On Mon, Aug 01, 2005 at 11:32:38AM +0200, Gebhardt Thomas wrote: > Hi, > > I'm trying to configure a VServer for interactive login, where users > can access their NFS mounted home directories and I was trying > to figure out, what is the "best practice" to do that. > > So, I have a few questions: > > 1. We are still running 2.4.29-vs1.2.10 on our production servers; > do I need to upgrade to kernel 2.6.x and/or vs 2.0-rc-x ?
well, NFS was not tested for 2.4/1.2.x so I just don't know what I know for sure is that xid tagging is not present there (over NFS) > 2. If using vs2.0: What is the preferred XID tagging config > (all uids, gids < 65000) the default should be fine (UGID24) > 3. Should I NFS mount the home directories on the master server (a) > or within the vserver (b)? actually you can do both, but if the mount is kind of static (i.e. only done once at bootup) I'd sugegst to do it on the host, right before you start the guests ... > if (a): mount directly into the vserver chroot or mount outside the > vserver filesystem and use bind mounts? Does the master server both should work fine, bind mounts might be more flexible > need to be aware about the users on the vserver (/etc/passwd, ...)? nope > if (b): which extra privileges/capabilities to grant the vserver? should work out of the box (with 2.6/2.0 that is) > 4. Are there NFS locking issues? Can multiple vserver on the > same master mount the home directories simultaneously? well, there are the 'typical' nfs locking issues, but they are not really vserver related ... > 5. Is it possible to get rpc.quota information on the vserver? hmm, actually never tried ... so no idea :) > 6. A previous posting says that one should prefer tcp over > udp mounts. Can you elaborate, why? Is this a general advice > or meant especially for vservers? it's a general advice from the NFS folks who said: NFS over UDP is broken by design, and we do not care if it works or not (and it does not work reliably with newer hardware/kernels) > Thanks for your help / pointing me to the appropriate docs. you're welcome! Herbert > Cheers, Thomas > _______________________________________________ > Vserver mailing list > [email protected] > http://list.linux-vserver.org/mailman/listinfo/vserver _______________________________________________ Vserver mailing list [email protected] http://list.linux-vserver.org/mailman/listinfo/vserver
