Cisco Virtual Infrastructure Manager Administrator Guide, Release 2.2.11 First Published: 2018-01-19

Total Page:16

File Type:pdf, Size:1020Kb

Cisco Virtual Infrastructure Manager Administrator Guide, Release 2.2.11 First Published: 2018-01-19 Cisco Virtual Infrastructure Manager Administrator Guide, Release 2.2.11 First Published: 2018-01-19 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 527-0883 © 2018 Cisco Systems, Inc. All rights reserved. CONTENTS CHAPTER 1 Managing Cisco NFVI 1 Managing Cisco NFVI Pods 2 General Guidelines for Pod Management 2 Identifying the Install Directory 4 Managing Hosts in Cisco VIM or NFVI Pods 4 Recovering Cisco NFVI Pods 7 Managing Nova Compute Scheduler Filters and User Data 8 Utilizing NUMA in Cisco NFV Infrastructure 9 Monitoring Cisco NFVI Health with CloudPulse 10 Assessing Cisco NFVI status with cloud-sanity 12 Service Catalog URL 14 Get Token from Keystone 14 Get Service Catalog URL for Cloudpulse 15 Cloudpulse API's 15 List of Cloudpulse Tests 16 Get detailed result of 1 test 16 Get List of Tests Available 17 Schedule a manual cloudpulse test: 17 Remove the results of a test 18 Checking Network Connections 18 Enabling NFVBench Post Deployment 19 NFVBench Usage 22 NFVBench Command Line Options 24 Control Plane Verification 24 Fixed Rate Run Test 24 Packet Sizes 25 NDR and PDR Test 25 Multi-chain Test 25 Cisco Virtual Infrastructure Manager Administrator Guide, Release 2.2.11 iii Contents Multi-flow Test 25 External Chain Test 25 NFVBench Result Generation and Storage 26 Interpretation of Results 26 Advanced Configuration 31 Cisco VIM CLI 31 NFVBench REST Interface 32 Enabling or Disabling Autobackup of Management Node 32 Forwarding ELK logs to External Syslog Server 33 Adding and Reconfiguring VIM Administrators 33 Reconfigure of Proxy Post Install 34 Enabling Custom Policy for VNF Manager Post Install 34 Updating Containers in a Running Cisco VIM Cloud 35 Updating Cisco VIM Software Using a USB 36 Updating Cisco VIM Software Using Network Installation 38 Upgrading Containers in a Running Cisco VIM Cloud 39 Upgrading VIM Software Using a USB 41 Upgrading Cisco VIM Software Using Network Installation 44 VM Resizing 45 Nova Migrate 45 CHAPTER 2 Cisco VIM REST API 47 Overview to Cisco VIM REST API 47 Cisco VIM REST API Resources 48 CHAPTER 3 Monitoring Cisco NFVI Performance 81 Logging and Monitoring in Cisco NFVI 81 Displaying Cisco VIM Log Files Using the CLI 84 Logging Into the Kibana Dashboard 85 Rotation of the Cisco VIM Logs 95 Network Performance Test with NFVBench 95 CHAPTER 4 Managing Cisco NFVI Security 97 Verifying Management Node Network Permissions 97 Verifying Management Node File Permissions 98 Cisco Virtual Infrastructure Manager Administrator Guide, Release 2.2.11 iv Contents Viewing Administrator Access Attempts 98 Verifying SELinux 99 Validating Port Listening Services 99 Validating Non-Root Users for OpenStack Services 100 Verifying Password Strength 100 Reconfiguring Passwords and OpenStack Configurations 101 Reconfiguring CIMC Password on an Existing Install 104 Increasing Provider and Tenant VLAN Ranges 105 Enabling NFVIMON Post Pod Install 105 Before you Begin 106 Installation of NFVIMON Dispatcher 106 Fernet Key Operations 107 Managing Certificates 108 Enabling TLS post install 108 Reconfiguring TLS Certificates 109 Enabling Keystone v3 on an Existing Install 110 LDAP/AD support with Keystone v3 110 Enabling ACI in Cisco VIM 111 CHAPTER 5 Managing Cisco NFVI Storage 113 Cisco NFVI Storage Architecture 113 Verifying and Displaying Ceph Storage Pools 114 Checking the Storage Cluster Health 115 Checking Glance Connectivity 116 Verifying Glance and Ceph Monitor Keyrings 117 Verifying Glance Image ID on Ceph 118 Checking Cinder Connectivity 118 Verifying the Cinder and Ceph Monitor Keyrings 119 Verifying the Cinder Volume ID on Ceph 120 Checking Nova Connectivity 120 Verifying the Nova and Ceph Monitor Keyrings 121 Verifying Nova Instance ID 122 Displaying Docker Disk Space Usage 123 Reconfiguring SwiftStack Integration 123 Integrating SwiftStack over TLS 124 Cisco Virtual Infrastructure Manager Administrator Guide, Release 2.2.11 v Contents Cinder Volume Backup on SwiftStack 124 Reconfiguring Administrator Source Networks 125 Password Reset for Cisco VIM Management Node 125 CHAPTER 6 Overview to Cisco VIM Insight 127 Cisco VIM Insight Overview 127 Cisco VIM Insight Admin UI Overview 129 Cisco VIM Insight Pod UI Overview 129 CHAPTER 7 Managing Cisco VIM through Insight 131 UI Administrators Privileges and Responsibilities 131 Pod UI Privileges and Responsibilities 132 Adding Cisco VIM Pod 132 Deleting Pod from Cisco VIM insight 133 Context Switching within Insight 134 CHAPTER 8 Managing Blueprints 135 Blueprints 135 Blueprint Activation 135 Viewing Blueprint Details 136 Creating a Blueprint for B-Series Server Platform 136 Creating a Blueprint for C-Series Server Platform 153 Creating a Blueprint using Upload Functionality 173 Activating a Blueprint in an Existing Pod with OpenStack Installed 174 Downloading Blueprint 175 Validating Blueprint 175 Managing Post Install Features 176 Monitoring the Pod 176 Cross Launching Horizon 176 Run VMTP 177 Run CloudPulse 177 Run NFV Bench 177 Reconfiguring CIMC Password through Insight 178 CHAPTER 9 Managing Pod Through Cisco VIM Insight 181 Cisco Virtual Infrastructure Manager Administrator Guide, Release 2.2.11 vi Contents Managing Hardware 181 Managing Storage Nodes 181 Adding Storage Node 182 Deleting Storage Node 184 Managing Compute Nodes 184 Adding Compute Node 184 Deleting Compute Node 186 Managing Control Nodes 186 Replacing Control Node 187 Managing Software 187 Reconfigure Password 188 Reconfigure OpenStack Services, TLS Certificates and ELK Configurations 188 Reconfiguring CIMC Password 189 Reconfigure Optional Services 189 Reconfiguring Optional Features through Insight 191 Pod User Administration 202 Managing Roles 202 Managing Users 203 Managing Root CA Certificate 203 CHAPTER 10 Day 2 Operations of Cisco VIM Insight 205 Shutting Down Cisco VIM Insight 205 Restarting Cisco VIM Insight 206 Restoring VIM Insight 206 Reconfiguring VIM Insight 208 Reconfiguring Insight TLS Certificate 209 Reconfigure 3rd Party TLS Certificate 209 Reconfigure Self Signed TLS Certificate 211 Switch from Self Signed TLS Certificate to 3rd Party TLS Certificate 213 Reconfiguring Insight MySQL Database Password 215 System generated Insight DB password 215 User supplied Insight DB password 215 Reconfigure Insight SMTP Server 217 Update VIM Insight 219 Update Scenarios 219 Cisco Virtual Infrastructure Manager Administrator Guide, Release 2.2.11 vii Contents Update VIM Insight with Internet Access 219 VIM Insight without Internet Access 221 Rollback VIM Insight 222 Commit VIM Insight 224 CHAPTER 11 Overview to the Cisco Virtual Topology System 225 Understanding Cisco VTS 225 Cisco VTS Architecture Overview 226 Virtual Topology Forwarder 227 Overview to Cisco VTF and VPP 227 VPP + VHOSTUSER 228 Virtual Topology System High Availability 229 CHAPTER 12 Managing Backup and Restore Operations 231 Managing Backup and Restore Operations 231 Backing up the Management Node 231 Backup with Forwarding ELK logs to External Syslog Server 233 Backing up VIM Insight 233 Autobackup Insight 233 Backup Insight at default backup location 236 Backup Insight at user defined backup location 237 Restoring the Management Node 238 Management Node Auto-backup 240 CHAPTER 13 Troubleshooting 243 Displaying Cisco NFVI Node Names and IP Addresses 243 Verifying Cisco NFVI Node Interface Configurations 244 Displaying Cisco NFVI Node Network Configuration Files 246 Viewing Cisco NFVI Node Interface Bond Configuration Files 246 Viewing Cisco NFVI Node Route Information 247 Viewing Linux Network Namespace Route Information 248 Prior to Remove Storage Operation 248 Troubleshooting Cisco NFVI 249 Management Node Recovery Scenarios 251 Recovering Compute Node Scenario 259 Cisco Virtual Infrastructure Manager Administrator Guide, Release 2.2.11 viii Contents Running the Cisco VIM Technical Support Tool 261 Tech-support configuration file 262 Tech-support when servers are offline 265 Disk-maintenance tool to manage physical drives 265 OSD-maintenance tool 270 Utility to resolve Cisco VIM Hardware Validation Failures 274 Command Usage 275 Examples of Command Usage 276 Cisco Virtual Infrastructure Manager Administrator Guide, Release 2.2.11 ix Contents Cisco Virtual Infrastructure Manager Administrator Guide, Release 2.2.11 x CHAPTER 1 Managing Cisco NFVI The following topics provide general management procedures that you can perform if your implementation is Cisco VIM by itself or is Cisco VIM and Cisco VIM Insight. • Managing Cisco NFVI Pods, page 2 • Managing Nova Compute Scheduler Filters and User Data, page 8 • Utilizing NUMA in Cisco NFV Infrastructure, page 9 • Monitoring Cisco NFVI Health with CloudPulse, page 10 • Assessing Cisco NFVI status with cloud-sanity, page 12 • Service Catalog URL, page 14 • Checking Network Connections, page 18 • Enabling NFVBench Post Deployment, page 19 • NFVBench Usage, page 22 • Enabling or Disabling Autobackup of Management Node, page 32 • Forwarding ELK logs to External Syslog Server, page 33 • Adding and Reconfiguring VIM Administrators, page 33 • Reconfigure of Proxy Post Install, page 34 • Enabling Custom Policy for VNF Manager Post Install, page 34 • Updating Containers in a Running Cisco VIM Cloud, page 35 • Updating Cisco VIM Software Using a USB, page 36 • Updating Cisco VIM Software Using Network Installation, page 38 • Upgrading Containers in a Running Cisco VIM Cloud, page 39 • Upgrading VIM Software Using a USB, page 41 • Upgrading Cisco VIM Software Using
Recommended publications
  • Alpine Linux: Minimalistická Distribuce Nejen Na Server
    Alpine Linux: minimalistická distribuce nejen na server Petr Krčmář 5. března 2017 Uvedené dílo (s výjimkou obrázků) podléhá licenci Creative Commons Uveďte autora 3.0 Česko. Petr Krčmář (Root.cz, vpsFree.cz) Alpine Linux: minimalistická distribuce nejen na server 5. března 2017 1 / 19 Petr Krčmář (Root.cz, vpsFree.cz) Alpine Linux: minimalistická distribuce nejen na server 5. března 2017 2 / 19 Prezentace už teď na webu https://www.petrkrcmar.cz Petr Krčmář (Root.cz, vpsFree.cz) Alpine Linux: minimalistická distribuce nejen na server 5. března 2017 3 / 19 Historie Alpine první verze 2006 původně jako fork LEAF (Linux Embedded Appliance Framework) to je zase fork LRP (Linux Router Project) = disketové distribuce vývojáři ale chtěli jít za hranici disket zůstala jednoduchost a přehlednost umožnilo to nasazení mimo jednoduché firewally dnes plnohodnotná distribuce stále umí běžet z RAM nezávislá, nekomerční Petr Krčmář (Root.cz, vpsFree.cz) Alpine Linux: minimalistická distribuce nejen na server 5. března 2017 4 / 19 K čemu se hodí? velká plnohodnotná distribuce embedded zařízení (síťové prvky) firewally routery ústředny VoIP servery a kontejnery ale i na desktop (Xfce, Gnome) Petr Krčmář (Root.cz, vpsFree.cz) Alpine Linux: minimalistická distribuce nejen na server 5. března 2017 5 / 19 Motto Small. Simple. Secure. Petr Krčmář (Root.cz, vpsFree.cz) Alpine Linux: minimalistická distribuce nejen na server 5. března 2017 6 / 19 Small. instalace v kontejneru jen 8 MB, 260 souborů 16 balíčků, jen 6 z jiných projektů instalace do virtuálu 53 MB, 1222 souborů 26 balíčků plná instalace na železo 302 MB, 4686 souborů 27 balíčků hodně jaderných modulů Petr Krčmář (Root.cz, vpsFree.cz) Alpine Linux: minimalistická distribuce nejen na server 5.
    [Show full text]
  • Introduction Use Runit with Traditional Init (Sysvinit)
    2021/07/26 19:10 (UTC) 1/12 Runit Runit Introduction runit is a UNIX init scheme with service supervision. It is a cross-platform Unix init scheme with service supervision, a replacement for sysvinit, and other init schemes and supervision that are used with the traditional init. runit is compatible with djb's daemontools. In Unix-based computer operating systems, init (short for initialization) is the first process started during booting of the computer system. Init is a daemon process that continues running until the system is shut down. Slackware comes with its own legacy init (/sbin/init) from the sysvinit package, that used to be included in almost all other major Linux distributions. The init daemon (or its replacement) is characterised by Process ID 1 (PID 1). To read on the benefits of runit, see here: http://smarden.org/runit/benefits.html * Unless otherwise stated, all commands in this article are to be run by root. Use runit with traditional init (sysvinit) runit is not provided by Slackware, but a SlackBuild is maintained on https://slackbuilds.org/. It does not have any dependencies. As we do not want yet to replace init with runit, run the slackbuild with CONFIG=no: CONFIG=no ./runit.SlackBuild Then install the resulting package and proceed as follows: mkdir /etc/runit/ /service/ cp -a /usr/doc/runit-*/etc/2 /etc/runit/ /sbin/runsvdir-start & Starting via rc.local For a typical Slackware-stlyle service, you can edit /etc/rc.d/rc.local file if [ -x /sbin/runsvdir-start ]; then /sbin/runsvdir-start & fi and then edit write /etc/rc.d/rc.local_shutdown #!/bin/sh SlackDocs - https://docs.slackware.com/ Last update: 2020/05/06 08:08 (UTC) howtos:slackware_admin:runit https://docs.slackware.com/howtos:slackware_admin:runit RUNIT=x$( /sbin/pidof runsvdir ) if [ "$RUNIT" != x ]; then kill $RUNIT fi Then give rc.local_shutdown executive permission: chmod +x /etc/rc.d/rc.local_shutdown and reboot Starting via inittab (supervised) Remove the entries in /etc/rc.d/rc.local and /etc/rc.d/rc.local_shutdown described above.
    [Show full text]
  • Introduction to Gentoo Linux
    Introduction to Gentoo Linux Ulrich Müller Developer and Council member, Gentoo Linux <[email protected]> Institut für Kernphysik, Universität Mainz <[email protected]> Seminar “Learn Linux the hard way”, Mainz, 2012-10-23 Ulrich Müller (Gentoo Linux) Introduction to Gentoo Linux Mainz 2012 1 / 35 Table of contents 1 History 2 Why Gentoo? 3 Compile everything? – Differences to other distros 4 Gentoo features 5 Gentoo as metadistribution 6 Organisation of the Gentoo project 7 Example of developer’s work Ulrich Müller (Gentoo Linux) Introduction to Gentoo Linux Mainz 2012 2 / 35 /"dZEntu:/ Pygoscelis papua Fastest swimming penguin Source: Wikimedia Commons License: CC-BY-SA-2.5, Attribution: Stan Shebs Ulrich Müller (Gentoo Linux) Introduction to Gentoo Linux Mainz 2012 3 / 35 How I came to Gentoo UNIX since 1987 (V7 on Perkin-Elmer 3220, later Ultrix, OSF/1, etc.) GNU/Linux since 1995 (Slackware, then S.u.S.E.) Switched to Gentoo in January 2004 Developer since April 2007 Council Mai 2009–June 2010 and since July 2011 Projects: GNU Emacs, eselect, PMS, QA Ulrich Müller (Gentoo Linux) Introduction to Gentoo Linux Mainz 2012 4 / 35 Overview Based on GNU/Linux, FreeBSD, etc. Source-based metadistribution Can be optimised and customised for any purpose Extremely configurable, portable, easy-to-maintain Active all-volunteer developer community Social contract GPL, LGPL, or other OSI-approved licenses Will never depend on non-free software Is and will always remain Free Software Commitment to giving back to the FLOSS community, e.g. submit bugs
    [Show full text]
  • Unit V Algorithm for Booting the UNIX System
    Unit V Algorithm for booting the UNIX system : As we’ve noted, the boot process begins when the instructions stored in the computer’s permanent, nonvolatile memory (referred to colloquially as the BIOS, ROM,NVRAM, and so on) are executed. This storage location for the initial boot instructions is generically referred to as firmware (in contrast to “software,” but reflecting the fact that the instructions constitute a program[2]). These instructions are executed automatically when the power is turned on or the system is reset, although the exact sequence of events may vary according to the values of stored parameters.[3] The firmware instructions may also begin executing in response to a command entered on the system console (as we’ll see in a bit). However they are initiated, these instructions are used to locate and start up the system’s boot program , which in turn starts the Unix operating system. The boot program is stored in a standard location on a bootable device. For a normal boot from disk, for example, the boot program might be located in block 0 of the root disk or, less commonly, in a special partition on the root disk. In the same way, the boot program may be the second file on a bootable tape or in a designated location on a remote file server in the case of a network boot of a diskless workstation. There is usually more than one bootable device on a system. The firmware program may include logic for selecting the device to boot from, often in the form of a list of potential devices to examine.
    [Show full text]
  • Happy Birthday Linux
    25 Jahre Linux! Am Anfang war der Quellcode Entstehungsgeschichte und Werdegang von Linux Entwicklung und Diversifizierung der Distributionen Der Wert von Linux oder: „Wat nix kost, dat is och nix.“ Andreas Klein ORR 2016 1 Am Anfang war der Quellcode (70er) ● 1969, Ken Thompson u. Dennis Ritchie erstellen die erste Version von Unix in Assembler. ● Von 1969-1971 entwickeln sie gemeinsam die Programmiersprache B. ● Ab 1971 erweiterte in erster Linie Dennis Ritchie B, um weitere Elemente und nannte sie Anfangs NB (new B). ● 1973 waren die Erweiterungen soweit gediehen, das er die stark verbesserte Sprache C nannte (Brian W. Kernighan hat ebenfalls maßgeblich dazu beigetragen). //Unix=25 PCs ● Bis 1974 war das gesamte Betriebssystem UNIX vollständig in C implementiert und wurde mit einem C-Compiler kostenfrei an verschiedene Universitäten verteilt. ● 1978 wurden bereits über 600 Computer mit dem UNIX-Betriebssystemen betrieben. ● Das aufblühende Zeitalter der Computerisierung der 70er Jahre war geprägt vom regen und freien Austausch von Programmen und dessen zugrunde liegenden Ideen. Sinnvoller Weise tauschte man diese als Quellcode untereinander aus. ● 1979 wurde von AT&T die letzte UNIX-Version 7, mit freiem Quellcode veröffentlicht. Andreas Klein ORR 2016 2 Am Anfang war der Quellcode (80er) ● 1980 – 1983 AT&T sowie zahlreiche andere Unternehmen beginnen mit der Kommerzialisierung von UNIX, durch Koppelung an stark beschränkenden Lizenzen und Geheimhaltung des zugrunde liegenden Quelltextes. ● Richard Stallman kündigt am 27. September 1983 in den Newsgroups net.unix-wizards und net.usoft das GNU-Projekt an. ● Am 5. Januar 1984 begann Stallman offiziell mit der Arbeit am GNU-Projekt, nachdem er seine Stelle am MIT gekündigt hatte.
    [Show full text]
  • Slides for the S6 Lightning Talk
    The s6 supervision suite Laurent Bercot, 2017 What is an init system ? - “init” is vague terminology. “init wars” happened because nobody had a clear vision on what an init system even is or should be. - The 4 elements of an init system: /sbin/init, pid 1, process supervision, service management. - Not necessarily in the same process. Definition: process supervision A long-lived process (daemon) is supervised when it’s spawned by the supervision tree, a set of stable, long-lived processes started at boot time by pid 1. (Often just pid 1.) Supervision is a good pattern: the service is stable and launched in a reproducible env. Supervision only applies to daemons. Service management: definition - Boot time: bring all services up - Shutdown time: bring all services down - More generally: change services’ states Services can be oneshots (short-lived programs with side effects) or longruns (daemons). They have dependencies, which the service manager should enforce. What features do “init”s offer ? - Integrated init systems (systemd, launchd, upstart): “the big guys”. All four elements in one package, plus out-of-scope stuff. - sysvinit, BSD init: /sbin/init, pid 1, supervision (/etc/inittab, /etc/gettys). Service manager not included: sysv-rc, /etc/rc - OpenRC: service manager. - Epoch: similar to sysvinit + sysv-rc The “daemontools family” - /etc/inittab supervision is impractical; nobody uses it for anything else than gettys. - daemontools (DJB, 1998): the first project offering flexible process supervision. Realistic to supervise all daemons with it. - daemontools-encore, runit, perp, s6: supervision suites. - nosh: suite of tools similar to s6, in C++ Supervision suites are not enough - Only ¼ of an init system.
    [Show full text]
  • Your Init; Your Choice
    Your Computer; Your Init; Your Choice By Steve Litt Version 20150108_1348 Copyright © 2015 by Steve Litt Creative Commons Attribution-NoDerivatives 4.0 International License http://creativecommons.org/licenses/by-nd/4.0/legalcode Available online at http://www.troubleshooters.com/linux/presentations/golug_inits/golug_inits.pdf NO WARRANTY, use at your own risk. Slide 1 of 26 Your Computer; Your Init; Your Choice Steve Litt System Overview ● Kernel runs one program, init. ● Everything else run directly or indirectly by init. Slide 2 of 26 Your Computer; Your Init; Your Choice Steve Litt Many Different Init Systems ● Epoch ● nosh ● OpenRC ● perp ● RichFelker ● runit ● s6 ● systemd ● sysvinit ● Upstart ● uselessd ● Many more ● There's an init for every situation ● You can make your own Slide 3 of 26 Your Computer; Your Init; Your Choice Steve Litt Full vs Partial ● Kernel->full-init at PID1->daemons – Systemd, sysvinit, runit, Epoch, Upstart, etc. ● Kernel->PID1->partial-init->daemons – OpenRC, daemontools, damontools-encore, etc. Slide 4 of 26 Your Computer; Your Init; Your Choice Steve Litt Many Features ● Socket Activation ● Parallel starting ● Event controlled ● Sequential starting ● Daemontools-like ● Numeric ordering ● Simplicity ● Dependency ordering ● Descriptive config ● Work with sysvinit scripts ● Script config ● OS toolkit ● Forget features ● Look for benefits that fit your priorities and situation Slide 5 of 26 Your Computer; Your Init; Your Choice Steve Litt Many Routes to Benefits ● Within and outside of init ● With or without sockets ● With or without packaging ● Cutting edge or oldschool Slide 6 of 26 Your Computer; Your Init; Your Choice Steve Litt Bogus Characterizations ● ___ is a toy. – What does that even mean? ● ___ is not ready for prime time.
    [Show full text]
  • Gentoo Kernel Recent and Future Project
    Gentoo Kernel recent and Future project Fast Releasing and Testing of Gentoo Kernel Packages and Future plans of the Gentoo Kernel Project Alice Ferrazzi <[email protected]> kernel :~ $ whoami - Gentoo Kernel Project Leader - Gentoo Kernel Security - Gentoo General System Administrator - Gentoo Proxy Maintainer - Gentoo Study Meeting Tokyo Organizator Tokyo University of Technology - Google Summer of Code 2017 for Gentoo organization - Currently searching job as researcher in Japan Summary ● What is Gentoo? ○ Why I should consider Gentoo? ● What is Gentoo Kernel Project? ● Kernel related project in Gentoo ● Gentoo Kernel recent and Future project ○ Toward Automation ○ Gentoo Kernel CI ○ kernel security live patch ○ Considering PAX fork ● Concluding What is Gentoo? ● Highly customizable meta-distribution ● Built from source and support for user patching ● Available in most architecture ● Freedom of choice (OpenRC, SystemD, Runit, Epoch, and Busybox) ● Easy maintenance (also of the Linux Kernel) Who is using Gentoo? ● Chrome OS ○ Chrome OS Has Double the Marketshare of Regular Linux in USA(2017/03) ○ Chromebooks outsold Macs for the first time in the US (2016/05) ● Softbank Pepper (NAOqi OS) ● CoreOS ● Most of Gentoo’s sponsors run Gentoo: ○ https://www.gentoo.org/inside-gentoo/sponsors/ ● Daniel Robbins maintains a useful graphic of Gentoo derivatives: ○ http://www.funtoo.org/Gentoo_Ecosystem Why I should consider Gentoo? ● Easy management of most recent upstream including kernel ● Many Kernel options (gentoo-sources, git-sources, rt-sources, ck-sources) ● Increased security with Hardened package ● Kernel Patches managed by package settings (USE flag) ● Gentoo Kernel wiki documentation ● Automatic Kernel deblobing for specific kernel (ck-sources, hardened-sources, rt-sources) What is the Gentoo Kernel Project? ● Writing Gentoo Kernel guide and policy ● Stabilizing Gentoo Kernel for most architectures ● Releasing Gentoo Kernel sources packages ● Writing library for managing the Gentoo Kernel sources installation.
    [Show full text]
  • Init=/Bin/Present
    init=/bin/present Calvin Winkowski What is init ● init is the first process that runs (pid 1) ● The kernel has a small init “process” that doesn’t count ● Everything practical is ultimately a consequence of init # ls /etc/init.d/ after.local dhcpd ntp rc3.d snmpd before.local dhcpd6 postfix rc4.d snmptrapd boot.d firewall_local postgresql rc5.d sshd boot.dmraid halt.local powerd rc6.d stunnel boot.local ipmi powerfail rcS.d svnserve boot.md ipmiseld raw rpmconfigcheck tinyproxy boot.udev lm_sensors rc0.d rsyncd xymon-client cron mdadmd rc1.d SMagent dbus network rc2.d SMmonitor Linux processes ● Linux process table contains all processes running on the system ● #include <linux/sched.h> struct task_struct(_short) { volatile long state; void *stack; unsigned int ptrace; unsigned int cpu; int exit_code; pid_t pid; struct task_struct __rcu *parent; Linux processes Each process is a child of systemd (pid 1) Demo! Everything else ● Populate /dev -- udev, mdev, devfsd, do it yourself with mknod ● Mount file systems -- root, cgroups, proc, nfs, etc. ● Start gettys ● Start X ● Configure network interfaces ● Start logging daemon -- rsyslog or sometimes syslog-ng ● Start various service daemons State of init on *nix ● systemd dominates linux distros with a few exceptions ● Upstart still has vestiges in old releases of distros ● *BSD package in a “BSD init” ● fleetctl LoC in inits ● Only including code, not init scripts or unit files ● OpenRC - 16792 ● Upstart - 131243 ● systemd - 442553 Lennart Poettering: Or How I Learned to Stop Worrying and Love
    [Show full text]
  • Pass Lpi 201-450 Exam with 100% Guarantee
    https://www.lead4pass.com/201-450.html 2021 Latest lead4pass 201-450 PDF and VCE dumps Download 201-450Q&As LPIC-2 Exam 201 Part 1 of 2 version 4.5 Pass Lpi 201-450 Exam with 100% Guarantee Free Download Real Questions & Answers PDF and VCE file from: https://www.lead4pass.com/201-450.html 100% Passing Guarantee 100% Money Back Assurance Following Questions and Answers are all new published by Lpi Official Exam Center 201-450 PDF Dumps | 201-450 Practice Test | 201-450 Braindumps 1 / 7 https://www.lead4pass.com/201-450.html 2021 Latest lead4pass 201-450 PDF and VCE dumps Download QUESTION 1 Which of the following commands can be used to script interactions with various TCP or UDP services? A. ftp B. nc C. tcpdump D. strings E. wget Correct Answer: B QUESTION 2 What should be done after updating the configuration file for syslogd in order to make the changes become effective? (Choose TWO correct answers.) A. No action is required, syslogd will notice the updated configuration file after a few minutes. B. Send the HUP signal to the syslogd process. C. Restart the syslogd service. D. Run the command syslogd -u. Correct Answer: BC QUESTION 3 Which of the filter keywords below could be used in the following command: tcpdump -i eth0 ____________ 203.0.113.8 (Choose three.) A. host B. ip C. src D. dst E. ipv6 Correct Answer: ACD 201-450 PDF Dumps | 201-450 Practice Test | 201-450 Braindumps 2 / 7 https://www.lead4pass.com/201-450.html 2021 Latest lead4pass 201-450 PDF and VCE dumps Download QUESTION 4 Which of the following commands creates a Btrfs subvolume named volume in/mnt? A.
    [Show full text]
  • Manual Gentoo Linux AMD64
    Documentación Gentoo Linux -- Manuales Gentoo... https://www.gentoo.org/doc/es/handbook/handbo... Manuales Gentoo Linux AMD64 Sven Vermeulen Autor Grant Goodyear Autor Roy Marples Autor Daniel Robbins Autor Chris Houser Autor Jerry Alexandratos Autor Seemant Kulleen Desarrollador Gentoo x86 Tavis Ormandy Desarrollador Gentoo Alpha Jason Huebel Desarrollador Gentoo AMD64 Guy Martin Desarrollador Gentoo HPPA Pieter Van den Abeele Desarrollador Gentoo PPC Joe Kallar Desarrollador Gentoo SPARC John P. Davis Editor Pierre-Henri Jondot Editor Eric Stockbridge Editor Rajiv Manglani Editor Jungmin Seo Editor Stoyan Zhekov Editor Jared Hudson Editor Colin Morey Editor Jorge Paulo Editor Carl Anderson Editor Jon Portnoy Editor Zack Gilburd Editor Jack Morgan Editor Benny Chuang Editor Erwin Editor Joshua Kinard Editor Tobias Scherbaum Editor Xavier Neys Editor Gerald J. Normandin Jr. Revisor Donnie Berkholz Revisor Ken Nowack Revisor Lars Weiler Contribuidor John Christian Stoddart Traductor José Luis Rivero Traductor José María Alonso Traductor Página actualizada 25 de septiembre, 2014 Contenido: Instalar Gentoo En esta parte aprenderá cómo instalar Gentoo en su sistema. 1. Acerca de la instalación Gentoo Linux Este capítulo presenta el método de instalación documentado en este manual. 2. Escoger el medio de instalación adecuado Se puede instalar Gentoo de muchas maneras diferentes. Este capítulo explica cómo instalar Gentoo usando el CD de Instalación mínimo. 3. Configuración de su red Para poder bajar las fuentes más actuales, debe configurar la red. 4. Preparar los discos Para poder instalar Gentoo, deberá crear las particiones necesarias. Este capítulo describe como particionar un disco para uso futuro. 5. Instalar los archivos de instalación Gentoo Las instalaciones Gentoo funcionan con un archivo stage3.
    [Show full text]
  • Gestion De Services Sous Unix
    Gestion de services sous Unix Baptiste Daroussin [email protected] [email protected] sysadmin #6 Paris 19 Février 2016 Disclaimer sysadmin#6 Gestion de services sous Unix 2 of 16 L’arlésienne supervisor daemontools procd OpenRC DEMONS Runit Epoch ninit finitrcNG sinit minitsystemdinitng rc svc perp eINIT SMF SysVinit nosh SystemXVI upstart launchd monit Shepherd relaunchd sparkrc watchmancircus sysadmin#6 Gestion de services sous Unix 3 of 16 I I’m your father(c)(tm) I laisse la main a d’autres pour la gestion des services... presque I /etc/inittab I /etc/ttys I Généralement des scripts shell I SysVinit I rcNG I rc Il était une fois init(8) I petit mais costaud sysadmin#6 Gestion de services sous Unix 4 of 16 I laisse la main a d’autres pour la gestion des services... presque I /etc/inittab I /etc/ttys I Généralement des scripts shell I SysVinit I rcNG I rc Il était une fois init(8) I petit mais costaud I I’m your father(c)(tm) sysadmin#6 Gestion de services sous Unix 4 of 16 presque I /etc/inittab I /etc/ttys I Généralement des scripts shell I SysVinit I rcNG I rc Il était une fois init(8) I petit mais costaud I I’m your father(c)(tm) I laisse la main a d’autres pour la gestion des services... sysadmin#6 Gestion de services sous Unix 4 of 16 I /etc/inittab I /etc/ttys I Généralement des scripts shell I SysVinit I rcNG I rc Il était une fois init(8) I petit mais costaud I I’m your father(c)(tm) I laisse la main a d’autres pour la gestion des services..
    [Show full text]