Date: Fri, 06 Nov 2009 20:14:08 -0800 From: Julian Elischer <julian@elischer.org> To: remodeler <remodeler@alentogroup.org> Cc: freebsd-virtualization@freebsd.org Subject: Re: Imunes and FreeBSD 8.0 RC2 Message-ID: <4AF4F410.2050600@elischer.org> In-Reply-To: <20091107013823.M86284@alentogroup.org> References: <7401C27DF540DA4D83B9B35C541825E3E97180@MCHP7I5A.ww902.siemens.net> <20091106030421.M99285@alentogroup.org> <4AF3BC47.4040708@elischer.org> <20091107013823.M86284@alentogroup.org>
next in thread | previous in thread | raw e-mail | index | archive | help
remodeler wrote: > Hi, > > [sorry for dup to Julian] I'm glad you have found it useful. Heres' a chance for you to do something for me :-) can you make a couple of 'vimage recipes' in the form of scripts that people can use to do things? similar to /usr/share/examples/netgraph but /usr/share/examples/vimage. this one you have given would be agreat start and if you have scripts that set up 4 virtual machines on a network or something, that'd be great. We need some examples to seed people so that they can get started on it. > >>> If you want to use netgraph to build a virtual bridge between a physical >>> ethernet interface and the vnet interface on the jail: >>> >>> # create netgraph bridge, connecting physical interface lower hook >>> ngctl mkpeer msk0: bridge lower link0 >>> # give the physical interface hook a convenient name >>> ngctl name msk0:lower bridge0 >>> # connect upper hook of physical interface to the bridge >>> ngctl connect msk0: bridge0: upper link1 >>> # create a netgraph node for the vnet interface, connected to the bridge >>> ngctl mkpeer bridge0: eiface link2 ether >>> # connect the vnet virutal interface and the netgraph node >>> ifconfig ngeth0 vnet ns >> Ironically I haven't played with netgraph on vnet recently but >> haven't you forgotten to put the eiface into the other vimage? > > I mis-labelled the last line, using the name "ns" instead of an example name. > > This server has two dozen virtual servers attached through netgraph, and has > been subjected to very heavy test-loading for the past two weeks (saturating > the 100 base-T NIC's) on my development LAN. I am very impressed with vimage. > This is a good alternative to xen. > > I don't know how most people will do networking on the host for vnet jails, > but netgraph seems to me a natural choice. The jail rc.d scripts are not well > designed for the new applications vimage opens up imo. I'm using a script to > pull configuration info from a db for each virtual server, but there's a lot > of security features in /etc/rc.d/jail that I'd like to migrate into it. > _______________________________________________ > freebsd-virtualization@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-virtualization > To unsubscribe, send any mail to "freebsd-virtualization-unsubscribe@freebsd.org"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4AF4F410.2050600>