Re: [Vserver] Network local to vserver host and guests?
On Tue, Nov 28, 2006 at 04:28:47PM -0800, Roderick A. Anderson wrote: > Christian Affolter wrote: >> Hi! >> >>> I build and use vservers where the guests need to cooperate with >>> each other. That is, a system with with guests running Postfix, >>> PostgreSQL, or Apache ( multiple guests as they are mod_perl >>> driven ) and they all need to communicate with each other. >>> So I want to build a Virtual LAN ( different from my take on a >>> VLAN ) with virtual NICs. >>> >>>Basically the traffic never hits the physical LAN/WAN. >>> >>> That make sense? yes, and it is a typical Linux-VServer case >>> IS it possible? yes, of course, you do not even need to make special preparations or modifications >>> If so what what should I be looking for in my research? >> Yes it is possible, with the dummy net interface. sorry, that is misinformation >> You'll have to enable the dummy net driver support >> (CONFIG_DUMMY=y) in your kernel. that is neither required, nor does it make sense to do so, because: a) the traffic will never hit the dummy interface (if it would, it would get lost, that's the purpose of the dummy interface at all) b) guest-guest and guest-host traffic will _always_ use the loopback interface (i.e. be local) regardless of the interfaces carrying the ips > Thanks Chris. Is there a way test for this? configure two guests on separate private ips and you will simply be able to conenct from one to the other (the traffic will not leave the host) > I could ask Daniel if it got set in the Fedora Core 5 RPMs > he built but that would be _really_ lazy. :-) as dummy is not required, whatever config the kernel contains, it will work out of the box HTC, Herbert > Rod > -- > > > >regards, > >Chris > >___ > >Vserver mailing list > >Vserver@list.linux-vserver.org > >http://list.linux-vserver.org/mailman/listinfo/vserver > > ___ > Vserver mailing list > Vserver@list.linux-vserver.org > http://list.linux-vserver.org/mailman/listinfo/vserver ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Network local to vserver host and guests?
Roderick A. Anderson wrote: Christian Affolter wrote: Hi! I build and use vservers where the guests need to cooperate with each other. That is, a system with with guests running Postfix, PostgreSQL, or Apache ( multiple guests as they are mod_perl driven ) and they all need to communicate with each other. So I want to build a Virtual LAN ( different from my take on a VLAN ) with virtual NICs. Basically the traffic never hits the physical LAN/WAN. That make sense? IS it possible? If so what what should I be looking for in my research? Yes it is possible, with the dummy net interface. You'll have to enable the dummy net driver support (CONFIG_DUMMY=y) in your kernel. Thanks Chris. Is there a way test for this? I could ask Daniel if it got set in the Fedora Core 5 RPMs he built but that would be _really_ lazy. :-) ifconfig dummy0 ... But yes, it is enabled in Fedora's kernels. -- Daniel Hokka Zakrisson GPG id: 06723412 GPG fingerprint: A455 4DF3 990A 431F FECA 7947 6136 DDA2 0672 3412 ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Network local to vserver host and guests?
Christian Affolter wrote: Hi! I build and use vservers where the guests need to cooperate with each other. That is, a system with with guests running Postfix, PostgreSQL, or Apache ( multiple guests as they are mod_perl driven ) and they all need to communicate with each other. So I want to build a Virtual LAN ( different from my take on a VLAN ) with virtual NICs. Basically the traffic never hits the physical LAN/WAN. That make sense? IS it possible? If so what what should I be looking for in my research? Yes it is possible, with the dummy net interface. You'll have to enable the dummy net driver support (CONFIG_DUMMY=y) in your kernel. Thanks Chris. Is there a way test for this? I could ask Daniel if it got set in the Fedora Core 5 RPMs he built but that would be _really_ lazy. :-) Rod -- regards, Chris ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Network local to vserver host and guests?
Sorry, I've forget to mention that in my previous mail... I build and use vservers where the guests need to cooperate with each other. That is, a system with with guests running Postfix, PostgreSQL, or Apache ( multiple guests as they are mod_perl driven ) and they all need to communicate with each other. So I want to build a Virtual LAN ( different from my take on a VLAN ) with virtual NICs. Basically the traffic never hits the physical LAN/WAN. It won't anyway, as all vserver to vserver traffic (on the same host) will travel over the lo (loopback) interface. regards ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Network local to vserver host and guests?
Hi! I build and use vservers where the guests need to cooperate with each other. That is, a system with with guests running Postfix, PostgreSQL, or Apache ( multiple guests as they are mod_perl driven ) and they all need to communicate with each other. So I want to build a Virtual LAN ( different from my take on a VLAN ) with virtual NICs. Basically the traffic never hits the physical LAN/WAN. That make sense? IS it possible? If so what what should I be looking for in my research? Yes it is possible, with the dummy net interface. You'll have to enable the dummy net driver support (CONFIG_DUMMY=y) in your kernel. regards, Chris ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] Network local to vserver host and guests?
I started researching how to do this or if it is even possible but want to make sure I'm not using the wrong terms in my searches. I build and use vservers where the guests need to cooperate with each other. That is, a system with with guests running Postfix, PostgreSQL, or Apache ( multiple guests as they are mod_perl driven ) and they all need to communicate with each other. So I want to build a Virtual LAN ( different from my take on a VLAN ) with virtual NICs. Basically the traffic never hits the physical LAN/WAN. That make sense? IS it possible? If so what what should I be looking for in my research? TIA, Rod -- ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Re: future vserver on ubuntu
On Tue, Nov 28, 2006 at 05:28:17PM +0100, Peter Mann wrote: > On Tue, Nov 28, 2006 at 05:11:32PM +0100, alexander goeres - lieblinx GmbH > wrote: > > just one question aside: is anybody able to figure out, what > > vserver-versions > > the debian-kernel-packagers are using? > > http://packages.debian.org/linux-image-vserver-686 > http://packages.debian.org/linux-image-vserver-k7 > > http://packages.debian.org/changelogs/pool/main/l/linux-2.6/linux-2.6_2.6.17-9/changelog > > * Update vserver patch to 2.0.2. > > http://packages.debian.org/changelogs/pool/main/l/linux-2.6/linux-2.6_2.6.18-5/changelog > > * Update vserver patch to 2.0.2.2-rc6. so they are tracking the current stable branch, and I hope they will also track the upcoming stable (2.2.x) as soon as it is out ... great work, big thanks to the debian folks! best, Herbert > -- > > 5o Peter.Mann at tuke.sk > > > ___ > Vserver mailing list > Vserver@list.linux-vserver.org > http://list.linux-vserver.org/mailman/listinfo/vserver ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Re: future vserver on ubuntu
On Tue, Nov 28, 2006 at 05:11:32PM +0100, alexander goeres - lieblinx GmbH wrote: > just one question aside: is anybody able to figure out, what vserver-versions > the debian-kernel-packagers are using? http://packages.debian.org/linux-image-vserver-686 http://packages.debian.org/linux-image-vserver-k7 http://packages.debian.org/changelogs/pool/main/l/linux-2.6/linux-2.6_2.6.17-9/changelog * Update vserver patch to 2.0.2. http://packages.debian.org/changelogs/pool/main/l/linux-2.6/linux-2.6_2.6.18-5/changelog * Update vserver patch to 2.0.2.2-rc6. -- 5o Peter.Mann at tuke.sk ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Re: future vserver on ubuntu
Hello List, just one question aside: is anybody able to figure out, what vserver-versions the debian-kernel-packagers are using? Alexander Am Dienstag, 28. November 2006 16:23 schrieb Michael S. Zick: > On Tue November 28 2006 08:56, Herbert Poetzl wrote: > > On Sun, Nov 26, 2006 at 07:18:15PM -0600, Michael S. Zick wrote: > > > On Sun November 26 2006 12:15, Philippe Clérié wrote: > > > > Gerald at uni-klu was kind enough to reply to a query I sent him. He > > > > will not soon be building a vserver kernel for edgy because of lack > > > > of time. > > > > > > > > So I think I'll stick to dapper for a while yet. > > > > > > > > Regarding vserver and feisty, it's very likely that the patch is not > > > > in the distribution because it's no longer in sid. And it makes sense > > > > not to include it in sid since debian is building kernels with > > > > built-in vserver. For all architectures too! > > > > > > All? > > > Can't find the -ixp4xx (arm, little endian), nor pa-risc 32 or 64 bit. > > > The ones posted only have the VServer Kconfig changes. > > > > hppa(/64) works quite fine in Linux-VServer, arm > > too, arm26 is not really tested ... but I don't > > know for the debian versions ... > > Sorry if I was unclear. The answer is not what architectures work, > but what architectures Debian provides pre-built kernels for. > > I test virgin kernel+VServer on armv5tel Joel tests on hppa/32/64 - > but neither of us test the _Debian_ pre-builts. > > None of those machines are speed demons - so when someone said that > pre-built kernels where available - I did spend time searching the > package depositories for them. Then offered my update of the word: _all_. > > For those who roll-their-own: > Your best bet on arm is 2.6.18.3 or newer to avoid swap problems ... > Probably 2.6.16.???-pa on hppa (after the spinlock fixes) > to avoid scsi iommu problems ... > (Neither set of problems are VServer related.) > > Mike > ___ > Vserver mailing list > Vserver@list.linux-vserver.org > http://list.linux-vserver.org/mailman/listinfo/vserver -- netzwerk- & systemadministrator --- agoeres at lieblinx. net tel.: +49 (0)30 / 61 20 26 86 fax: +49 (0)30 / 69 00 46 03 --- lieblinx we do software --- reichenberger straße 125 10999 berlin http://lieblinx.net --- ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Re: future vserver on ubuntu
On Tue November 28 2006 08:56, Herbert Poetzl wrote: > On Sun, Nov 26, 2006 at 07:18:15PM -0600, Michael S. Zick wrote: > > On Sun November 26 2006 12:15, Philippe Clérié wrote: > > > Gerald at uni-klu was kind enough to reply to a query I sent him. He will > > > not soon be building a vserver kernel for edgy because of lack of time. > > > > > > So I think I'll stick to dapper for a while yet. > > > > > > Regarding vserver and feisty, it's very likely that the patch is not in > > > the > > > distribution because it's no longer in sid. And it makes sense not to > > > include it in sid since debian is building kernels with built-in vserver. > > > For all architectures too! > > > > All? > > Can't find the -ixp4xx (arm, little endian), nor pa-risc 32 or 64 bit. > > The ones posted only have the VServer Kconfig changes. > > hppa(/64) works quite fine in Linux-VServer, arm > too, arm26 is not really tested ... but I don't > know for the debian versions ... > Sorry if I was unclear. The answer is not what architectures work, but what architectures Debian provides pre-built kernels for. I test virgin kernel+VServer on armv5tel Joel tests on hppa/32/64 - but neither of us test the _Debian_ pre-builts. None of those machines are speed demons - so when someone said that pre-built kernels where available - I did spend time searching the package depositories for them. Then offered my update of the word: _all_. For those who roll-their-own: Your best bet on arm is 2.6.18.3 or newer to avoid swap problems ... Probably 2.6.16.???-pa on hppa (after the spinlock fixes) to avoid scsi iommu problems ... (Neither set of problems are VServer related.) Mike ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] About open Linux phone/SDK Neo1973/OpenMoko & your feedback to run linux-vserver on a Arm9 cpu (Samsung s3c2410 SoC)
On Mon, Nov 27, 2006 at 05:28:36PM +0100, Robert Michel wrote: > Salve! > > I'm a student and for years interested in Gnu/Linux(Debian) and mobile > communication. By thinking what a modern phone could do and what a > user realy can do with such phones (developed for the network provider > and the prospects of the phone sellers...) makes me realy sick. ;( > > So I descided to do not spend my time on developing software for such > resticted devices and to wait for a free open phone. > Even the first Linux based phones like the A760 from Motorola does > disapoint me, because the published only the kernel (after a long fight > to do this) but modification woul'd not be easy, because so much isn't > published or documented. > > Because of the power of the network provider I didn't expected a > free open (linux) very fast and thought the first free Linux phone > would be a selfmade one with the combination of PDA and a GSM card. > > Surprises of the year: > #1 Trolltec anounced some month ago the "green phone" for developers. >With 700$ quite expensive and AFAIK not realy free - it belongs to >licences with trolltec and probably to use binarys from them. > > #2 FIC announced on 2006_11_07 at the "Open Source in Mobile Conference" >in amsterdam their phone Neo1973 and their open Linux developer >plattform OpenMoko: > >http://www.openmoko.com >Presentation slides: >http://www.openmoko.com/files/OpenMoko_Amsterdam.pdf > > When I saw this slides via internet, especialy slide #6 ;) > > > > > Oh and well, one more feature. > > > An adaption of my favorite command in all > > > of computing. > > > root at filebuntu:~# apt-get install _ > > > > > By reading this, I was 100% shure that the people behind this project > are the right on and that a dream has come true. > Then I found out that also Harald Welte (you know him from > gpl-violations issues) was involved in starting this project: > http://gnumonks.org/~laforge/weblog/2006/11/08/ > : > And he already hacked with the A760 and opentom... ;) > > So there have been real and good GPL hacker, who have conviced a > hardware producer (FIC) to use the power of Linux(Debian) for > their devices and open it like a PC, giving the user the freedom > which OS to install and which applications and that this could > now become true (with linux): > > smartphone = mobil PC + GSM/GPRS (+ Asissted GPS) > > Because the GSM part is on an external chip connected via serial > interface to the System on a Chip (Samsung s3c2410) and controlled > with AT-commands like an external device - the kernel could run without > close source binaries and the phone will be a trustworthy device. > (As much as you can trust the SoC *g*). > > For raise the security level, especialy for the end user market, the > linux-vserer technics would become IMHO *very* interesting. > > The core functions (GSM/GPRS...) could become protected that even when > an badly programmed application runnig wild - the phone would still be > usable for basic functions (calling, espeicaly 911/112 emergency calls) > ... > > - close source applications or application from lower trustworthy source > could become own sandboxes > > - applications with a hight security demand "server administration with > ssh", telebanking could have also a own sandbox > > - with "guest suspend to RAM" applications could start faster and could > run at the same point they have been "paused" like applications on the > palm pilot ;) > > - other users could get a vserver account to run their scripts on the > mobile PC - the owner could limited and log the BT/GSM/GPRS access... > Example: an NGO, a university, a company could please their members > to run their programms... when they pass a BT station they can > transmitt informations... > So the guest system could get a limitation for GPRS traffic > or limitation of CPU power... > > Or just share vserver accounts on your mobile with your friends > (With integrated Wifi and 433Mhz receiver it would become much >more interesting what to do with this...) > > No question, vserver on a smartphone could be usefull. :)) > > > Now my questions to you ;) > >
Re: [Vserver] Q:Would "guest suspend to disk" work?
On Mon, Nov 27, 2006 at 04:24:10PM +0100, Robert Michel wrote: > Salve *, Herbert! > > I like the power of linux-vserver and I do not to > want to _nag_ you with the question: > > would "guest suspend to disk" work? it's not tested, but I do not see any immediate reason why it should not work ... > It is just "IMHO it would be cool when this would be > possible, too" > ;) > The benefits should be clear, user or single application environment ah, you mean a single guest ... well that's a completely different thing, and yes, it is possible to do that, but it requires some efford and increases the overall overhead significantly, as you cannot use sharing or isolation anymore ... > - could be remove from stock/RAM to free resources happens automagically via system paging (swap) > - could be moved to other (host) systems require the other systems to have identical structures and/or resources, that's why suspend to disk with different boxes does not work either ... > - could be cloned (for training or productive enviroments) in this case putting it into 'some' virtual machine is definitely the simpler approach .. btw, you can achieve all that and more by adding a Xen wrapper around Linux-VServer ... HTC, Herbert > Greetings, > rob > ___ > Vserver mailing list > Vserver@list.linux-vserver.org > http://list.linux-vserver.org/mailman/listinfo/vserver ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Re: future vserver on ubuntu
On Sun, Nov 26, 2006 at 07:18:15PM -0600, Michael S. Zick wrote: > On Sun November 26 2006 12:15, Philippe Clérié wrote: > > Gerald at uni-klu was kind enough to reply to a query I sent him. He will > > not soon be building a vserver kernel for edgy because of lack of time. > > > > So I think I'll stick to dapper for a while yet. > > > > Regarding vserver and feisty, it's very likely that the patch is not in the > > distribution because it's no longer in sid. And it makes sense not to > > include it in sid since debian is building kernels with built-in vserver. > > For all architectures too! > > All? > Can't find the -ixp4xx (arm, little endian), nor pa-risc 32 or 64 bit. > The ones posted only have the VServer Kconfig changes. hppa(/64) works quite fine in Linux-VServer, arm too, arm26 is not really tested ... but I don't know for the debian versions ... best, Herbert > Mike > ___ > Vserver mailing list > Vserver@list.linux-vserver.org > http://list.linux-vserver.org/mailman/listinfo/vserver ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] kernel bug
On Tue, Nov 28, 2006 at 08:11:35AM +0100, Andreas Baetz wrote: > On Sunday 26 November 2006 23:22, Herbert Poetzl wrote: > > On Fri, Nov 24, 2006 at 08:11:39AM +0100, Andreas Baetz wrote: > > > On Thursday 23 November 2006 18:49, Herbert Poetzl wrote: > > > > On Thu, Nov 23, 2006 at 02:43:13AM +0100, Herbert Poetzl wrote: > > > > > > > > > > thanks, should be fixed in the next release > > > > > > > > vs2.0.2.2-rc8 is out ... > > > > > > I tried vs2.0.2.2-rc8 with 2.6.18.3, the vserver starts ok, no > > > errors, but when I stopped it, the whole system freezed. > > > Right after "Deconfiguring network interfaces...done." > > > > okay, maybe you get around, the stack trace of > > all processes would probably tell us more ... > I wrote down some of the trace output by hand: hmm, the numbers of those dumps would be interesting, especially if you have an unstripped kernel (vmlinux) available, so we can figure _where_ this happens so a serial console or some other means of recording them would be very helpful, if not available, try with a photo camera ... > BUG: unable to handle kernel NULL pointer dereference at virtual > address 0005 > printing eip: > c0104118 one of those addresses is listed above, you might be able to get thre required info with: addr2line -e vmlinux c0104118 another option to identify the location is the code sequence dumped at the end (2 digit block) TIA, Herbert PS: would be interesting to see if you encounter the same issues with 2.1.1.2.3 (if you find the time to test) > *pde = > Kernel panic - not syncing: Fatal exception in interrupt > > after pressing sysrq-T: > > rb_insert_color > do_nanosleep > hrtimer_nanosleep > __fput > hrtimer_wakeup > sys_nanosleep > sysenter_past_esp > vserver S C01218db 0 23266 23227 23267 23269 23240 (NOTLB) > .. > Call Trace: > do_wait > __alloc_pages > kernel_fpu_begin > eligible_child > do_wait > do_sigaction > default_wake_function > sys_wait4 > sys_waitpid > syscall_call > vwait R running 0 23267 23266 (NOTLB) > rc R running 0 23269 23227 23266 (L-TLB) > > > > > TIA, > > Herbert > > > > Andreas > > > ** > This email and any files transmitted with it are confidential and > intended solely for the use of the individual or entity to whom they > are addressed. If you have received this email in error please notify > the system manager. > ** > > ___ > Vserver mailing list > Vserver@list.linux-vserver.org > http://list.linux-vserver.org/mailman/listinfo/vserver ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] kernel bug
On Sunday 26 November 2006 23:22, Herbert Poetzl wrote: > On Fri, Nov 24, 2006 at 08:11:39AM +0100, Andreas Baetz wrote: > > On Thursday 23 November 2006 18:49, Herbert Poetzl wrote: > > > On Thu, Nov 23, 2006 at 02:43:13AM +0100, Herbert Poetzl wrote: > > > > > > > > thanks, should be fixed in the next release > > > > > > vs2.0.2.2-rc8 is out ... > > > > I tried vs2.0.2.2-rc8 with 2.6.18.3, the vserver starts ok, no > > errors, but when I stopped it, the whole system freezed. > > Right after "Deconfiguring network interfaces...done." > > okay, maybe you get around, the stack trace of > all processes would probably tell us more ... I wrote down some of the trace output by hand: BUG: unable to handle kernel NULL pointer dereference at virtual address 0005 printing eip: c0104118 *pde = Kernel panic - not syncing: Fatal exception in interrupt after pressing sysrq-T: rb_insert_color do_nanosleep hrtimer_nanosleep __fput hrtimer_wakeup sys_nanosleep sysenter_past_esp vserver S C01218db 0 23266 23227 23267 23269 23240 (NOTLB) .. Call Trace: do_wait __alloc_pages kernel_fpu_begin eligible_child do_wait do_sigaction default_wake_function sys_wait4 sys_waitpid syscall_call vwait R running 0 23267 23266 (NOTLB) rc R running 0 23269 23227 23266 (L-TLB) > > TIA, > Herbert > Andreas ** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. ** ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
