Menu
▾
▴
devil-linux-discuss
|
From: Kari M. <kar...@tr...> - 2008-07-24 18:46:12
|
Quoting Kari Mattsson <kar...@tr...>: > > Just an idea. > > Now that Cisco is using/embedding KVM in their carrier class routers, > <http://www.informationweek.com/blog/main/archives/2008/03/does_ciscos_swi.html>, > don't you think it would be appropriate to include that in DL, too ;-) > > More info on KVM here: http://kvm.qumranet.com/kvmwiki I liked and second Bruce's comment on reusing acronyms. This time KVM is not only reused, but also overloaded. That I think is rather annoying. > I'd be nice to have DL VM in DL in the future. Or better, different DL > roles in different VMs: DNS, OpenVPN, IPSec, firewall, DHCP, FTP, etc. > > Unfortunately I'm more on the architecture, design, and admin side, not > programming. And thus can not help there too much :-( > > ** > > As KVM is included in kernel 2.6.20+, we should already have much in place. > > QEMU is the biggest missing part. I do something like that already with the free vmware server and multiple DL instances. But yes, you're right, all the Kernel stuff is already included. We are running lots of DLs for different purposes on various places. Mainly on VMware ESX Server, but also on bare metal. What I'm silently targeting here, Heiko and Bruce, is to be able to use DL as an ultra light basis to run several, even non-DL VMs. Zimbra Collaboration Server, or something on those lines comes to my mind. Or on older gear, maybe something else. Then DL would be comparable (in some aspects) to VMware ESX 3i installable, or VMware ESX 3 classic with service console (RHEL3-based). ....and way ahead of VMware Server (an application). I'm not sure if QEMU is running with GRSecurity enabled (NO BRUCE!, it stays in there...) When can we expect i686 (non-GRSecurity) editions of 1.3.x? I feel more comfortable running those as servers. Dunno why.. Additionally I don't have time, so somebody else would have to take this project. There is no rush. KVM is getting better very fast, the management etc. It was just an idea... -- Regards Heiko Zuerker http://www.devil-linux.org ---------------------------------------------------------------- This message was sent using IMP, the Internet Messaging Program. ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/ _______________________________________________ Devil-linux-discuss mailing list Dev...@li... https://lists.sourceforge.net/lists/listinfo/devil-linux-discuss |
|
From: Kari M. <kar...@tr...> - 2008-07-25 07:43:04
|
_____ Alkuperäinen viesti _____ Aihe: Re: [Devil-Linux-discuss] Adding KVM with support tools to DL? Tekijä: "Heiko Zuerker" <he...@zu...> Päivämäärä: 24. heinäkuuta 2008 23:02:13 Quoting Bruce Smith <bw...@re...>: >>> Then DL would be comparable (in some aspects) to VMware ESX 3i >>> installable, or VMware ESX 3 classic with service console >>> (RHEL3-based). ....and way ahead of VMware Server (an application). >> >> So there's no X required to run this? > > I was wondering about that too. :-) I did a quick search on the web and it seems it works: <Quote> You can run qemu headless, with a virtual framebuffer. Makes for a virtual machine you connect to via VNC to view. </Quote> Yes, no X nor any other graphics requirement. We have been experimenting with Ubuntu 8.04 JeOS, which has KVM, qemu, etc. and no X. Works ok.... but not like the Devil ;-) [........] -- Regards Heiko Zuerker http://www.devil-linux.org ---------------------------------------------------------------- This message was sent using IMP, the Internet Messaging Program. ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/ _______________________________________________ Devil-linux-discuss mailing list Dev...@li... https://lists.sourceforge.net/lists/listinfo/devil-linux-discuss |
|
From: Kari M. <kar...@tr...> - 2008-07-25 08:12:56
|
_____ Alkuperäinen viesti _____ Aihe: Re: [Devil-Linux-discuss] Adding KVM with support tools to DL? Tekijä: "Bruce Smith" <bw...@re...> Päivämäärä: 24. heinäkuuta 2008 22:25:56 >> Then DL would be comparable (in some aspects) to VMware ESX 3i >> installable, or VMware ESX 3 classic with service console >> (RHEL3-based). ....and way ahead of VMware Server (an application). > > So there's no X required to run this? I was wondering about that too. :-) No X. >> I'm not sure if QEMU is running with GRSecurity enabled (NO BRUCE!, it >> stays in there...) > > We could always have the qemu and grsecurity as exclusive options in > the build config system. This way you could build a non-grsecurity DL > version with qemu (or whatever else, like xen, etc) included. Yes. qemu would only be included in the DL "server" version. Sounds very good.... There is also a requirement for a tool to create either tun or tap for the VM. OpenVPN is ok for that, and we have it already. Another option is dedicated tool "tunctl" or "tunctrl" from Redhat, I think. >> When can we expect i686 (non-GRSecurity) editions of 1.3.x? Already on the FTP site. All of the 1.3 releases I've uploaded (with the "-bs" suffix), are compiled without grsec. I didn't realise it was -bs, the difference. It used to be i586 (GRSec) vs. i686 (no GRSec). The only difference between those and the official server release is these are compiled as i586 instead of i686 to allow more people to test them. Is an i586 compile okay for qemu? I see no restrictions for that. >> I feel more comfortable running those as servers. Dunno why.. Same here! > You can always compile your own. > Not sure when Bruce is planning to compile the next version, but there > should be an older one on the FTP server in the testing directory. The latest 1.3 test release on the server now (about 10 days old) is fairly current. There have been a couple updates since then, so I was planning on compiling a new one tonight to upgrade some of my own servers tomorrow. 11-Jul test is very good, thanks. Mailgw (clamav, sagator, spamassassin), firewall, ftp server, dns server. All upgraded ok. There was one minor hassle, tough. On a system without floppy drive, no HD, etc stored on USB key, DL on CD, upgrade was ok, but save-config did not work. (mount command in the script complained it couldn't mount the USB key as it was already mounted, even it was not.) I had to copy manually the etc-mods.tar.bz2 onto /dev/sda1. Reboot and everything, including save-config worked ok since. I'll upgrade another similar system next week and report if it has same symptoms. - BS ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/ _______________________________________________ Devil-linux-discuss mailing list Dev...@li... https://lists.sourceforge.net/lists/listinfo/devil-linux-discuss |
|
From: Bruce S. <bw...@re...> - 2008-07-25 14:29:06
|
> Yes. qemu would only be included in the DL "server" version. > > Sounds very good.... > There is also a requirement for a tool to create either tun or tap for the VM. OpenVPN is ok for that, and we have it already. Another option is dedicated tool "tunctl" or "tunctrl" from Redhat, I think. Since I've never used qemu, if I were to try and add it, I have no idea where to start. Can you provide a list of packages that need to be added (complete with links to tarballs), and what ever else needs to be changed (kernel parameters, etc.)? Then I would probably need some kind of getting-started guide on how to test it. Or maybe some way to try it on my Ubuntu 8.04.1 desktop. It's much easier adding stuff that I've used before! :-) >>> When can we expect i686 (non-GRSecurity) editions of 1.3.x? > > Already on the FTP site. All of the 1.3 releases I've uploaded (with > the "-bs" suffix), are compiled without grsec. > > I didn't realise it was -bs, the difference. It used to be i586 (GRSec) vs. i686 (no GRSec). Since I have a very strong dislike for grsec, you can pretty much be assured that anything I compile is without grsec. > 11-Jul test is very good, thanks. Mailgw (clamav, sagator, spamassassin), firewall, ftp server, dns server. All upgraded ok. > > There was one minor hassle, tough. > > On a system without floppy drive, no HD, etc stored on USB key, DL on CD, upgrade was ok, but save-config did not work. (mount command in the script complained it couldn't mount the USB key as it was already mounted, even it was not.) I had to copy manually the etc-mods.tar.bz2 onto /dev/sda1. Reboot and everything, including save-config worked ok since. I'll upgrade another similar system next week and report if it has same symptoms. I haven't seen that one. Please post more details if it happens again. I'm currently compiling a new 1.3 now with all the updates Serge committed yesterday. Hopefully it'll be on the FTP server later today. - BS |
|
From: Kari M. <kar...@tr...> - 2008-07-26 09:50:36
|
below.. _____ Alkuperäinen viesti _____ Aihe: Re: [Devil-Linux-discuss] Adding KVM with support tools to DL? Tekijä: "Bruce Smith" <bw...@re...> Päivämäärä: 25. heinäkuuta 2008 17:29:00 > Yes. qemu would only be included in the DL "server" version. > > Sounds very good.... > There is also a requirement for a tool to create either tun or tap for the VM. OpenVPN is ok for that, and we have it already. Another option is dedicated tool "tunctl" or "tunctrl" from Redhat, I think. Since I've never used qemu, if I were to try and add it, I have no idea where to start. Can you provide a list of packages that need to be added (complete with links to tarballs), and what ever else needs to be changed (kernel parameters, etc.)? Then I would probably need some kind of getting-started guide on how to test it. Or maybe some way to try it on my Ubuntu 8.04.1 desktop. It's much easier adding stuff that I've used before! :-) Most certainly! I googled "ubutntu 8.04 kvm tutorial"... http://tombuntu.com/index.php/2008/04/14/virtualization-with-virt-manager-and-kvm-in-ubuntu-804/ ..which contains as extra the graphical VM manager. Skip that. https://help.ubuntu.com/community/KVM ...Ubuntu 8.04 Jeos edition etc., command line instructions. wiki.centos.org/HowTos/KVM CentOS, I know, but this has nice brief intro on the networking part of KVM. It is also consice and well written. Recommended. And it lists the odd parts required, which is not many. Networking is the thing most different between physical machines and KVM/Qemu/VirtualBox VMs. http://kvm.qumranet.com/kvmwiki Official home. http://kvm.qumranet.com/kvmwiki/HOWTO ...KVM VM management scripts etc. etc. http://kvm.qumranet.com/kvmwiki/Documents http://kvm.qumranet.com/kvmwiki/Downloads ...starting point for downloads. http://kvm.qumranet.com/kvmwiki/HOWTO1 ...this is good. Setting up KVM to run on your machine. Prerequisites etc. Hope this helps. //Kari >>> When can we expect i686 (non-GRSecurity) editions of 1.3.x? > > Already on the FTP site. All of the 1.3 releases I've uploaded (with > the "-bs" suffix), are compiled without grsec. > > I didn't realise it was -bs, the difference. It used to be i586 (GRSec) vs. i686 (no GRSec). Since I have a very strong dislike for grsec, you can pretty much be assured that anything I compile is without grsec. > 11-Jul test is very good, thanks. Mailgw (clamav, sagator, spamassassin), firewall, ftp server, dns server. All upgraded ok. > > There was one minor hassle, tough. > > On a system without floppy drive, no HD, etc stored on USB key, DL on CD, upgrade was ok, but save-config did not work. (mount command in the script complained it couldn't mount the USB key as it was already mounted, even it was not.) I had to copy manually the etc-mods.tar.bz2 onto /dev/sda1. Reboot and everything, including save-config worked ok since. I'll upgrade another similar system next week and report if it has same symptoms. I haven't seen that one. Please post more details if it happens again. I will. I'm currently compiling a new 1.3 now with all the updates Serge committed yesterday. Hopefully it'll be on the FTP server later today. Thanks. Especially the mailgateway DLs like to be updates often (clamav, spamassassin, but also sagator). - BS |
|
From: Heiko Z. <he...@zu...> - 2008-07-24 19:02:10
|
Quoting Kari Mattsson <kar...@tr...>: > > Quoting Kari Mattsson <kar...@tr...>: > >> >> Just an idea. >> >> Now that Cisco is using/embedding KVM in their carrier class routers, >> <http://www.informationweek.com/blog/main/archives/2008/03/does_ciscos_swi.html>, >> don't you think it would be appropriate to include that in DL, too ;-) >> >> More info on KVM here: http://kvm.qumranet.com/kvmwiki > > I liked and second Bruce's comment on reusing acronyms. > This time KVM is not only reused, but also overloaded. That I think > is rather annoying. > > > >> I'd be nice to have DL VM in DL in the future. Or better, different DL >> roles in different VMs: DNS, OpenVPN, IPSec, firewall, DHCP, FTP, etc. >> >> Unfortunately I'm more on the architecture, design, and admin side, not >> programming. And thus can not help there too much :-( >> >> ** >> >> As KVM is included in kernel 2.6.20+, we should already have much in place. >> >> QEMU is the biggest missing part. > > I do something like that already with the free vmware server and > multiple DL instances. But yes, you're right, all the Kernel stuff is > already included. > > > We are running lots of DLs for different purposes on various > places. Mainly on VMware ESX Server, but also on bare metal. What > I'm silently targeting here, Heiko and Bruce, is to be able to use > DL as an ultra light basis to run several, even non-DL VMs. Zimbra > Collaboration Server, or something on those lines comes to my mind. > Or on older gear, maybe something else. > > Then DL would be comparable (in some aspects) to VMware ESX 3i > installable, or VMware ESX 3 classic with service console > (RHEL3-based). ....and way ahead of VMware Server (an application). So there's no X required to run this? > I'm not sure if QEMU is running with GRSecurity enabled (NO BRUCE!, it > stays in there...) We could always have the qemu and grsecurity as exclusive options in the build config system. This way you could build a non-grsecurity DL version with qemu (or whatever else, like xen, etc) included. > When can we expect i686 (non-GRSecurity) editions of 1.3.x? > I feel more comfortable running those as servers. Dunno why.. You can always compile your own. Not sure when Bruce is planning to compile the next version, but there should be an older one on the FTP server in the testing directory. > Additionally I don't have time, so somebody else would have to take > this project. > > There is no rush. KVM is getting better very fast, the management etc. > It was just an idea... Yeah but if you wait too long, somebody else will run with the same idea. ;-) -- Regards Heiko Zuerker http://www.devil-linux.org ---------------------------------------------------------------- This message was sent using IMP, the Internet Messaging Program. |
|
From: Bruce S. <bw...@re...> - 2008-07-24 19:25:57
|
>> Then DL would be comparable (in some aspects) to VMware ESX 3i >> installable, or VMware ESX 3 classic with service console >> (RHEL3-based). ....and way ahead of VMware Server (an application). > > So there's no X required to run this? I was wondering about that too. :-) >> I'm not sure if QEMU is running with GRSecurity enabled (NO BRUCE!, it >> stays in there...) > > We could always have the qemu and grsecurity as exclusive options in > the build config system. This way you could build a non-grsecurity DL > version with qemu (or whatever else, like xen, etc) included. Yes. qemu would only be included in the DL "server" version. >> When can we expect i686 (non-GRSecurity) editions of 1.3.x? Already on the FTP site. All of the 1.3 releases I've uploaded (with the "-bs" suffix), are compiled without grsec. The only difference between those and the official server release is these are compiled as i586 instead of i686 to allow more people to test them. Is an i586 compile okay for qemu? >> I feel more comfortable running those as servers. Dunno why.. Same here! > You can always compile your own. > Not sure when Bruce is planning to compile the next version, but there > should be an older one on the FTP server in the testing directory. The latest 1.3 test release on the server now (about 10 days old) is fairly current. There have been a couple updates since then, so I was planning on compiling a new one tonight to upgrade some of my own servers tomorrow. - BS |
|
From: Heiko Z. <he...@zu...> - 2008-07-24 19:57:38
|
Quoting Bruce Smith <bw...@re...>: >>> Then DL would be comparable (in some aspects) to VMware ESX 3i >>> installable, or VMware ESX 3 classic with service console >>> (RHEL3-based). ....and way ahead of VMware Server (an application). >> >> So there's no X required to run this? > > I was wondering about that too. :-) I did a quick search on the web and it seems it works: <Quote> You can run qemu headless, with a virtual framebuffer. Makes for a virtual machine you connect to via VNC to view. </Quote> [........] -- Regards Heiko Zuerker http://www.devil-linux.org ---------------------------------------------------------------- This message was sent using IMP, the Internet Messaging Program. |
×
Want the latest updates on software, tech news, and AI?
Get latest updates about software, tech news, and AI from SourceForge directly in your inbox once a month.
Thanks for helping keep SourceForge clean.
X