Taking it further: XEN and OpenVZ on CentOS 5.2 x86_64
By drendeah

In a prior tutorial I showed you how to install XEN on CentOS 5.2 to isolate services. This is a good aproach when you have a dedicated server and you want to isolate your services. However, what will you do if you have a dedicated server and you rent Virtual Machines (VMs)?

Your customers will face the same problem that you faced initially. They will end up
running their services unseparated on the same VM. Not anymore, today I will explain a technique to overcome this limitation. We will further divide the VM into multiple Virtual Environments (VEs) using OpenVZ.

OpenVZ is a virtualization technology / software that, unlike XEN, allows for resource sharing. You have the ability to allocate the same amount of cpu/memory to several VEs and they will use it as needed. This kind of virtualization is perfect for isolating services inside of a XEN VM. This way your customers can benefit from service isolation too.

I will assume that you have properly installed CentOS with XEN and have successfully created a CentOS 5.2 x86_64 Xen VM. We will be doing the install from the console.

Installing OpenVZ

To install OpenVZ on a XEN VM you will need to log into the VM.

The above command will download the latest release of OpenVZ kernel-xen at the time this article was written.

Now that we've downloaded the RPM, let's install it.

The above command installs the OpenVZ kernel.

However, we will need some more supporting RPMs to install before we can actually use OpenVZ.

Issue the following commands:
Wait for the packages to download and then install them:
Now we will need a template for our VEs. We will use a precreated template. (You are free to create your own templates or use template metadata to generate the templates locally, but for tutorial purposes i will show how to use a precreated template).

We will download a CentOS 4 x86_64 minimal precreated template.

Now we must move the template to the correct directory so it can be used by OpenVZ.

Now we will need to make some changes to /etc/sysctl.conf. Open it with your favourite editor and make sure you change the following settings to look like this:

Another thing, we must disable SELinux for OpenVZ to operate. Open /etc/sysconfig/selinux and modify it like this:

Having done all of this, it's time to reboot the VM and see our new OpenVZ setup running.

Login to your VM again and issue the command:

It should reveal the following information:

Congrats! You have a working setup of XEN+OpenVZ.

Creating a OpenVZ Virtual Environment

Now let's create our first OpenVZ VE inside the XEN VM.

After the creation process is complete issue the following command.

You should see your newly created VE in the list.

To start the VE issue the following command.

And, to enter into the VE issue the following command.

Now you are inside the VE. Your shell prompt will look this way:
Now it is up to you to configure the VE properly, configure more VEs, and whatever may cross your mind. Have fun in the wonderful world of virtualization!

This article was brought to you by LinuxSecurityForum.org, become a member by clicking here: Register