Internal and external domains on one host
by Kanwar Ranbir Sandhu
Hi Everyone,
Would I be crazy to use one physical box to run a few internal Xen domU
(stuff for the LAN), and use the same host to run a few domU in a DMZ
(website, mail, etc.)? Besides the fact that a DoS attack on the DMZ
domU could slow the domU on the LAN side down to a crawl, is there
anything else that I should be concerned about?
I have a small home office, and want to consolidate my three servers to
two. Besides saving some electricity, the box in the DMZ is old and
slow - the one I want to consolidate to is _much_ better. The better
server is already running Xen and a few domU, actually.
Has anyone done this? A little part of me says it would be fool hardy,
but I can be convinced otherwise!
Thanks in advance,
Ranbir
--
Kanwar Ranbir Sandhu
Linux 2.6.18-1.2869.fc6 i686 GNU/Linux
16:37:22 up 4 days, 5:24, 2 users, load average: 0.84, 0.71, 0.59
17 years, 3 months
Re: [Fedora-xen] Unable to start a FC3 domU under FC6 using Fedora bundled Xen packages
by AndreGround
Andrew, Ninny,
thanks a lot for your reply!
I'm collecting data (configurations and logs) from different tests
I've made and then I'll post everything in order to let you better
analyze my issue.
Thanks again,
Andrea
On 1/18/07, ninny issac <ninyissac(a)gmail.com> wrote:
> Hi,
> The error is probably due to incorrect root partition for your guest domain.
> The kernel will start /sbin/init after mounting the root partion.
> Could you provide more details like what is the root partion for FC3 domU ,
> whether it is a partition or file and also your configuration file for domU,
> so people can easily figure it out.
>
>
>
>
> On 1/17/07, AndreGround <andreground(a)gmail.com > wrote:
> >
> > Hi,
> > this is the error I get when I try to start my FC3 domU.
> >
> > exec of init (/sbin/init) failed!!!: No such file or directory
> > Kernel panic - not syncing: Attempted to kill init!
> >
> > I can share any config if you need to check something.
> >
> > Any help/idea is *REALLY* appreciated.
> >
> > Thanks in advance,
> > Andrea
> >
> > --
> > Fedora-xen mailing list
> > Fedora-xen(a)redhat.com
> > https://www.redhat.com/mailman/listinfo/fedora-xen
> >
>
>
17 years, 3 months
Asterisk and passing a TDM400P card to a DomU
by Steven Haigh
Hi guys,
I'm trying to use a TDM400P PCI card in a DomU host however when I
insert the modules for the PCI card to the asterisk DomU, I get the
following:
Jan 17 22:13:48 asterisk kernel: Zapata Telephony Interface
Registered on major 196
Jan 17 22:13:48 asterisk kernel: Zaptel Version: 1.4.0 Echo
Canceller: MG2
Jan 17 22:13:53 asterisk kernel: PCI: Enabling device 0000:00:00.0
(0000 -> 0003)
Jan 17 22:13:53 asterisk kernel: Freshmaker version: 73
Jan 17 22:13:53 asterisk kernel: Freshmaker passed register test
Jan 17 22:13:54 asterisk kernel: Module 0: Not installed
Jan 17 22:13:54 asterisk kernel: Module 1: Not installed
Jan 17 22:13:54 asterisk kernel: Module 2: Not installed
Jan 17 22:13:54 asterisk kernel: Module 3: Installed -- AUTO FXO
(AUSTRALIA mode)
Jan 17 22:13:54 asterisk kernel: Found a Wildcard TDM: Wildcard
TDM400P REV I (1 modules)
Jan 17 22:13:54 asterisk kernel: Registered tone zone 1 (Australia)
Jan 17 22:13:54 asterisk kernel: TDM PCI Master abort
Jan 17 22:13:54 asterisk last message repeated 3100 times
Jan 17 22:13:54 asterisk kernel: TDM Pr ar abort
Jan 17 22:13:54 asterisk kernel: r abort
Jan 17 22:13:54 asterisk kernel: <r aborr abor aborr abortr abort
Jan 17 22:13:54 asterisk kernel: r abort
Jan 17 22:13:54 asterisk kernel: <r abort
Jan 17 22:13:54 asterisk kernel: r abort
Jan 17 22:13:54 asterisk kernel: r abort
Jan 17 22:13:54 asterisk kernel: <r abortr abort
<<< repeated many, many times >>>
This seems to happen until I unload the module.
I have passed the PCI card through successfully, as I see this on the
DomU:
# lspci
00:00.0 Communication controller: Tiger Jet Network Inc. Tiger3XX
Modem/ISDN interface
Anyone have any ideas on this?
--
Steven Haigh
Email: netwiz(a)crc.id.au
Web: http://www.crc.id.au
Phone: (03) 9017 0597 - 0412 935 897
17 years, 3 months
Unable to start a FC3 domU under FC6 using Fedora bundled Xen packages
by AndreGround
Hi,
this is the error I get when I try to start my FC3 domU.
exec of init (/sbin/init) failed!!!: No such file or directory
Kernel panic - not syncing: Attempted to kill init!
I can share any config if you need to check something.
Any help/idea is *REALLY* appreciated.
Thanks in advance,
Andrea
17 years, 3 months
4gb seg fixup, process on FC6 domU
by Karl Guenther
Hi,
I have read through the threads on the 4gb seg fixup. Both Xen and
beagle are important to me for day to day use.
I boot into FC6 Xen and beagle seems to work but I am not sure what the
4gb seg fixup messages are all about. Are they just warning messages?
Is anything failing that I should know about as a user of both Xen and
beagle?
Thank You
Karl Guenther
17 years, 3 months
DomU problem with tap:aio and xvdN.
by Gary W. Smith
Hello,
In a nutshell, I can't get DomU's to work with xvdN and tap:aio under
FC6.2869. I have also tried to get them to work with XenSource 3.0.4.
I've been asking this in the xen-users group but I haven't had any
positive response. I have the following DomU's that I'm testing with:
FC4/5/6, CentOS4. In general, they all seem to have the same problems.
The problem is that when I reference the FC6 Xen boot kernel in the
kernel config line for the DomU it kernel panics. I have copied
/lib/modules/* (FC6 and XenSource) to the DomU as well for testing. If
I do sdN and file it all works fine, but only for XenSource kernel.
At the Dom0 level we are booting to FC.2869 and only referencing the
XenSource 3.0.4 images at the DomU config file level.
Am I missing something fundamental? I have also ran into this problem
with the jailtime.org images as well.
FC6 kernel:
(kernel = '/boot/vmlinuz-2.6.18-1.2869.fc6xen')
XENBUS: Device with no driver: device/vbd/51713
XENBUS: Device with no driver: device/vbd/51714
XENBUS: Device with no driver: device/vif/0
md: Autodetecting RAID arrays.
md: autorun ...
md: ... autorun DONE.
VFS: Cannot open root device "xvda1" or unknown-block(0,0)
Please append a correct "root=" boot option
Kernel panic - not syncing: VFS: Unable to mount root fs on
unknown-block(0,0)
XenSource 3.0.4 kernel:
(kernel = '/xen/xen-3.0.4/boot/vmlinuz-2.6-xen')
md: Autodetecting RAID arrays.
md: autorun ...
md: ... autorun DONE.
WARNING: g.e. still in use!
WARNING: leaking g.e. and page still in use!
end_request: I/O error, dev xvda1, sector 2
EXT2-fs: unable to read superblock
Kernel panic - not syncing: VFS: Unable to mount root fs on
unknown-block(202,1)
Overall config file:
name = 'fedora4'
memory = '256'
disk = [ 'file:/xen-build/fedora4/xen-D0.img,xvda1,w' ,
'file:/xen-build/fedora4/xen-swap.img,xvda2,w' ]
#disk = [
'tap:aio:/xen-build/fedora4/xen-D0.img,xvda1,w','tap:aio:/xen-build/fedo
ra4/xen-swap.img,xvda2,w' ]
root = '/dev/xvda1 ro'
vif = [ 'mac=00:16:e6:CD:49:5B' ]
kernel = '/xen/xen-3.0.4/boot/vmlinuz-2.6-xen'
#kernel = '/boot/vmlinuz-2.6.18-1.2869.fc6xen'
on_reboot = 'restart'
on_crash = 'restart'
extras = 'console=xvc0'
17 years, 3 months
Fwd: %post doubts
by suyash jape
---------- Forwarded message ----------
From: suyash jape <suyashjape(a)gmail.com>
Date: Jan 16, 2007 9:36 PM
Subject: %post doubts
To: xen-users(a)lists.xensource.com
Hello ,I 'm a newbie Linux and i'm trying to use Xen and Linux together.
I'm facing few problens with %post in kickstart in FC5.
1)Copying of files during post is failing inspite of having Static IP.(
resolv.conf must have been ready.So dunno why.).
2)Other than /usr/share/doc/anaconda-11.1.1.3/kickstart-docs.txt file,
Could you suggest some documents which could tell me
"how flexible is %post and what all are the thigns we can do with it"
3)Also i'm a little confused about the state of the file system when
anaconda is running %post.Could you shed some light on that and what things
like /mnt/sysimage corresponds to?
will be eternally grateful
Thanks.
17 years, 3 months
Installing RHEL5 as a guest OS
by Andrew Avramenko
Hello!
I have RHEL 5 beta 2 installed as OS of domain0. Now I'm trying to
install the same OS as guest. In the middle of installing RPMs
anaconda crashed with "install exited abnormally". In some cases it
crashed with errors in rpm locks. Could you help me?
I'm new for Xen, sorry if something wrong :)
Here is information about hardware and soft:
Memory for guest domain: 192 Mb
CPU: 1 VCPU
==============================================
[root@localhost ~]# cat /proc/cpuinfo
processor : 0
vendor_id : GenuineIntel
cpu family : 15
model : 4
model name : Intel(R) Pentium(R) 4 CPU 3.00GHz
stepping : 3
cpu MHz : 2992.658
cache size : 2048 KB
fdiv_bug : no
hlt_bug : no
f00f_bug : no
coma_bug : no
fpu : yes
fpu_exception : yes
cpuid level : 5
wp : yes
flags : fpu tsc msr pae mce cx8 apic mtrr mca cmov pat pse36
clflush dts acpi mmx fxsr sse sse2 ss ht tm pbe nx lm constant_tsc pni
monitor ds_cpl est cid cx16 xtpr
bogomips : 7485.54
processor : 1
vendor_id : GenuineIntel
cpu family : 15
model : 4
model name : Intel(R) Pentium(R) 4 CPU 3.00GHz
stepping : 3
cpu MHz : 2992.658
cache size : 2048 KB
fdiv_bug : no
hlt_bug : no
f00f_bug : no
coma_bug : no
fpu : yes
fpu_exception : yes
cpuid level : 5
wp : yes
flags : fpu tsc msr pae mce cx8 apic mtrr mca cmov pat pse36
clflush dts acpi mmx fxsr sse sse2 ss ht tm pbe nx lm constant_tsc up
pni monitor ds_cpl est cid cx16 xtpr
bogomips : 7485.54
===========================================
--
With Best Regards,
RHCE, Avramenko Andrew
R-Style. Technical support.
17 years, 3 months
More Xen/FC6 crashing
by master@bradleyland.com
Anyone have any ideas on this one? I can't keep my main dom0 machine
running for more than 5-8 days before I get a crash. I turned ACPI on and
it seemed to get the machine to run longer, but who knows?
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
(XEN) (file=memory.c, line=66) Could not allocate order=0 extent: id=0
memflags=0 (32 of 64)
(XEN) (file=memory.c, line=66) Could not allocate order=0 extent: id=0
memflags=0 (33 of 64)
(XEN) (file=memory.c, line=66) Could not allocate order=0 extent: id=0
memflags=0 (32 of 64)
(XEN) (file=memory.c, line=66) Could not allocate order=0 extent: id=0
memflags=0 (45 of 64)
(XEN) (file=memory.c, line=66) Could not allocate order=0 extent: id=0
memflags=0 (59 of 64)
(XEN) (file=memory.c, line=66) Could not allocate order=0 extent: id=0
memflags=0 (47 of 64)
(XEN) (file=memory.c, line=66) Could not allocate order=0 extent: id=0
memflags=0 (52 of 64)
(XEN) (file=memory.c, line=66) Could not allocate order=0 extent: id=0
memflags=0 (26 of 40)
(XEN) (file=memory.c, line=66) Could not allocate order=0 extent: id=0
memflags=0 (60 of 64)
(XEN) (file=memory.c, line=66) Could not allocate order=0 extent: id=0
memflags=0 (44 of 64)
(XEN) (file=memory.c, line=66) Could not allocate order=0 extent: id=0
memflags=0 (54 of 64)
(XEN) (file=memory.c, line=66) Could not allocate order=0 extent: id=0
memflags=0 (43 of 64)
(XEN) (file=memory.c, line=66) Could not allocate order=0 extent: id=0
memflags=0 (40 of 64)
(XEN) (file=memory.c, line=66) Could not allocate order=0 extent: id=0
memflags=0 (38 of 64)
(XEN) (file=memory.c, line=66) Could not allocate order=0 extent: id=0
memflags=0 (56 of 64)
(XEN) (file=memory.c, line=66) Could not allocate order=0 extent: id=0
memflags=0 (56 of 64)
(XEN) (file=memory.c, line=66) Could not allocate order=0 extent: id=0
memflags=0 (62 of 64)
(XEN) (file=memory.c, line=66) Could not allocate order=0 extent: id=0
memflags=0 (63 of 64)
(XEN) (file=memory.c, line=66) Could not allocate order=0 extent: id=0
memflags=0 (61 of 64)
(XEN) (file=memory.c, line=66) Could not allocate order=0 extent: id=0
memflags=0 (50 of 64)
(XEN) (file=memory.c, line=66) Could not allocate order=0 extent: id=0
memflags=0 (60 of 64)
list_del corruption. prev->next should be d08d9280, but was d08d0080
------------[ cut here ]------------
kernel BUG at lib/list_debug.c:65!
invalid opcode: 0000 [#1]
SMP
last sysfs file: /devices/platform/i2c-9191/9191-0290/temp3_max
Modules linked in: nls_utf8 cifs netloop netbk blktap blkbk ipv6 autofs4
it87 hwmon_vid hwmon i2c_isa hidp l2cap bluetooth iptable_raw xt_policy
xt_multiport ipt_ULOG ipt_TTL ipt_ttl ipt_TOS ipt_tos ipt_TCPMSS ipt_SAME
ipt_REJECT ipt_REDIRECT ipt_recent ipt_owner ipt_NETMAP ipt_MASQUERADE
ipt_LOG ipt_iprange ipt_hashlimit ipt_ECN ipt_ecn ipt_DSCP ipt_dscp
ipt_CLUSTERIP ipt_ah ipt_addrtype ip_nat_tftp ip_nat_snmp_basic
ip_nat_pptp ip_nat_irc ip_nat_ftp ip_nat_amanda ip_conntrack_tftp
ip_conntrack_pptp ip_conntrack_netbios_ns ip_conntrack_irc
ip_conntrack_ftp ts_kmp ip_conntrack_amanda xt_tcpmss xt_pkttype
xt_physdev bridge xt_NFQUEUE xt_MARK xt_mark xt_mac xt_limit xt_length
xt_helper xt_dccp xt_conntrack xt_CONNMARK xt_connmark xt_CLASSIFY
xt_tcpudp xt_state iptable_nat ip_nat ip_conntrack iptable_mangle
nfnetlink iptable_filter ip_tables x_tables sunrpc video sbs i2c_ec button
battery asus_acpi ac parport_pc lp parport floppy ide_cd serio_raw cdrom
pcspkr r8169 sis900 mii i2c_sis630 i2c_core dm_snapshot dm_zero dm_mirror
dm_mod raid456 xor ext3 jbd ehci_hcd
CPU: 0
EIP: 0061:[<c04e0b6b>] Not tainted VLI
EFLAGS: 00010086 (2.6.18-1.2869.fc6xen #1)
EIP is at list_del+0x23/0x6c
eax: 00000048 ebx: d08d9280 ecx: c066d030 edx: f5416000
esi: c0ca3e20 edi: e7a9b000 ebp: c185c520 esp: c0cd5efc
ds: 007b es: 007b ss: 0069
Process events/0 (pid: 5, ti=c0cd5000 task=ed7c0030 task.ti=c0cd5000)
Stack: c0631e24 d08d9280 d08d0080 d08d9280 c046223d c0416178 00000006
00000004
c0739030 c0739020 00000006 c0739000 00000000 c0462340 00000000
00000000
c185c520 c0ca3e44 c0ca3e20 c185c520 c0fdd2a0 00000000 c04637e0
00000000
Call Trace:
[<c046223d>] free_block+0x63/0xdc
[<c0462340>] drain_array+0x8a/0xb5
[<c04637e0>] cache_reap+0x85/0x117
[<c042b1c8>] run_workqueue+0x83/0xc5
[<c042bab8>] worker_thread+0xd9/0x10d
[<c042dfdf>] kthread+0xc0/0xed
[<c0402a69>] kernel_thread_helper+0x5/0xb
DWARF2 unwinder stuck at kernel_thread_helper+0x5/0xb
Leftover inexact backtrace:
=======================
Code: 00 00 89 c3 eb e8 90 90 53 89 c3 83 ec 0c 8b 40 04 8b 00 39 d8 74 1c
89 5c 24 04 89 44 24 08 c7 04 24 24 1e 63 c0 e8 28 c3 f3 ff <0f> 0b 41 00
61 1e 63 c0 8b 03 8b 40 04 39 d8 74 1c 89 5c 24 04
EIP: [<c04e0b6b>] list_del+0x23/0x6c SS:ESP 0069:c0cd5efc
<3>BUG: sleeping function called from invalid context at kernel/rwsem.c:20
in_atomic():0, irqs_disabled():1
[<c0405707>] dump_trace+0x69/0x1af
[<c0405865>] show_trace_log_lvl+0x18/0x2c
[<c0405e05>] show_trace+0xf/0x11
[<c0405e34>] dump_stack+0x15/0x17
[<c0430b5e>] down_read+0x12/0x20
[<c0428bf9>] blocking_notifier_call_chain+0xe/0x29
[<c041ecf5>] do_exit+0x1b/0x776
[<c0405da6>] die+0x289/0x2ae
[<c04063af>] do_invalid_op+0xa2/0xab
[<c040502b>] error_code+0x2b/0x30
DWARF2 unwinder stuck at error_code+0x2b/0x30
Leftover inexact backtrace:
[<c04e0b6b>] list_del+0x23/0x6c
[<c046223d>] free_block+0x63/0xdc
[<c0416178>] dequeue_task+0x13/0x26
[<c0462340>] drain_array+0x8a/0xb5
[<c04637e0>] cache_reap+0x85/0x117
[<c042b1c8>] run_workqueue+0x83/0xc5
[<c060945b>] _spin_lock_irqsave+0x12/0x17
[<c046375b>] cache_reap+0x0/0x117
[<c042bab8>] worker_thread+0xd9/0x10d
[<c0417889>] default_wake_function+0x0/0xc
[<c042b9df>] worker_thread+0x0/0x10d
[<c042dfdf>] kthread+0xc0/0xed
[<c042df1f>] kthread+0x0/0xed
[<c0402a69>] kernel_thread_helper+0x5/0xb
=======================
BUG: spinlock lockup on CPU#0, events/0/5, c0ca3e44 (Not tainted)
[<c0405707>] dump_trace+0x69/0x1af
[<c0405865>] show_trace_log_lvl+0x18/0x2c
[<c0405e05>] show_trace+0xf/0x11
[<c0405e34>] dump_stack+0x15/0x17
[<c04e09d7>] _raw_spin_lock+0xbf/0xdc
[<c0462568>] cache_alloc_refill+0x60/0x478
[<c04624ef>] kmem_cache_alloc+0x54/0x6d
[<c05aa531>] alloc_skb_from_cache+0x48/0x112
[<c0547e1d>] __dev_alloc_skb+0x4e/0x64
[<ee117eaa>] sis900_interrupt+0x278/0x6ab [sis900]
[<c0441d2a>] handle_IRQ_event+0x27/0x51
[<c0441dea>] __do_IRQ+0x96/0xf2
[<c0406c94>] do_IRQ+0x9e/0xbc
=======================
17 years, 3 months
Re: Using a FC6 Guest as Internet gateway, proxy etc
by Jim Klein
We are doing this now and have been very happy with it. In fact, we have a VM that is NAT routing from a private to a public subnet, which is forwarding to another VM that is routing/transparent proxy to the internet, all through bridged interfaces. All of our host systems are blades on the private subnet.
--
Jim Klein
Director Information Services & Technology
LPIC1, CNA/CNE 4-6, RHCT/RHCE
Saugus Union School District
http://www.saugus.k12.ca.us
"Finis Origine Pendet"
Date: Tue, 16 Jan 2007 01:23:17 +1100
From: Phil Rhoades < phil(a)pricom.com.au >
Subject: [Fedora-xen] Using a FC6 Guest as Internet gateway, proxy etc
To: fedora-xen(a)redhat.com
Message-ID: < 1168870997.10412.10.camel(a)prix.pricom.com.au >
Content-Type: text/plain
People,
Now that I can create FC6 Guests running on FC6 quite happily I am
thinking of using a very stripped down, minimal Guest as the Internet
gateway, proxy etc for the host machine such that the Guest has the real
IP address and the host machine is using a typical private IP address eg
192.168.0.10 - is anyone else doing this successfully?
Thanks,
Phil.
--
Philip Rhoades
Pricom Pty Limited (ACN 003 252 275 ABN 91 003 252 275)
GPO Box 3411
Sydney NSW 2001
Australia
Fax: +61:(0)2-8221-9599
E-mail: phil(a)pricom.com.au
17 years, 3 months