From owner-freebsd-net@FreeBSD.ORG Sun May 25 18:38:04 2003 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4A0CB37B401; Sun, 25 May 2003 18:38:04 -0700 (PDT) Received: from jkh-gw.queasyweasel.com (adsl-64-173-3-158.dsl.sntc01.pacbell.net [64.173.3.158]) by mx1.FreeBSD.org (Postfix) with ESMTP id 960CB43F75; Sun, 25 May 2003 18:38:03 -0700 (PDT) (envelope-from jkh@queasyweasel.com) Received: from queasyweasel.com (jkh@narcissus.queasyweasel.com [64.173.15.99])h4Q1at2J075692; Sun, 25 May 2003 18:36:55 -0700 (PDT) (envelope-from jkh@queasyweasel.com) Date: Sun, 25 May 2003 18:38:01 -0700 Content-Type: text/plain; charset=US-ASCII; format=flowed Mime-Version: 1.0 (Apple Message framework v552) To: Marko Zec From: Jordan K Hubbard In-Reply-To: <3ED15D6F.1BF1BB37@tel.fer.hr> Message-Id: Content-Transfer-Encoding: 7bit X-Mailer: Apple Mail (2.552) cc: hackers@freebsd.org cc: net@freebsd.org Subject: Re: Network stack cloning / virtualization patches X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 26 May 2003 01:38:04 -0000 On Sunday, May 25, 2003, at 05:18 PM, Marko Zec wrote: > So, I'd certainly like to virtualize more system resources and make > virtual images as independent from each other as possible, but they > will always > have to share the same kernel. That's actually what I was talking about - my comparison to what IBM's done may have been a bad example since, as you say, they've virtualized the hardware in true IBM (shades of VM) fashion. I think that's actually overkill for many usage scenarios since all you really want is the ability to run an "instance" of the OS which allows for all the user-visible configuration knobs to be changed and the appropriate user-visible resource limits to be enforced independently. Essentially a jail where it's literally impossible to tell that you're not the only "OS" on the machine or to affect a user or resource running on another instance. -- Jordan K. Hubbard Engineering Manager, BSD technology group Apple Computer