[Vserver] create an empty vserver
Hi, i want to create a 'linux frim scratch' (LFS) in a vserver like this: creating a vserver with a unionfs on it. Anyone did it or can me point out how to do it ? Thanks for the help mess-mate -- Tuesday After Lunch is the cosmic time of the week. ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] nagios monitoring - guest or host?
I presently have nagios set up in a guest on a temporary host. We will soon be moving everything to a single 'monster' machine with a backup machine for fail-over. The reason for this background is this: 1. Can I somehow set things up so a guest can execute a pre-defined command script on the host? This would allow nagios to do things like re-start a guest if it is not responding. 2. Alternatively I could run nagios on the host. What would be any performance impact on the guests if I were to do this? It would check approximately 100 customer routers and maybe 3 other machines. This would be the extent of any network resources used, the rest of the checks would be done to the guests ( about 70 checks to do locally) and the fail-over machine. I suspect option 2 is my best way but it would still be nice to know if option 1 could be done. :) I understand the need to keep the host as 'clean' as possible, but in real world situations, I would assume no performance impact or at least minimal if the host runs low resource services such as ntpd, private sshd etc. I am wondering where nagios would fall in the low-impact definitions? Although it has a lot of work to do, it appears to use very few resources. -- Chuck ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] equiv to legacy ONBOOT=x
Hi, seems to be a trivial question. But I scanned the big flower page and found nothing: How do I say ONBOOT=yes/no within the new configuration scheme? Thanks, Thomas ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] nagios monitoring - guest or host?
Hi Chuck, 1. Can I somehow set things up so a guest can execute a pre-defined command script on the host? This would allow nagios to do things like re-start a guest if it is not responding. There are some ways to do so: 1) The root Server can access the filesystem of the guest, so you can use cron or similar to check for a file inside the guest from the side of the host, and than behave accordingly. For Example, you create a file reboot containing server123 by nagios in a directory inside the guest and than have a process that collects this file from outside and do the reboot. 2) There are some helper scripts like the reboot script, but I dont how these work - might be this can do the job... 3) The standard way, using SSH or RPC or similar and do a normal network connect like you do with any other remote execution Regarding performance impact: It does not matter if the process runs in or outside a guest... Oliver -- Diese Nachricht wurde digital unterschrieben oliwel's public key: http://www.oliwel.de/oliwel.crt Basiszertifikat: http://www.ldv.ei.tum.de/page72 smime.p7s Description: S/MIME Cryptographic Signature ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] nagios monitoring - guest or host?
On Wednesday 28 September 2005 06:59 am, Oliver Welter wrote: Hi Chuck, 1. Can I somehow set things up so a guest can execute a pre-defined command script on the host? This would allow nagios to do things like re-start a guest if it is not responding. There are some ways to do so: 1) The root Server can access the filesystem of the guest, so you can use cron or similar to check for a file inside the guest from the side of the host, and than behave accordingly. For Example, you create a file reboot containing server123 by nagios in a directory inside the guest and than have a process that collects this file from outside and do the reboot. 2) There are some helper scripts like the reboot script, but I dont how these work - might be this can do the job... 3) The standard way, using SSH or RPC or similar and do a normal network connect like you do with any other remote execution Interesting. Never even thought of those options:) Thanks! Regarding performance impact: It does not matter if the process runs in or outside a guest... Oliver -- Diese Nachricht wurde digital unterschrieben oliwel's public key: http://www.oliwel.de/oliwel.crt Basiszertifikat: http://www.ldv.ei.tum.de/page72 -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] create an empty vserver
On Wed, Sep 28, 2005 at 10:54:23AM +0200, mess-mate wrote: Hi, i want to create a 'linux frim scratch' (LFS) in a vserver like this: you can get a skeleton (really empty guest, except for /dev and /proc) with the -m skeleton build method ... creating a vserver with a unionfs on it. unionfs is usually not a good idea, unification works much better (no time issues, no overhead) Anyone did it or can me point out how to do it ? Thanks for the help best, Herbert mess-mate -- Tuesday After Lunch is the cosmic time of the week. ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] nagios monitoring - guest or host?
On Wed, Sep 28, 2005 at 06:21:07AM -0400, Chuck wrote: I presently have nagios set up in a guest on a temporary host. We will soon be moving everything to a single 'monster' machine with a backup machine for fail-over. The reason for this background is this: 1. Can I somehow set things up so a guest can execute a pre-defined command script on the host? This would allow nagios to do things like re-start a guest if it is not responding. this would also compromise guest security, but it is doable, given you provide the necessary capabilites and/or lower/remove the chroot protections ... 2. Alternatively I could run nagios on the host. What would be any performance impact on the guests if I were to do this? It would check approximately 100 customer routers and maybe 3 other machines. This would be the extent of any network resources used, the rest of the checks would be done to the guests ( about 70 checks to do locally) and the fail-over machine. I suspect option 2 is my best way but it would still be nice to know if option 1 could be done. :) I understand the need to keep the host as 'clean' as possible, but in real world situations, I would assume no performance impact or at least minimal if the host runs low resource services such as ntpd, private sshd etc. doesn't matter where you run it (from the performance point of view), host or guest have basically the same impact on the whole system security and isolation is the advantage of a guest version ... I am wondering where nagios would fall in the low-impact definitions? Although it has a lot of work to do, it appears to use very few resources. HTH, Herbert -- Chuck ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] equiv to legacy ONBOOT=x
On Wed, Sep 28, 2005 at 01:33:02PM +0200, Xavier Montagutelli wrote: On Wednesday 28 September 2005 12:51, Gebhardt Thomas wrote: Hi, seems to be a trivial question. But I scanned the big flower page and found nothing: How do I say ONBOOT=yes/no within the new configuration scheme? You can use the mark to start your vservers during the host boot process. The mark of a a given vserver is written in the file /etc/vservers/vs/apps/init/mark (Cf flower page). By default, the init script /etc/init.d/vservers-default starts vservers with the mark default (don't forget to make chkconfig --add or update-rc.d if needed). You can write other init scripts (e.g. vservers-foo) and change the mark (MARK=foo) inside them, in order to start vservers marked foo. Playing with the start and stop levels of such scripts, you can start and stop groups of vservers in distinct order (e.g. start a vserver with a database before the one using the database). So I suppose that by default, a vserver with no mark, or a mark different from default, won't be started (= ONBOOT=no). yep, also it should be quite easy to copy the existing start script /etc/init.d/vservers-default and make a second version (e.g. vservers-special) which can use a different mark special which allows for different runlevel settings ... (just an inspiration :) best, Herbert -- Xavier Montagutelli Service Commun Informatique Universite de Limoges Tel : +33 555457720 Cle GPG : http://pgp.mit.edu 1024D/175CE198 ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Partial Xfree86 freeze (deboostrap fault?)
Hello.
Possibly unrelated, but it would mean that the vserver would pre-empt
CPU heavy processes running on the main system with a normal priority
which might explain what you're seeing.
(1)
I think that the problems really stems from the undue /dev entries.
In the last step of vserver creation, I just had to delete the entries
that are not in Herbert's short list. And the phenomenon disappeared.
(2)
But out of curiosity, I'd like to know which of the entries below are
dangerous enough to hang the keyboard and by what mechanism it happens
('*' is not litteral, but indicates several entries of the same type):
MAKEDEV
agpgart
audio*
console
core
dsp*
kmem
loop*
mem
midi*
mixer*
mpu401*
port
ram*
rmidi*
sequencer
shm
smpte*
sndstat
tty0
(3)
Then, for Debian-oriented people, why does debootstrap create
those entries? For example, I certainly didn't ask it to install
any sound-related packages, yet it created those mixer, midi,
dsp and whatever. Should this be considered a bug?
Thanks and best regards,
Gilles
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] equiv to legacy ONBOOT=x
Hi, On Wednesday 28 September 2005 13:33, Xavier Montagutelli wrote: You can use the mark to start your vservers during the host boot process. thanks! Cheers, Thomas ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
