Re: [Lxc-users] Fwd: Container inside an ESX VM
On Tue, Apr 26, 2011 at 6:03 PM, Mauras Olivier oliver.mau...@gmail.comwrote: On Sat, Apr 23, 2011 at 12:40 PM, Mauras Olivier oliver.mau...@gmail.comwrote: Hi Geordy, Thanks for your reply. The first one is actually already set here. I asked ESX folks to create me my own vswitch with promisc mode enabled. I saw the second one coming, but didn't think that could make something... There's also a setting like mac.verify that can be set to false directly from the .vmx file to allow you to use another MAC than 00:50:56:xx for your VM. I'll try to force a high MAC in the 00:50:56 subset for my containers and see what happens. I'll let you know, Olivier On Sat, Apr 23, 2011 at 9:12 AM, Geordy Korte gko...@gmail.com wrote: On Sun, Apr 17, 2011 at 8:39 AM, Geordy Korte gko...@gmail.com wrote: Thought about it some more and i think it might be an advanced esx feature that restricts this. Basically a couple of adv features block spoofing and mac changes on a vhost. I will try to find the specific command you need to run on an esx host tomorrow, or maybee someone can google it. I am 100% sure that it's not a bug in either esx or lxc and no modifications are needed on the lxc side. Hi, Sorry for the delay, kids birthday and my new job has not left me with much time. Anyways I did some digging and founds some stuff that might help. The first one is in the properties of the vswitch that is interconnecting the lxc host to the network. Edit the properties and in the Security Tab make sure that promiscus mode, Mac changes and forged macs are set to accept. Basically the vswitch will allow all mac's coming from the lxc and not block them. The second tip is more of a maybee... ESX 3.x basically would allow to you to change the mac of the Vhost to whatever you wanted. In ESX 4.0 Vmware rewrote the code and would allow you to specify a mac only if it was in the vmware OUI range. To make sure that ESX does not cut the communication try to set the macs of you LXC containers to: 00:50:56:XX:YY:ZZ I hope this helps a little. Give it a shot and let me know how it works out. Geordy -- Fulfilling the Lean Software Promise Lean software platforms are now widely adopted and the benefits have been demonstrated beyond question. Learn why your peers are replacing JEE containers with lightweight application servers - and what you can gain from the move. http://p.sf.net/sfu/vmware-sfemails ___ Lxc-users mailing list Lxc-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/lxc-users Hello, Good news here!! Forcing container MAC to 00:50:56:xx:xx:xx make it work flawlessly! Two containers running at the same time without the need to restart network nor Kernel Panic. So far so good!! Problem solved for me, will be able to deploy some more containers now. Thanks for your help. Olivier And actually not quite well... I still have random container freezes with sometimes eth0: received packet with own address as source address in my dmesg. The container can't access network for 30s then get's back randomly, can't find the reason of this :( Still have KP with multiple containers up and running, have to check dump. If anyone has any idea about theses network glitches... Thanks, Olivier -- WhatsUp Gold - Download Free Network Management Software The most intuitive, comprehensive, and cost-effective network management toolset available today. Delivers lowest initial acquisition cost and overall TCO of any competing solution. http://p.sf.net/sfu/whatsupgold-sd___ Lxc-users mailing list Lxc-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/lxc-users
Re: [Lxc-users] Lxc-attach status update?
Quoting Christoph Mitasch (cmita...@thomas-krenn.com): Hi, I would really love to see the patch applied to latest Ubuntu natty kernel to have lxc-attach working again. Is this on the way? Natty is closed. This patch isn't going into natty. If Daniel resends the patchset, I'll happily post a natty kernel with the patch in a ppa. -serge -- WhatsUp Gold - Download Free Network Management Software The most intuitive, comprehensive, and cost-effective network management toolset available today. Delivers lowest initial acquisition cost and overall TCO of any competing solution. http://p.sf.net/sfu/whatsupgold-sd ___ Lxc-users mailing list Lxc-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/lxc-users
Re: [Lxc-users] Lxc-attach status update?
On Wed, 2011-04-27 at 08:47 -0500, Serge Hallyn wrote: Quoting Christoph Mitasch (cmita...@thomas-krenn.com): Hi, I would really love to see the patch applied to latest Ubuntu natty kernel to have lxc-attach working again. Is this on the way? Natty is closed. This patch isn't going into natty. If Daniel resends the patchset, I'll happily post a natty kernel with the patch in a ppa. -serge I think Daniel is on vacations (spring break in France). The latest patches for setns can be found here AFAIK: http://kernel.ubuntu.com/git?p=dlezcano/ubuntu-natty.git/.git -- Gregory Kurz gk...@fr.ibm.com Software Engineer @ IBM/Meiosys http://www.ibm.com Tel +33 (0)534 638 479 Fax +33 (0)561 400 420 Anarchy is about taking complete responsibility for yourself. Alan Moore. -- WhatsUp Gold - Download Free Network Management Software The most intuitive, comprehensive, and cost-effective network management toolset available today. Delivers lowest initial acquisition cost and overall TCO of any competing solution. http://p.sf.net/sfu/whatsupgold-sd ___ Lxc-users mailing list Lxc-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/lxc-users
Re: [Lxc-users] Lxc-attach status update?
You can also find the patches here. http://lxc.sourceforge.net/patches/linux/2.6.38/ On Wed, Apr 27, 2011 at 10:26, Greg Kurz gk...@fr.ibm.com wrote: On Wed, 2011-04-27 at 08:47 -0500, Serge Hallyn wrote: Quoting Christoph Mitasch (cmita...@thomas-krenn.com): Hi, I would really love to see the patch applied to latest Ubuntu natty kernel to have lxc-attach working again. Is this on the way? Natty is closed. This patch isn't going into natty. If Daniel resends the patchset, I'll happily post a natty kernel with the patch in a ppa. -serge I think Daniel is on vacations (spring break in France). The latest patches for setns can be found here AFAIK: http://kernel.ubuntu.com/git?p=dlezcano/ubuntu-natty.git/.git -- Gregory Kurz gk...@fr.ibm.com Software Engineer @ IBM/Meiosys http://www.ibm.com Tel +33 (0)534 638 479 Fax +33 (0)561 400 420 Anarchy is about taking complete responsibility for yourself. Alan Moore. -- WhatsUp Gold - Download Free Network Management Software The most intuitive, comprehensive, and cost-effective network management toolset available today. Delivers lowest initial acquisition cost and overall TCO of any competing solution. http://p.sf.net/sfu/whatsupgold-sd ___ Lxc-users mailing list Lxc-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/lxc-users -- Sebastien Pahl http://www.dotcloud.com @sebp, @dot_cloud -- WhatsUp Gold - Download Free Network Management Software The most intuitive, comprehensive, and cost-effective network management toolset available today. Delivers lowest initial acquisition cost and overall TCO of any competing solution. http://p.sf.net/sfu/whatsupgold-sd ___ Lxc-users mailing list Lxc-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/lxc-users
Re: [Lxc-users] Lxc-attach status update?
Quoting Greg Kurz (gk...@fr.ibm.com): On Wed, 2011-04-27 at 08:47 -0500, Serge Hallyn wrote: Quoting Christoph Mitasch (cmita...@thomas-krenn.com): Hi, I would really love to see the patch applied to latest Ubuntu natty kernel to have lxc-attach working again. Is this on the way? Natty is closed. This patch isn't going into natty. If Daniel resends the patchset, I'll happily post a natty kernel with the patch in a ppa. -serge I think Daniel is on vacations (spring break in France). The latest patches for setns can be found here AFAIK: http://kernel.ubuntu.com/git?p=dlezcano/ubuntu-natty.git/.git Thanks, Greg, I'll create a package based on that and put it into my lxc-natty ppa. -serge -- WhatsUp Gold - Download Free Network Management Software The most intuitive, comprehensive, and cost-effective network management toolset available today. Delivers lowest initial acquisition cost and overall TCO of any competing solution. http://p.sf.net/sfu/whatsupgold-sd ___ Lxc-users mailing list Lxc-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/lxc-users
Re: [Lxc-users] Lxc-attach status update?
On Wed 2011-04-27 (22:16), Christoph Mitasch wrote: BTW, is there another reliable way to initiate a clean shutdown of a container running Natty from the Host system except using lxc-attach or ssh to the container? I have written a simple daemon who runs inside the (ubuntu) container and to which I can communicate with also simple script. It looks like: root@zoo:~# lxc -h usage: lxc options container options: -n create new container -b boot container -c container console -x execute command in container -s shutdown container -l list root@zoo:~# lxc -b flupp root@zoo:~# lxc -l container size (MB) start-PID egal 606 0 flupp6062455 root@zoo:~# uname -a Linux zoo 2.6.39-020639rc3-generic #201104120912 SMP Tue Apr 12 09:16:19 UTC 2011 x86_64 GNU/Linux root@zoo:~# lxc -x flupp uname -a Linux flupp 2.6.39-020639rc3-generic #201104120912 SMP Tue Apr 12 09:16:19 UTC 2011 x86_64 GNU/Linux root@zoo:~# lxc -x shutdown -h now -- Ullrich Horlacher Server- und Arbeitsplatzsysteme Rechenzentrum E-Mail: horlac...@rus.uni-stuttgart.de Universitaet Stuttgart Tel:++49-711-685-65868 Allmandring 30 Fax:++49-711-682357 70550 Stuttgart (Germany) WWW:http://www.rus.uni-stuttgart.de/ -- WhatsUp Gold - Download Free Network Management Software The most intuitive, comprehensive, and cost-effective network management toolset available today. Delivers lowest initial acquisition cost and overall TCO of any competing solution. http://p.sf.net/sfu/whatsupgold-sd ___ Lxc-users mailing list Lxc-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/lxc-users
