{"id":51,"date":"2020-02-22T14:10:09","date_gmt":"2020-02-22T13:10:09","guid":{"rendered":"http:\/\/www.w2hp.net\/wp\/?p=51"},"modified":"2020-03-01T10:04:14","modified_gmt":"2020-03-01T09:04:14","slug":"lxc-container-in-centos7","status":"publish","type":"post","link":"https:\/\/wp.w2hp.net\/?p=51","title":{"rendered":"LXC Container in Centos7"},"content":{"rendered":"\r\n
\r\n
https:\/\/der-linux-admin.de\/2014\/08\/centos-7-centos-7-im-lxc-container\/<\/div>\r\n<\/figure>\r\n\r\n\r\n\r\n
\r\n
http:\/\/libvirt.org\/drvlxc.html<\/div>\r\n<\/figure>\r\n\r\n\r\n\r\n

mkdir \/zone1\/dnshp\/etc\/yum.repos.d\/ -p<\/p>\r\n\r\n\r\n\r\n

cat \/etc\/yum.repos.d\/CentOS-Base.repo |sed s\/’$releasever’\/7\/g > \/zone1\/dnshp\/etc\/yum.repos.d\/CentOS-Base.repo<\/p>\r\n\r\n\r\n\r\n

yum groupinstall core –installroot=\/zone1\/dnshp –nogpgcheck -y<\/p>\r\n\r\n\r\n\r\n

yum install plymouth libselinux-python bind –installroot=\/zone1\/dnshp –nogpgcheck -y<\/p>\r\n\r\n\r\n\r\n

# yum install bind –installroot=\/zone1\/dnshp –nogpgcheck -y<\/p>\r\n\r\n\r\n\r\n

chroot \/zone1\/dnshp<\/p>\r\n\r\n\r\n\r\n

echo pw |passwd root –stdin<\/p>\r\n\r\n\r\n\r\n\r\n\r\n

# login console<\/p>\r\n\r\n\r\n\r\n

echo „pts\/0“ >>\/etc\/securetty<\/p>\r\n\r\n\r\n\r\n

sed -i s\/“session \u00a0 \u00a0required \u00a0 \u00a0 pam_selinux.so close“\/“#session \u00a0 \u00a0required \u00a0 \u00a0 pam_selinux.so close“\/g \/etc\/pam.d\/login<\/p>\r\n\r\n\r\n\r\n

sed -i s\/“session \u00a0 \u00a0required \u00a0 \u00a0 pam_selinux.so open“\/“#session \u00a0 \u00a0required \u00a0 \u00a0 pam_selinux.so open“\/g \/etc\/pam.d\/login<\/p>\r\n\r\n\r\n\r\n

sed -i s\/“session \u00a0 \u00a0required \u00a0 \u00a0 pam_loginuid.so“\/“#session \u00a0 \u00a0required \u00a0 \u00a0 pam_loginuid.so“\/g \/etc\/pam.d\/login<\/p>\r\n\r\n\r\n\r\n

# login ssh<\/p>\r\n\r\n\r\n\r\n

sed -i s\/“session \u00a0 \u00a0required \u00a0 \u00a0 pam_selinux.so close“\/“#session \u00a0 \u00a0required \u00a0 \u00a0 pam_selinux.so close“\/g \/etc\/pam.d\/sshd<\/p>\r\n\r\n\r\n\r\n

sed -i s\/“session \u00a0 \u00a0required \u00a0 \u00a0 pam_loginuid.so“\/“#session \u00a0 \u00a0required \u00a0 \u00a0 pam_loginuid.so“\/g \/etc\/pam.d\/sshd<\/p>\r\n\r\n\r\n\r\n

sed -i s\/“session \u00a0 \u00a0required \u00a0 \u00a0 pam_selinux.so open env_params“\/“#session \u00a0 \u00a0required \u00a0 \u00a0 pam_selinux.so open env_params“\/g \/etc\/pam.d\/sshd<\/p>\r\n\r\n\r\n\r\n

cat > \/etc\/sysconfig\/network << EOF<\/p>\r\n\r\n\r\n\r\n

NETWORKING=yes<\/p>\r\n\r\n\r\n\r\n

HOSTNAME=lxc.der-linux-admin.de<\/p>\r\n\r\n\r\n\r\n

EOF<\/p>\r\n\r\n\r\n\r\n

cat > \/etc\/sysconfig\/network-scripts\/ifcfg-eth0 << EOF<\/p>\r\n\r\n\r\n\r\n

DEVICE=eth0<\/p>\r\n\r\n\r\n\r\n

BOOTPROTO=dhcp<\/p>\r\n\r\n\r\n\r\n

ONBOOT=yes<\/p>\r\n\r\n\r\n\r\n

EOF<\/p>\r\n\r\n\r\n\r\n

systemctl enable sshd<\/p>\r\n\r\n\r\n\r\n

systemctl disable avahi-daemon<\/p>\r\n\r\n\r\n\r\n

systemctl disable auditd<\/p>\r\n\r\n\r\n\r\n

exit<\/p>\r\n\r\n\r\n\r\n

yum install virt-install<\/p>\r\n\r\n\r\n\r\n

yum install libvirt libvirt-client<\/p>\r\n\r\n\r\n\r\n

yum install libvirt-daemon-lxc.x86_64 libvirt-daemon-driver-lxc.x86_64\u00a0<\/p>\r\n\r\n\r\n\r\n

systemctl enable libvirt-guests<\/p>\r\n\r\n\r\n\r\n

systemctl enable libvirtd<\/p>\r\n\r\n\r\n\r\n

systemctl start libvirt-guests<\/p>\r\n\r\n\r\n\r\n

systemctl start libvirtd<\/p>\r\n\r\n\r\n\r\n

LXC setzt ein aktiviertes SE-Linux vorraus. Wir k\u00f6nnen dies aber etwas vereinfachen\u00a0<\/p>\r\n\r\n\r\n\r\n

indem wir SE-Linux in dem permissive Modus versetzten.\u00a0<\/p>\r\n\r\n\r\n\r\n

Dazu die Datei \/etc\/selinux\/config wie folgt ab\u00e4ndern.<\/p>\r\n\r\n\r\n\r\n

SELINUX=permissive<\/p>\r\n\r\n\r\n\r\n

Anschliessen muss das System einmal neu gestartet werden!<\/p>\r\n\r\n\r\n\r\n

virt-install –connect lxc:\/\/\/ –name dnshp –ram 1024 –vcpu 1 \u00a0-b br0 –filesystem \/zone1\/dnshp,\/ –noautoconsole<\/p>\r\n\r\n\r\n\r\n

virsh –connect lxc:\/\/\/ console dnshp<\/p>\r\n\r\n\r\n\r\n

# start<\/p>\r\n\r\n\r\n\r\n

virsh –connect lxc:\/\/\/ start dnshp<\/p>\r\n\r\n\r\n\r\n

# stop<\/p>\r\n\r\n\r\n\r\n

virsh –connect lxc:\/\/\/ destroy dnshp<\/p>\r\n\r\n\r\n\r\n

# l\u00f6schen<\/p>\r\n\r\n\r\n\r\n

virsh –connect lxc:\/\/\/ undefine dnshp<\/p>\r\n\r\n\r\n\r\n

brctl addbr br0<\/p>\r\n\r\n\r\n\r\n

brctl addif br0 enp2s0f1<\/p>\r\n","protected":false},"excerpt":{"rendered":"

mkdir \/zone1\/dnshp\/etc\/yum.repos.d\/ -p cat \/etc\/yum.repos.d\/CentOS-Base.repo |sed s\/’$releasever’\/7\/g > \/zone1\/dnshp\/etc\/yum.repos.d\/CentOS-Base.repo yum groupinstall core –installroot=\/zone1\/dnshp –nogpgcheck -y yum install plymouth libselinux-python bind –installroot=\/zone1\/dnshp –nogpgcheck -y # yum install bind –installroot=\/zone1\/dnshp –nogpgcheck -y chroot \/zone1\/dnshp echo pw |passwd root –stdin # login console echo „pts\/0“ >>\/etc\/securetty sed -i s\/“session \u00a0 \u00a0required \u00a0 \u00a0 pam_selinux.so close“\/“#session \u00a0 \u00a0required \u00a0 … <\/p>\n

\u201eLXC Container in Centos7\u201c<\/span> weiterlesen<\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"ngg_post_thumbnail":0,"footnotes":""},"categories":[1],"tags":[],"class_list":["post-51","post","type-post","status-publish","format-standard","hentry","category-allgemein"],"_links":{"self":[{"href":"https:\/\/wp.w2hp.net\/index.php?rest_route=\/wp\/v2\/posts\/51","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/wp.w2hp.net\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/wp.w2hp.net\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/wp.w2hp.net\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/wp.w2hp.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=51"}],"version-history":[{"count":2,"href":"https:\/\/wp.w2hp.net\/index.php?rest_route=\/wp\/v2\/posts\/51\/revisions"}],"predecessor-version":[{"id":149,"href":"https:\/\/wp.w2hp.net\/index.php?rest_route=\/wp\/v2\/posts\/51\/revisions\/149"}],"wp:attachment":[{"href":"https:\/\/wp.w2hp.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=51"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/wp.w2hp.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=51"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/wp.w2hp.net\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=51"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}