[Vserver] vserver guest sharing the eth0 of host
Hi,
I am testing vserver and all works well for me but one thing. I have
a server with one public IP. I use vserver to have 2 vserver, one is
the prod one and the other is a test one. I start one after stopping
the other (they never runs at the same time). I have a problem in the
fact that i use the eth0 of the host for both of them.
My issue is that when i shut down one of the vserver it shutdown
completly the eth0 interface of the Host... I really find the
documentation troubling. This patchwork of different "how-to", "faq"
and articles is really hard to grasp for a new user of vserver.
to come back on my problem:
/usr/src/util-vserver-0.30.210# vserver mailservertest stop
Stopping periodic command scheduler: cron.
Stopping ClamAV daemon: clamd
Stopping ClamAV virus database updater: freshclam
Stopping MTA: exim4.
Stopping internet superserver: inetd.
Stopping SpamAssassin Mail Filter Daemon: spamd.
Saving the System Clock time to the Hardware Clock...
hwclock is unable to get I/O port access: the iopl(3) call failed.
Hardware Clock updated to Tue May 9 19:52:31 UTC 2006.
Stopping deferred execution scheduler: atd.
Stopping kernel log daemon: klogd.
Stopping system log daemon: syslogd.
Sending all processes the TERM signal...done.
Sending all processes the KILL signal...done.
Saving random seed...done.
Unmounting remote and non-toplevel virtual filesystems...done.
Deconfiguring network interfaces...done.
Cleaning up ifupdown...done.
Deactivating swap...umount: none: not found
umount: /tmp: must be superuser to umount
Not superuser.
done.
Unmounting local filesystems...umount: none: not found
umount: /tmp: must be superuser to umount
umount: /dev/hdv1: not found
umount: /: not mounted
done.
mount: permission denied
Rebooting... ifdown: shutdown eth0: Permission denied
:/usr/src/util-vserver-0.30.210#
at this point the server loose the network. i have not the "Enable
different security models" setup as the FAQ says. I do not see
anything special, any hints ?
--
Cordialement,
Ghislain ADNET.
# vserver-info
Versions:
Kernel: 2.6.16.11-vs2.0.2-rc18
VS-API: 0x00020001
util-vserver: 0.30.210; May 9 2006, 21:43:40
Features:
CC: gcc, gcc (GCC) 3.3.5 (Debian 1:3.3.5-13)
CXX: g++, g++ (GCC) 3.3.5 (Debian 1:3.3.5-13)
CPPFLAGS: ''
CFLAGS: '-g -O2 -std=c99 -Wall -pedantic -W'
CXXFLAGS: '-g -O2 -ansi -Wall -pedantic -W
-fmessage-length=0'
build/host: i686-pc-linux-gnu/i686-pc-linux-gnu
Use dietlibc: no (you have been warned)
Build C++ programs: yes
Build C99 programs: yes
Available APIs: v13,net
ext2fs Source: e2fsprogs
syscall(2) invocation: fast
vserver(2) syscall#: 273/glibc
Paths:
prefix: /usr/local
sysconf-Directory: ${prefix}/etc
cfg-Directory: ${prefix}/etc/vservers
initrd-Directory: $(sysconfdir)/init.d
pkgstate-Directory: ${prefix}/var/run/vservers
vserver-Rootdir: /vservers
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] Another conceptual newbie question
Hi, I read in one of the threads on the mailing list archive that Vservers use CoW. I'm having trouble understanding where, how and for what it is used? Thanks, -FS ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Re: Basic Question
Fareha Shafique wrote: Corey Wright wrote: storage space is conserved because files only exist in one place, but are referenced within multiple vservers though special hard links. memory space is conserved because binaries and shared libraries (and any item in the file cache, i suppose) only exist in memory once, though many vservers may be executing/using the file. the idea is to extend the concept of "shared libraries" to vservers, so that just as a shared library may be referenced by multiple applications and it only exists in memory once, the same is true for a shared library referenced by multiple vservers (by way of vhashify). all the examples i have seen enable vhashify for vserver guests, not the host. i presume it is possible, but it is never applicable in my case because hard links are only shared on a single filesystem (where i mount my host's executables/libraries on /usr and my vservers on /home). hth. corey Thanks, that explaination helps :) Now, is it only libraries and binaries that can be shared or can a vserver be an exact replica of the host. Oh sorry, that was already answered. I guess anything on the filesystem can be shared. How about if I want the filesystem of vserver vs1 to be an exact replica of the host, and only when I write/modify any file a local copy should be created for vs1 (using COW)? Is this possible? Let me explain this better. Say I want to upgrade some software or install new software on my host machine. Before doing this, I would like to test the upgrade in an environment that is an exact replica of the host machine. Is it possible to create a vserver identical to the host so that it can be used as the test environment? Thanks, -FS ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] What is the best way to add a localhost in each vserver under debian sarge
On Mon, 08 May 2006 21:17:31 +0200 Sébastien CRAMATTE <[EMAIL PROTECTED]> wrote: > Hello > > *What is the best way to add a localhost in each vserver under debian > sarge > > I've found a solution using dummy module > I will prefer a global one to add automaticaly lo interface in each > vserver . Maybe with nat ? > > With dummy module I don't know how can I reduce lo net mask so ... :( i'm running debian sarge (on amd64) on my host and guests. i have a guest with apache, squirrelmail, and imapproxy. squirrelmail is configured to connect to "localhost" where imapproxy caches the connection to the real imap server (on another server elsewhere). that works. within the same guest "wget http://localhost/squirrelmail"; says "Connecting to localhost [127.0.0.1]:80... connected." and retrieves the squirrelmail login page. this guest is the only one with squirrelmail installed. so i know within this guest that 127.0.0.1 resolves to the same guest. so the functional equivalent of the "lo" network interface already exists in each guest. i think i'm not understanding what you are trying to do. corey -- [EMAIL PROTECTED] ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Sharing directories
On Mon, 8 May 2006 22:23:46 +0300 "ehab heikal" <[EMAIL PROTECTED]> wrote: > I want some directories of data to be shared across vservers on the same > host, will linking the directories from the host work? yes. you can use a hardlink or "mount --bind". you might have to use vnamespace with "mount --bind" for the guest to see the new mount (as i do when i mount a loopback from the host into a guest). > Can two vservers share the same IP so that one uses some ports and the > other uses the rest? i know the host's ip can be shared with a guest, but i don't know about between two guests. corey -- [EMAIL PROTECTED] ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Re: Basic Question
Corey Wright wrote: On Mon, 08 May 2006 13:30:45 -0400 Fareha Shafique <[EMAIL PROTECTED]> wrote: The following is taken from the Short Introduction, can someone please explain it to me: "Resource sharing: Since vservers can share binaries and libraries without interfering, a second vserver generally cost 40-100 megs of disk space only. Most of this space is a copy of the packaging database. Independent updates: Vservers are updated independently even if they share binaries with other vservers." Does this mean, that as I install programs (like sshd, and other packages) on my vserver that are already installed on my host server, the binaries will be shared? search for "vhashify" on http://linux-vserver.org/alpha+util-vserver for the practical how-to. the resource sharing is not automatic; you must enable it. i'll try to explain the theory briefly. storage space is conserved because files only exist in one place, but are referenced within multiple vservers though special hard links. memory space is conserved because binaries and shared libraries (and any item in the file cache, i suppose) only exist in memory once, though many vservers may be executing/using the file. the idea is to extend the concept of "shared libraries" to vservers, so that just as a shared library may be referenced by multiple applications and it only exists in memory once, the same is true for a shared library referenced by multiple vservers (by way of vhashify). all the examples i have seen enable vhashify for vserver guests, not the host. i presume it is possible, but it is never applicable in my case because hard links are only shared on a single filesystem (where i mount my host's executables/libraries on /usr and my vservers on /home). hth. corey Thanks, that explaination helps :) Now, is it only libraries and binaries that can be shared or can a vserver be an exact replica of the host. For example, how about if I want the filesystem of vserver vs1 to be an exact replica of the host, and only when I write/modify any file a local copy should be created for vs1 (using COW)? Is this possible? Thanks in advance. -FS ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Re: Basic Question
On Mon, 08 May 2006 13:30:45 -0400 Fareha Shafique <[EMAIL PROTECTED]> wrote: > The following is taken from the Short > Introduction, can someone please explain it to me: > "Resource sharing: Since vservers can share binaries and libraries > without interfering, a second vserver generally cost 40-100 megs of disk > space only. Most of this space is a copy of the packaging database. > Independent updates: Vservers are updated independently even if they > share binaries with other vservers." > > Does this mean, that as I install programs (like sshd, and other > packages) on my vserver that are already installed on my host server, > the binaries will be shared? search for "vhashify" on http://linux-vserver.org/alpha+util-vserver for the practical how-to. the resource sharing is not automatic; you must enable it. i'll try to explain the theory briefly. storage space is conserved because files only exist in one place, but are referenced within multiple vservers though special hard links. memory space is conserved because binaries and shared libraries (and any item in the file cache, i suppose) only exist in memory once, though many vservers may be executing/using the file. the idea is to extend the concept of "shared libraries" to vservers, so that just as a shared library may be referenced by multiple applications and it only exists in memory once, the same is true for a shared library referenced by multiple vservers (by way of vhashify). all the examples i have seen enable vhashify for vserver guests, not the host. i presume it is possible, but it is never applicable in my case because hard links are only shared on a single filesystem (where i mount my host's executables/libraries on /usr and my vservers on /home). hth. corey -- [EMAIL PROTECTED] ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] VPS time differ from HOST time ??? why
VPS time differ from HOST time ??? why I've changed my host server time but my VPS keep running with the old one. If I try to do change date inside vps I obtain operation not permited and It's correct because I haven't added the cap to do that. So anyone could tell me how can I update datetime without give cap ? It seems to be logical the host give datetime to all vps. I will go to synchronise the host date/time with ntp but in this case what about my VPS ? Thanks Sébastien ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] use of vserver logo for a presention
I'm going to present vserver to other sysadmin of french state education. :-) Is there is an official and "free" vserver logo that I can use for my presentation ? thanks ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] Re: Vserver on Fedora Core 5 - kernel issue
On 5/7/06, [EMAIL PROTECTED] <[EMAIL PROTECTED] > wrote:Message: 1Date: Sat, 06 May 2006 15:27:06 +0200 From: Daniel Hokka Zakrisson <[EMAIL PROTECTED]>Subject: Re: [Vserver] Vserver on Fedora Core 5 - kernel issueTo: vserver@list.linux-vserver.org Message-ID: <[EMAIL PROTECTED]>Content-Type: text/plain; charset=us-ascii; format=flowedDaniel Hokka Zakrisson wrote:> Jens Holze wrote: >>> Hi! I just tried to install Vserver after upgrading to Fedora Core 5. I>> was quite relieved to be able to use the rpms by Daniel and I did>> exactly as the howto instructed. I installed both kernel(-smp) and >> utils from dhozac's repository. However when I wanted to finish and>> rebooted I realized that the system didn't come up . Actually it hangs>> right after the message "activating quotas..." appears and the boot >> process switches to graphical booting. The system just locks and>> that's it. I do have these two kernels installed right now: 2.6.15-1.2054_FC5>> which was there initially and 2.6.16-1.2107_FC5.vs2.0.2.0.rc19.1 .>>> 1.2107_FC5 was a bit of a brown paper bag release upstream, which was> eventually pulled from the updates repository. Unfortunately, a new one> hasn't been pushed yet, and I'm not sure if all of the issues are fixed > in CVS yet. Hopefully a new one will be released shortly.>1.2111_FC5 was pushed yesterday, and I just pushed the new patchedkernels. This is supposed to fix your problems. Great, it actually did! Thanks and btw great work you did there! You cannot imagine the joy in the eyes of my bosses if I tell them that vservers are up and running again. ;-)Jens ___Vserver mailing listVserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver-- "Wars not make one great" - Master Yoda[EMAIL PROTECTED] - http://yodahome.deICQ: 252623701senseless wisdom of life - a geek's blog - http://yodahome.de/blog ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] Sysklog doesn't work
Hello I'v use latest vserver stable release with 2.6 kernel Sometimes on few vps syslog doesn't log nothing (especialy after a clone or an ip conflict) ? The daemon is started but I don't see anything in /var/log/syslog Any Idea ? ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] What is the best way to connect from 1 vserver to other vserver within the same host ?
Herbert Poetzl a écrit : On Sat, May 06, 2006 at 08:27:10AM +0200, Peter Mann wrote: On Fri, May 05, 2006 at 10:22:13PM +0200, Sébastien CRAMATTE wrote: What is the best way to connect from 1 vserver to other vserver within the same host ? I've got an Ldap directory inside one vserver and a postfix that use ldap in another vserver. I search the best way to connect to the ldap server with the maximum of security. you can simply use the 'network' connection between them, as it will not leave the host system (it will go over the loopback lo interface, and cannot be sniffed by other guests, given that you use a secure setup which is default) But each VPS by default doesn't have lo interface ? What do you mean ? My VPS have each one a PUBLIC IP so ? Could you explain me a little bite more ? vserver technology for a minute) and use SSL connection - ldaps:// or stunnel4 the best way is IMHO using SSL connection independent on vserver technology ... that will do also, of course trading performance for flexibility when you move the guests apart ... I'm looking closer about this but I prefer the first solution HTH, Herbert -- 5o Peter.Mann at tuke.sk ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
