Linux环境下配置OPENVZ 虚拟机实例讲解

在Linux 下配置OPENVZ 实例

  推荐使用Fedora Core 4/5/3 或者RHEL/CentOS 4。

  1. 下载安装文件

  根据您的内核版本在这里: 下载。

# rpm -ihv vzkernel-name*.rpm

  2.修改grub.conf 文件

  title OpenVZ (2.6.8-022stab029.1) root (hd0,0) kernel /vmlinuz-2.6.8-022stab029.1 ro root=/dev/sda5 initrd /initrd-2.6.8-022stab029.1.img

  3.修改、etc/sysyctl.conf文件:

  /etc/sysctl.conf:

# On Hardware Node we generally need

# packet forwarding enabled and proxy arp disabled

net.ipv4.ip_forward = 1

net.ipv4.conf.default.proxy_arp = 0

# Enables source route verification

net.ipv4.conf.all.rp_filter = 1

# Enables the magic-sysrq

key kernel.sysrq = 1

#net.ipv4.tcp_ecn = 0

# we do not want all our interfaces to send redirects

net.ipv4.conf.default.send_redirects = 1

  4. 如果你运行了iptables防火墙和SELinux,先关闭和禁止。

  编辑/etc/sysconfig/selinux:

SELINUX=disabled。

另外还要关闭iptables防火墙。

  5.安装OpenVZ管理软件

  根据您的版本在这里: 下载。

# rpm –Uhv vzctl*.rpm vzquota*.rpm vzpkg*.rpm

  6.重新启动VZ

  # /etc/init.d/vz start

  7.安装模板

  # rpm –ihv vztmpl-fedora-core-3-1.0-2.noarch.rpm

# vzpkgcache

Creating cache for fedora-core-3 OS template

Setting up install process

Packing cache file fedora-core-3.tar.gz ...

Cache file fedora-core-3.tar.gz [130M] created.

  8.为虚拟服务器创建一个非零ID

  # vzctl create 101

Creating VPS private area: /vz/private/101

VPS is mounted

Postcreate action done

VPS is unmounted

VPS private area was created

  9.设置为零参数

  # vzctl set 101 --hostname test101.my.org --save

Hostname for VPS set: test101.my.org

Saved parameters for VPS 101

# vzctl set 101 --ipadd 10.0.186.1 --save

Adding IP address(es): 10.0.186.1

Saved parameters for VPS 101

# vzctl set 101 --nameserver 192.168.1.165 --save

File resolv.conf was modified

Saved parameters for VPS 101

  10.设置root用户口令

  # vzctl set 101 --userpasswd root:test

  11.启动SSH守护进程

  # vzctl exec 101 service sshd start

  12.启动VPS

  # vzctl start 101

Starting VPS ...

VPS is mounted

Adding IP address(es): 10.0.186.101 Hostname for VPS 101 set: test.my.org

VPS start in progress...

  13.加载防火墙

  前面关闭的防火墙,出于安全考虑这里还要加载

  # vzctl set 101 --iptables iptable_filter --iptables ipt_length --iptables ipt_limit --iptables iptable_mangle --iptables ipt_REJECT --save

内容版权声明:除非注明,否则皆为本站原创文章。

转载注明出处:https://www.heiqu.com/wypzwy.html