I would like to get some ideas and opinions on matter of libvirt netfilter application in KVM environment. I am looking for some easy way to control it with an API and possible experience with that and its performance in real life application.
Hello,
on a PC with Debian 8 I try to use a Bash script with Netfilter rules so that only traffic goes in and out that is wanted. For that I set all 3 default policies to "drop". The machine uses DHCP to get its IP, gateway and DNS. And I never checked so I was quite surprised that my... (1 Reply)
Hi,
Since a year my libvirtd does not work anymore on my Gentoodesktop. In the meantime a used virtualbox. But I would like to have back libvirt. The problem was after libvirt should not only work with root privileges. I deinstalled all things with libvirt an kvm. I removed all things from /var... (4 Replies)
Hi,
I need to call an API (GetUsageDetails)from inside a shell script which takes an input argument acct_nbr.
The output of API will be like :
<usageAccum accumId="450" accumCaptn="PM_125" inclUnits="1410.00" inclUnitsUsed="744.00" shared="true" pooled="false" prorated="false"... (1 Reply)
hi,
i'm using tcpreplay to send a traffic trace to my wireless interface (the trace is been captured by the same interface). It seems as netfilter can't trace connections. Is it possible? (0 Replies)
Hello friends i'm trying to extend iptables to include a target by which we can change the packet type field of a packet.
For this i created a kernel module and a userspace extension.
Now i face the problem that when i try to invoke iptable with the target i created i get an error message saying... (1 Reply)
Hi everybody,
I have to write a module for matching in netfilter , extending the netfilter but I'm facing some problems can somebody guide me in that. I know that I need to write matching module working in kernel space and a program in userspace. I went through the HOWTO on netfilter-hacking but... (0 Replies)
VIRTLOCKD(8) Virtualization Support VIRTLOCKD(8)NAME
virtlockd - libvirt lock management daemon
SYNOPSIS
virtlockd [ -dv ] [ -f config_file ] [ -p pid_file ]
virtlockd --version
DESCRIPTION
The virtlockd program is a server side daemon component of the libvirt virtualization management system that is used to manage locks held
against virtual machine resources, such as their disks.
This daemon is not used directly by libvirt client applications, rather it is called on their behalf by libvirtd. By maintaining the locks
in a standalone daemon, the main libvirtd daemon can be restarted without risk of losing locks. The virtlockd daemon has the ability to
re-exec() itself upon receiving SIGUSR1, to allow live upgrades without downtime.
The virtlockd daemon listens for requests on a local Unix domain socket.
OPTIONS -h, --help
Display command line help usage then exit.
-d, --daemon
Run as a daemon and write PID file.
-f, --config FILE
Use this configuration file, overriding the default value.
-p, --pid-file FILE
Use this name for the PID file, overriding the default value.
-v, --verbose
Enable output of verbose messages.
-V, --version
Display version information then exit.
SIGNALS
On receipt of SIGUSR1 virtlockd will re-exec() its binary, while maintaining all current locks and clients. This allows for live upgrades
of the virtlockd service.
FILES
When run as root.
SYSCONFDIR/virtlockd.conf
The default configuration file used by virtlockd, unless overridden on the command line using the -f|--config option.
LOCALSTATEDIR/run/libvirt/virtlockd-sock
The sockets libvirtd will use.
LOCALSTATEDIR/run/virtlockd.pid
The PID file to use, unless overridden by the -p|--pid-file option.
When run as non-root.
$XDG_CONFIG_HOME/virtlockd.conf
The default configuration file used by libvirtd, unless overridden on the command line using the -f|--config option.
$XDG_RUNTIME_DIR/libvirt/virtlockd-sock
The socket libvirtd will use.
$XDG_RUNTIME_DIR/libvirt/virtlockd.pid
The PID file to use, unless overridden by the -p|--pid-file option.
If $XDG_CONFIG_HOME is not set in your environment, libvirtd will use $HOME/.config
If $XDG_RUNTIME_DIR is not set in your environment, libvirtd will use $HOME/.cache
EXAMPLES
To retrieve the version of virtlockd:
# virtlockd --version
virtlockd (libvirt) 1.1.1
#
To start virtlockd, instructing it to daemonize and create a PID file:
# virtlockd -d
# ls -la LOCALSTATEDIR/run/virtlockd.pid
-rw-r--r-- 1 root root 6 Jul 9 02:40 LOCALSTATEDIR/run/virtlockd.pid
#
BUGS
Please report all bugs you discover. This should be done via either:
a) the mailing list
<http://libvirt.org/contact.html>
or,
b) the bug tracker
<http://libvirt.org/bugs.html>
Alternatively, you may report bugs to your software distributor / vendor.
AUTHORS
Please refer to the AUTHORS file distributed with libvirt.
COPYRIGHT
Copyright (C) 2006-2013 Red Hat, Inc., and the authors listed in the libvirt AUTHORS file.
LICENSE
virtlockd is distributed under the terms of the GNU LGPL v2.1+. This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE
SEE ALSO libvirtd(8), <http://www.libvirt.org/>
libvirt-1.1.1 2014-06-17 VIRTLOCKD(8)