-c1
4)
Fri, Oct 07, 2016 at 01:26:26PM +, Jäkel, Guido wrote:
>> >-Original Message-
>> >From: lxc-users [mailto:lxc-users-boun...@lists.linuxcontainers.org] On
>> >Behalf Of Stéphane Graber
>> >Sent: Friday, October 07, 2016 11:46 AM
>> >To: LXC u
>On Fri, Oct 07, 2016 at 07:03:21AM +, Jäkel, Guido wrote:
>> Dear experts,
>>
>> I wonder if it's possible to establish a bind mount filesystem resource from
>> the LXC host to an already running container in
>an manual way, but analogous as it is done at startup t
Dear Harald,
years ago I scripted my own lxc-free to be used as something lxc-aware inside
the container. It's based on the memory controllers values, too. Please take a
look at memory.stats, too. Here, I get other values to calculate the values for
RSS+Cache, active, free and used RAM, too.
Dear Tomasz,
What's the output of
watch -n 1 cat /proc/sys/kernel/random/entropy_avail
around blocking or hanging times?
>-Original Message-
>From: lxc-users [mailto:lxc-users-boun...@lists.linuxcontainers.org] On Behalf
>Of Tomasz Chmielewski
>Sent: Tuesday, January 26, 2016
Dear all,
this is my 2nd try to get an "Ubuntu Desktop" container running on a hosting
server using "Gentoo" at home. The server is used as a router, media server,
audio player. It is used and administrated "headless" via ssh. But it's
hardware is a vanilla PC and now it also should be usable
In addition, it might be helpful for you to get an outline of the current
running processes and daemons inside the "Desktop Container":
root@delly ~ # ps faux | cut -c 66-
[...]
lxc-start -n celly -l DEBUG -L /var/log/lxc/celly.out
\_ /sbin/init
\_
Dear Robert,
now it become a meta discussion at all. But in fact it was such one since you
start. Because, in core you don’t ask help or a solution, you just want to
complain about the level of knowledge to use LXC in comparison to similar tools.
Break here, if you can't agree to this!
But
Dear Yonsys,
this is a known bug/feature of the controller, You can't
* lower memory.memsw limit_in_bytes below memory.limit_in_bytes
* raise memory.limit_in_bytes above memory.memsw limit_in_bytes
Notice that the default is infinite (max integer). For the typical usecase to
lower the
Dear Bostjan,
I already told my 5ct on this many month ago, but now -- with LXC 1.x -- it
might be the time to discuss about it, again.
IMHO one want to describe dependencies and it's up to the computer to derive
any order from that. It's the same feature as within all the different init
i did not get the abstarct resource part. Can't mount ext4 from being
inside a container after exporting the required
volume to it. ???
Dear Mohan,
IMHO it's best practice to have an virtual environment like a LX-Container as
much as independent from a concrete hosting environment. And the
Dear Serge,
Might be worth having lxc order the rules so that it'll always just work.
The order of execution needed depends on the actual and desired values
crossover the items.
The setters of the Memory Controller should be act like
Set_MemSwap(Limit) {
Mem :=
Dear Anthony, Dear Fajar,
On may unit letters like 'G' while setting the values of the memory cgroup
controller.
But note that memsw stands for the sum of memory and swap. Therefore, can't
set memory.memsw.limit_in_bytes to a value *lower* than the actual value of
Dear Adam,
From: lxc-users [mailto:lxc-users-boun...@lists.linuxcontainers.org] On Behalf
Of Adam Gold
I've only ever created containers using lxc-create. Are you saying that
I should manually create a template container at the root of a
particular zfs filesystem (e.g. zfs/lxc/containers/c1)
Dear Joris,
BTW: I hate solutions by counter questions. Therefore, it should not be a
solution but just a question of interest
why the physical reach-through of interfaces is your preferred solution.
Because my hosts are virtuals, and it's very easy to me to provide them 3
interfaces, mounting
Dear Joris,
I've compared all configurations, nothing has changed... When I rollback my
host with the last full backup, all goes OK... but
it's the third time it re appears...
Sorry, but that's illogical: If it reproducible work with some backup-image but
not with the current one despite of a
Dear Anjali,
i noticed that in your posted snippets, there are different MACs for what's
you're want to use to get the IP from the DHCP-daemon and the one the
Containers veth got.
you wrote
ip address=172.16.0.3 netmask=255.255.0.0
dhcp
host ip=172.16.0.1 mac=0A:00:DE:C0:DE:01
Dear all,
during some private chat communication with Lukas it turns out, that (at least)
the limit for the number of file handles per user (ulimit -n) was much too low
for real world usecases . It was set at 1024 for all user, as well on the host
as on the containers. I advise him to adjust
Better stick with Gavin's suggestion if possible. Or do some scripting
to get server's IP address before calling iptables.
... or use a source ip match and the negation feature to extend the rule to
skip traffic from internal addresses
greetings
Guido
Dear Lukas,
IMHO that's no network related problem (e.g. because all of the ssh handshake
is well done and the terminal session is just about to start). But this
container is out of some other resources, maybe filehandles?
I assume you need this container working and I also assume that the
Dear Mohit,
Please look out for some slide shows or blog articles about LXC. Maybe the
following may help you to master the first hurdles, too:
* The templates are used to set up a (more-or-less) key-ready root filesystem
of some Linux distribution. They wil act as a bootstraper and will
Dear Pheb,
Your lxc-checkconfig says:
Cgroup memory controller: enabled
But in the output of the mount command, the memory keyword is missing. You
have to look for the reason.
For reference I append what one of my hosts state:
# grep cgroup /proc/mounts
39 matches
Mail list logo
