OpenVZ Configuration Example

1. HN
1. /etc/sysctl.conf
   
   

   # Controls IP packet forwarding
   net.ipv4.ip_forward = 1
   
   # On Hardware Node we generally need proxy arp disabled
   net.ipv4.conf.default.proxy_arp = 0
   
   # Enables source route verification
   net.ipv4.conf.all.rp_filter = 1
   
   # Enables the magic-sysrq key
   kernel.sysrq = 1
   
   # We do not want all our interfaces to send redirects
   net.ipv4.conf.default.send_redirects = 1
   net.ipv4.conf.all.send_redirects = 0
   ... 

   
   
2. /etc/sysconfig/vz-scripts/1888.conf
   
   

   ONBOOT="yes"
   
   # Primary parameters
   NUMPROC="8000:8000"
   AVNUMPROC="2257:2257"
   NUMTCPSOCK="8000:8000"
   NUMOTHERSOCK="8000:8000"
   VMGUARPAGES="360000:360000"
   
   # Secondary parameters
   KMEMSIZE="184953241:203448565"
   TCPSNDBUF="28883080:61651080"
   TCPRCVBUF="28883080:61651080"
   OTHERSOCKBUF="14441540:47209540"
   DGRAMRCVBUF="14441540:14441540"
   OOMGUARPAGES="360000:360000"
   PRIVVMPAGES="360000:360000"
   
   # Auxiliary parameters
   LOCKEDPAGES="9030:9030"
   SHMPAGES="15506:15506"
   PHYSPAGES="0:2147483647"
   NUMFILE="72224:72224"
   NUMFLOCK="1000:1100"
   NUMPTY="512:512"
   NUMSIGINFO="1024:1024"
   DCACHESIZE="40389343:41601024"
   NUMIPTENT="200:200"
   DISKSPACE="107733379:118506717"
   DISKINODES="55287781:60816560"
   CPUUNITS="150550"
   
   
   # Disk quota parameters (in form of softlimit:hardlimit)
   DISKSPACE=""
   DISKINODES=""
   QUOTATIME=""
   DISK_QUOTA=no
   OSTEMPLATE="rhel-5-lystor"
   IP_ADDRESS="194.44.18.88"
   

   
   
3. /etc/vz/vz.conf
   
   

   ## Global parameters
   VIRTUOZZO=yes
   LOCKDIR=/vz/lock
   DUMPDIR=/vz/dump
   VE0CPUUNITS=90000
   
   ## Logging parameters
   LOGGING=yes
   LOGFILE=/var/log/vzctl.log
   LOG_LEVEL=0
   VERBOSE=0
   
   ## Disk quota parameters
   DISK_QUOTA=no
   VZFASTBOOT=no
   
   # Disable module loading. If set, vz initscript do not load any modules.
   #MODULES_DISABLED=yes
   
   # The name of the device whose IP address will be used as source IP for CT.
   # By default automatically assigned.
   #VE_ROUTE_SRC_DEV="eth0"
   
   # Controls which interfaces to send ARP requests and modify APR tables on.
   NEIGHBOUR_DEVS=detect
   
   ## Template parameters
   TEMPLATE=/vz/template
   
   ## Defaults for containers
   VE_ROOT=/vz/root/$VEID
   VE_PRIVATE=/vz/private/$VEID
   CONFIGFILE="vps.basic"
   DEF_OSTEMPLATE="fedora-core-4"
   
   ## Load vzwdog module
   VZWDOG="no"
   
   ## IPv4 iptables kernel modules
   IPTABLES="ipt_REJECT ipt_tos ipt_limit ipt_multiport iptable_filter iptable_mangle ipt_TCPMSS ipt_tcpmss ipt_ttl ipt_length ipt_LOG ip_conntrack ip_conntrack_ftp ip_tables"
   ## Enable IPv6
   IPV6="no"
   
   ## IPv6 ip6tables kernel modules
   IP6TABLES=""
   

   
   
4. /etc/vz/dists/rhel-5-lystor.conf
   
   

   ADD_IP=redhat-add_ip-lystor.sh
   DEL_IP=
   SET_HOSTNAME=
   SET_DNS=
   SET_USERPASS=
   SET_UGID_QUOTA=set_ugid_quota.sh
   POST_CREATE=
   

   
   
5. /etc/vz/dists/scripts/redhat-add_ip-lystor.sh
   
   

   #!/bin/bash
   exit 0
   

   
   
2. VE
   
   
   1. /etc/inittab
      
      

      #1:2345:respawn:/sbin/mingetty tty1
      #2:2345:respawn:/sbin/mingetty tty2
      #3:2345:respawn:/sbin/mingetty tty3
      #4:2345:respawn:/sbin/mingetty tty4
      #5:2345:respawn:/sbin/mingetty tty5
      #6:2345:respawn:/sbin/mingetty tty6
      

      
      
   2. /etc/rc.d/rc.sysinit
      
      

      #/sbin/start_udev
      

      
      
   3. /etc/sysconfig/network-scripts/ifcfg-venet0
      
      

      DEVICE=venet0
      ONBOOT=yes
      BOOTPROTO=none
      IPADDR=194.44.18.88
      NETMASK=255.255.255.255