Re: [zones-discuss] Capped-Memory - swap < physical? (was: Failing to NFS mount on non-global zone)
We run into this problem repeatedly... "swap" in Solaris terms refers to
total VM. This is true on most UNIX systems. However, we often
mistakenly refer to pagefile ("swap disk") simply and incorrectly as "swap".
Therefore, the "swap cap" is better thought of as a VM cap. Rcapd
(physical) will keep RSS in check. When exceeded it will page out to
the page file (swap disk). When total VM (RSS+Pagefile+tmpfs) exceeds
the zone.max-swap limit malloc() will fail.
Thus, "swap" is the right term, but its almost universally misused.
Best example is the "swap" column in vmstat output.
benr.
Steve Lawrence wrote:
> Swap limits how much of the systems total memory (ram + disk) can be reserved.
> When this limit is hit, allocations, such as malloc, will fail. Physical
> memory limits resident memory. When this limit is hit, the zone will page
> pages in memory to disk swap.
>
> In general, your example config is only useful if the zone uses a lot of
> physical memory, but does not reserve as much swap. An example is an
> application which maps a large on-disk file into memory. No swap is needed
> for the file, (because the file can be paged back to the a filesystem), but a
> large amount of physical memory may be needed to pull the file into RAM.
>
> Such applications are rare, so your example config is not often used. Your
> basically right is saying that this config does not make any sense in most
> cases.
>
> -Steve L.
>
> On Fri, Feb 20, 2009 at 08:36:20PM +0100, Alexander Skwar wrote:
>
>> Hi!
>>
>> On Fri, Feb 20, 2009 at 17:50, Asif Iqbal wrote:
>>
>>
>>> capped-memory:
>>>physical: 1G
>>>[swap: 512M]
>>>
>> A question regarding this setting - does that setting really make
>> sense? I suppose he tries to achieve that the zone as a max.
>> uses 1G of real memory and no more than 512M of Swap.
>>
>> But does it really do that?
>>
>> Or is he rather limiting the amount of allocable mem to 512M?
>>
>> Alexander
>> --
>> [ Soc. => http://twitter.com/alexs77 | http://www.plurk.com/alexs77 ]
>> [ Mehr => http://zyb.com/alexws77 ]
>> [ Chat => Jabber: alexw...@jabber80.com | Google Talk: a.sk...@gmail.com ]
>> [ Mehr => MSN: alexw...@live.de | Yahoo!: askwar | ICQ: 350677419 ]
>> ___
>> zones-discuss mailing list
>> zones-discuss@opensolaris.org
>>
> ___
> zones-discuss mailing list
> zones-discuss@opensolaris.org
>
___
zones-discuss mailing list
zones-discuss@opensolaris.org
Re: [zones-discuss] Capped-Memory - swap < physical? (was: Failing to NFS mount on non-global zone)
Swap limits how much of the systems total memory (ram + disk) can be reserved. When this limit is hit, allocations, such as malloc, will fail. Physical memory limits resident memory. When this limit is hit, the zone will page pages in memory to disk swap. In general, your example config is only useful if the zone uses a lot of physical memory, but does not reserve as much swap. An example is an application which maps a large on-disk file into memory. No swap is needed for the file, (because the file can be paged back to the a filesystem), but a large amount of physical memory may be needed to pull the file into RAM. Such applications are rare, so your example config is not often used. Your basically right is saying that this config does not make any sense in most cases. -Steve L. On Fri, Feb 20, 2009 at 08:36:20PM +0100, Alexander Skwar wrote: > Hi! > > On Fri, Feb 20, 2009 at 17:50, Asif Iqbal wrote: > > > capped-memory: > >physical: 1G > >[swap: 512M] > > A question regarding this setting - does that setting really make > sense? I suppose he tries to achieve that the zone as a max. > uses 1G of real memory and no more than 512M of Swap. > > But does it really do that? > > Or is he rather limiting the amount of allocable mem to 512M? > > Alexander > -- > [ Soc. => http://twitter.com/alexs77 | http://www.plurk.com/alexs77 ] > [ Mehr => http://zyb.com/alexws77 ] > [ Chat => Jabber: alexw...@jabber80.com | Google Talk: a.sk...@gmail.com ] > [ Mehr => MSN: alexw...@live.de | Yahoo!: askwar | ICQ: 350677419 ] > ___ > zones-discuss mailing list > zones-discuss@opensolaris.org ___ zones-discuss mailing list zones-discuss@opensolaris.org
Re: [zones-discuss] zonestat.pl without Resource Pools
Jeff, Sorry this has taken so long to get to but yes, if I enable the pools and pools/dynamic services it runs as expected. Has any work started on a 'real' zonestat yet? On Tue, Feb 17, 2009 at 9:44 PM, Jeff Victor wrote: > On Tue, Feb 17, 2009 at 4:09 PM, Derek McEachern > wrote: > > We are in the process of deploying applications into zones and I've been > looking at how to monitor what each zone is up to regarding resource usage. > > I downloaded the zonestat.pl script to play around with and out of the > box it didn't actually give me any zone specific information. > > > > After poking around the code it turns out it won't break out any zone > level details unless resource pooling is enabled. We are deploying our > zones > > without resource restrictions. > > This is a known problem with v1.3. I am working on v1.3.1 which will > fix that problem. > > As a temporary workaround: does it work correctly if you enable pools > and don't configure any? > > GZ# svcadm enable pools > GZ# svcadm enable pools/dynamic > > > > I hacked the script to get around this problem for now but is this a > feature we can get added to the baseline? Jeff, how are changes handled to > this > > script since you appear to the owner? > > To make a contribution to the OpenSolaris community, first you would > register as a contributor. The other option is to request a specific > change in behavior, and I will try to get to it promptly. > > However, please understand (as the project web pages state) that this > is a prototype to help us learn what a 'real' zonestat should do. The > 'real' zonestat would be written in C or D for improved functionality > and considerably better performance. This Perl script consumes a great > deal of CPU cycles. > > > --JeffV > ___ zones-discuss mailing list zones-discuss@opensolaris.org
[zones-discuss] Capped-Memory - swap < physical? (was: Failing to NFS mount on non-global zone)
Hi! On Fri, Feb 20, 2009 at 17:50, Asif Iqbal wrote: > capped-memory: >physical: 1G >[swap: 512M] A question regarding this setting - does that setting really make sense? I suppose he tries to achieve that the zone as a max. uses 1G of real memory and no more than 512M of Swap. But does it really do that? Or is he rather limiting the amount of allocable mem to 512M? Alexander -- [ Soc. => http://twitter.com/alexs77 | http://www.plurk.com/alexs77 ] [ Mehr => http://zyb.com/alexws77 ] [ Chat => Jabber: alexw...@jabber80.com | Google Talk: a.sk...@gmail.com ] [ Mehr => MSN: alexw...@live.de | Yahoo!: askwar | ICQ: 350677419 ] ___ zones-discuss mailing list zones-discuss@opensolaris.org
Re: [zones-discuss] dhcp server in a zone with shared IP
>>Since you have build 107, why not use VNICs and run an exclusive IP
>>Instance zone. That would make your situation a little easier to manage.
Ah, yes . I forgot about that.
So I configured a vnic in the global zone:
[r...@sol9 Fri Feb 20 18:56:39 /zones/template/root ]
$ dladm show-vnic
LINK OVER SPEED MACADDRESS MACADDRTYPE VID
vnic0eri0 1002:8:20:fd:5e:d5 random 0
and changed the zone configuration according to that message:
$ zonecfg -z dnsserver info
zonename: dnsserver
zonepath: /zones/dnsserver
brand: native
autoboot: true
bootargs:
pool:
limitpriv: default,net_rawaccess
scheduling-class:
ip-type: exclusive
inherit-pkg-dir:
dir: /lib
inherit-pkg-dir:
dir: /platform
inherit-pkg-dir:
dir: /sbin
inherit-pkg-dir:
dir: /usr
fs:
dir: /export/install
special: /export/install
raw not specified
type: lofs
options: [read-only]
net:
address not specified
physical: vnic0
defrouter not specified
device:
match: /dev/ip
The dhcp config file in the zone is :
[r...@dnsserver Fri Feb 20 19:03:14 ~ ]
$ cat /etc/inet/dhcpsvc.conf
DAEMON_ENABLED=TRUE
RESOURCE=SUNWfiles
RUN_MODE=server
PATH=/var/dhcp
CONVER=1
INTERFACES=vnic0
LOGGING_FACILITY=3
But still no go ...
I could start the in.dhcpd in debug mode from the command line and it worked.
But enabling the service always failed with the error message:
[ Feb 20 18:25:05 Executing start method ("/usr/lib/inet/in.dhcpd"). ]
svc.startd could not set context for method: setppriv: Not owner
[ Feb 20 18:25:05 Method "start" exited with status 96. ]
I finally removed the privileges from the service like described here
http://forums.sun.com/thread.jspa?threadID=5236367
And now the dhcp server works in the zone.
regards
Bernd
--
This message posted from opensolaris.org
___
zones-discuss mailing list
zones-discuss@opensolaris.org
Re: [zones-discuss] Failing to NFS mount on non-global zone
> fs: >dir: /netapp/tacacs >special: /syslog-local/netapp/tacacs >raw not specified >type: lofs >options: [] > fs: >dir: /netapp/syslog >special: /syslog-local/netapp/syslog >raw not specified >type: lofs >options: [] > [Connected to zone 'syslog' pts/2] > bash-3.00# cat /etc/vfstab | grep netapp > 192.168.0.25:/volB/netapp/syslog - /netapp/syslog nfs - no hard,intr,bg,xattr > 192.168.0.25:/volA/netapp/tacacs - /netapp/tacacs nfs - no hard,intr,bg,xattr You LOFS-mount the directory *and* you NFS-mount it inside the zone? How about one or the other? Why not just NFS mount the directory from syslog and that's that? In fact, my memory is fuzzy but I don't think you can LOFS an NFS-mount done by the global zone. There's a credential problem, the NFS client is really one client (the global zone) but access to the mount looks different when it's done from the global zone or the non-global zone. There's a bug on record for this, I think. CT ___ zones-discuss mailing list zones-discuss@opensolaris.org
[zones-discuss] Failing to NFS mount on non-global zone
I configured a zone called `syslog' where I am failing to mount a NFS folder and getting device busy zonecfg -z syslog info zonename: syslog zonepath: /syslog brand: native autoboot: true bootargs: -m verbose pool: limitpriv: default,sys_time scheduling-class: FSS ip-type: shared inherit-pkg-dir: dir: /lib inherit-pkg-dir: dir: /platform inherit-pkg-dir: dir: /sbin inherit-pkg-dir: dir: /usr fs: dir: /var/logs special: /var/logs raw not specified type: lofs options: [] fs: dir: /usr/local special: /syslog-local/usr/local raw not specified type: lofs options: [] fs: dir: /netapp/tacacs special: /syslog-local/netapp/tacacs raw not specified type: lofs options: [] fs: dir: /netapp/syslog special: /syslog-local/netapp/syslog raw not specified type: lofs options: [] net: address: 192.168.0.113 physical: aggr1 defrouter: 192.168.0.1 dedicated-cpu: ncpus: 1-8 importance: 10 capped-memory: physical: 1G [swap: 512M] attr: name: comment type: string value: "syslog server" rctl: name: zone.max-swap value: (priv=privileged,limit=536870912,action=deny)~# zlogin syslog [Connected to zone 'syslog' pts/2] Last login: Fri Feb 20 11:16:32 from syslog1 Sun Microsystems Inc. SunOS 5.10 Generic January 2005 # bash bash-3.00# cat /etc/vfstab | grep netapp 192.168.0.25:/volB/netapp/syslog - /netapp/syslog nfs - no hard,intr,bg,xattr 192.168.0.25:/volA/netapp/tacacs - /netapp/tacacs nfs - no hard,intr,bg,xattr bash-3.00# mount /netapp/syslog nfs mount: mount: /netapp/syslog: Device busy Any idea what I am doing wrong ? -- Asif Iqbal PGP Key: 0xE62693C5 KeyServer: pgp.mit.edu A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? ___ zones-discuss mailing list zones-discuss@opensolaris.org
Re: [zones-discuss] Share a non-global zone folder
Le 20 févr. 09 à 15:53, Steffen Weiberle a écrit : On 02/19/09 16:26, Nicolas Dorfsman wrote: Le 19 févr. 09 à 17:41, Wolfgang Pungartnik a écrit : Asif, just mount and share the folder from the global zone. Loopback mount the folder into the non-global zone. And don't mount from non-global to global thru NFS ! It's not supported ! It may cause a deadlock, not a panic--this is not specific to zones ! Funny. Let me re-write : Mount and share the folder from the global zone. Now you could use automount to mount your share from any box on your network...except on zones running on the same machine than your share. Hummmbe careful, if any user use /net from a zone, he has the capacity to lock the whole server. :-( smime.p7s Description: S/MIME cryptographic signature ___ zones-discuss mailing list zones-discuss@opensolaris.org
Re: [zones-discuss] Share a non-global zone folder
On 02/19/09 16:26, Nicolas Dorfsman wrote: Le 19 févr. 09 à 17:41, Wolfgang Pungartnik a écrit : Asif, just mount and share the folder from the global zone. Loopback mount the folder into the non-global zone. And don't mount from non-global to global thru NFS ! It's not supported ! It may cause a deadlock, not a panic--this is not specific to zones ! ___ zones-discuss mailing list zones-discuss@opensolaris.org
Re: [zones-discuss] Share a non-global zone folder
On 02/19/09 16:26, Nicolas Dorfsman wrote: Le 19 févr. 09 à 17:41, Wolfgang Pungartnik a écrit : Asif, just mount and share the folder from the global zone. Loopback mount the folder into the non-global zone. And don't mount from non-global to global thru NFS ! It's not supported ! !! It may cause the system to panic !! ___ zones-discuss mailing list zones-discuss@opensolaris.org
Re: [zones-discuss] dhcp server in a zone with shared IP
On 02/20/09 05:29, Bernd Schemmer wrote: Hi can I configure a dhcp server in a zone with shared IP? I don't find a definitve answer with google for this question If it can be configured : is it documented howto to configure the Solaris dhcp server in a zone? I'm using $ uname -a SunOS sol9 5.11 snv_107 sun4u sparc SUNW,Sun-Blade-1000 regards Bernd I have not done this. I thought the answer was 'no' :) However, http://www.opensolaris.org/os/community/zones/faq/#svc_dhcp points to http://www.opensolaris.org/jive/thread.jspa?messageID=197789&tstart=0 Since you have build 107, why not use VNICs and run an exclusive IP Instance zone. That would make your situation a little easier to manage. Steffen ___ zones-discuss mailing list zones-discuss@opensolaris.org
[zones-discuss] dhcp server in a zone with shared IP
Hi can I configure a dhcp server in a zone with shared IP? I don't find a definitve answer with google for this question If it can be configured : is it documented howto to configure the Solaris dhcp server in a zone? I'm using $ uname -a SunOS sol9 5.11 snv_107 sun4u sparc SUNW,Sun-Blade-1000 regards Bernd -- This message posted from opensolaris.org ___ zones-discuss mailing list zones-discuss@opensolaris.org
