From: lance (lance_at_uklinux.net)
Date: Wed 20 Feb 2002 - 23:58:59 GMT
On Wed, 20 Feb 2002, Jacques Gelinas wrote:
> On Mon, 18 Feb 2002 16:03:31 -0500, lance wrote
> > I've just installed the latest version of vserver (0.10 with kernel
> > 2.4.17 ctx-7 ) and have a couple of questions :)
> > Firstly using the default creation method for the vserver - vserver xxx
> > build
> > neither 'w' nor 'last' work unless you touch /var/run/utmp and
> > /var/log/wtmp ??? Is this a design feature or just an ommission ??
> Ommission, feature. I can add this.
> /var/run/utmp will be re-created empty when you start the vserver.
> > 3. running netstat in the verserver shows all of the ports, not just those
> > bound to the vserver ???
> Yes. This will be solved by a replacement to /proc using a less verbose version
> of /proc, called vproc.
> > even though :- Network device: A vserver can only see the network device
> > associated with its ipv4 root.
> Yes, this is work in progress :-)
Aha thanks for clearing that up - have you thoughts on how to segregate
firewalling between the different vservers ??
Could it be done with a per instance chain (or table) that the vserver can