cloudstack

History

Sheng Yang 4d42845853 S2S VPN: Add back pfs=no for ipsec.conf According to ipsec.conf manual: pfs whether Perfect Forward Secrecy of keys is desired on the connection's keying channel (with PFS, penetration of the key-exchange protocol does not compromise keys negotiated earlier); Since there is no reason to ever refuse PFS, Openswan will allow a connection defined with pfs=no to use PFS anyway. Acceptable values are yes (the default) and no. Found removing the option would make it impossible to work with no PFS setting router. It may related to CS-15511.		2012-07-23 19:35:08 -07:00
..
config	S2S VPN: Add back pfs=no for ipsec.conf	2012-07-23 19:35:08 -07:00
vpn	VPC : add vpc_vpn_l2tp.sh	2012-06-15 14:32:56 -07:00
xe	Switch to Apache license	2012-04-03 04:50:05 -07:00
README	Update README for building systemvm	2011-05-20 17:52:27 -07:00
buildsystemvm.sh	S2S VPN: Use source NAT ip address for VPN gateway	2012-07-23 14:44:05 -07:00
config.dat	remove patches/systemv, and mv tools/systemvm into patches	2010-10-05 20:41:39 -07:00
convert.sh	fixing license headers in marvin	2012-07-04 18:45:08 -04:00
iptables_1.4.8-3local1checksum1_i386.deb	bug 11056: Add customized iptables and kernel modules to the system template	2011-12-28 20:20:35 -08:00
qemuconvert.sh	fixing license headers in marvin	2012-07-04 18:45:08 -04:00
systemvm.vmx	Automate vmware systemvm appliance generation	2011-01-12 17:31:39 -08:00
systemvm.xml	remove patches/systemv, and mv tools/systemvm into patches	2010-10-05 20:41:39 -07:00
vhdconvert.sh	fixing license headers in marvin	2012-07-04 18:45:08 -04:00
xe-guest-utilities_5.6.0-595_i386.deb	Install xs-tools in the systemvm template	2012-01-06 17:37:58 -08:00
xt_CHECKSUM.ko	bug 13403: Don't use backported kernel for system vm	2012-02-06 17:17:01 -08:00

README

1. The buildsystemvm.sh script builds a 32-bit system vm disk based on the Debian Squeeze distro. This system vm can boot on any hypervisor thanks to the pvops support in the kernel. It is fully automated
2. The files under config/ are the specific tweaks to the default Debian configuration that are required for CloudStack operation.
3. The variables at the top of the buildsystemvm.sh script can be customized:
IMAGENAME=systemvm # dont touch this
LOCATION=/var/lib/images/systemvm #
MOUNTPOINT=/mnt/$IMAGENAME/ # this is where the image is mounted on your host while the vm image is built
IMAGELOC=$LOCATION/$IMAGENAME.img
PASSWORD=password # password for the vm
APT_PROXY= #you can put in an APT cacher such as apt-cacher-ng
HOSTNAME=systemvm # dont touch this
SIZE=2000 # dont touch this for now
DEBIAN_MIRROR=ftp.us.debian.org/debian
MINIMIZE=true # if this is true, a lot of docs, fonts, locales and apt cache is wiped out

4. The systemvm includes the (non-free) Sun JRE. You can put in the standard debian jre-headless package instead but it pulls in X and bloats the image.
5. You need to be 'root' to run the buildsystemvm.sh script
6. The image is a raw image. You can run the convert.sh tool to produce images suitable for Citrix Xenserver, VMWare and KVM.
* Conversion to Citrix Xenserver VHD format requires the vhd-util tool. You can use the
-- checked in config/bin/vhd-util) OR
-- build the vhd-util tool yourself as follows:
a. The xen repository has a tool called vhd-util that compiles and runs on any linux system (http://xenbits.xensource.com/xen-4.0-testing.hg?file/8e8dd38374e9/tools/blktap2/vhd/ or full Xen source at http://www.xen.org/products/xen_source.html).
b. Apply this patch: http://lists.xensource.com/archives/cgi-bin/mesg.cgi?a=xen-devel&i=006101cb22f6%242004dd40%24600e97c0%24%40zhuo%40cloudex.cn.
c. Build the vhd-util tool
cd tools/blktap2
make
sudo make install
* Conversion to ova (VMWare) requires the ovf tool, available from
http://communities.vmware.com/community/vmtn/server/vsphere/automationtools/ovf
* Conversion to QCOW2 requires qemu-img