[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [Xen-users] XCP Xen Cloud Control System ver 0.3 released!
Jonathan: I don't think there's much to do about preventing someone breaking out of a DomU. As I've said before, that would have to be a severe fubar of the hypervisor and it's not likely. Protecting the Dom0 is really nothing more than the standard best practices for any Internet connected server. If you're really concerned about packet sniffing you could always use a private vswitch and use a Vyatta virtual router and VPN out to wherever you're going. Vern Sent from my BlackBerry® wireless device from U.S. Cellular -----Original Message----- From: Jonathan Tripathy <jonnyt@xxxxxxxxxxx> Date: Mon, 24 May 2010 22:14:56 To: Vern Burke<vburke@xxxxxxxx>; <Xen-users@xxxxxxxxxxxxxxxxxxx> Subject: Re: [Xen-users] XCP Xen Cloud Control System ver 0.3 released! Vern! Excellent stuff! I'm hoping to provide XCP based solutions to my customers as well. I'll have a play around with your software and give you some proper feedback, but something tells me that I won't be disappointed! So currently, regarding networking and security, what are you hoping to do regarding your customers' VMs? What are you thinking of doing to prevent "breaking out of the VM", or packet sniffing, and also protecting the Dom0? We're a Ubuntu house, so our DomUs will have to be Ubuntu... Cheers Jonathan On 24/05/10 21:18, Vern Burke wrote: > Thanks Jonathan! > I do have various networking things on the dance card, but, since > I'm running a production public cloud, my focus has been on day to day > automation plus automatic disaster recovery (vm and host watchdogs) > and the load balancer. I'm trying to avoid the Amazon bozo model > (can't restart VMs from a failed host and then take 5-6 hours to > restart VMs when the host is back up). > > I have dynamic pool resizing in test on the stunt cloud (when load is > low, it will automatically shut down hosts, when load picks up, it > will automatically restart hosts), I'll probably add VM import and > export as a .1 release in the next week, basic multitenancy will > probably come in the next week or so, then I'll see if I can get it to > perform some networking tricks :). > > Of course, schedule is subject to modification (I'm in the middle of > an intense build out of another 1000 sq ft of data center space with > all the green goodies which will, coincidently, be the new home of the > production cloud) :). > > Vern > SwiftWater Telecom > http://www.swiftwatertel.com > Xen Cloud Control System > http://www.xencloudcontrol.com > > On 5/24/2010 3:58 PM, Jonathan Tripathy wrote: >> Great job! >> >> Is there anything in the pipeline regarding networking? Would be >> awesome if it was able to create "Virtual Switches" (aka bridges) and >> internal private networks.. >> >> Cheers >> >> On 24/05/10 19:23, Vern Burke wrote: >>> Greetings all! >>> I've just released ver 0.3 of the Xen Cloud Control System! >>> Changes for 0.3 include: >>> >>> Lots of user interface improvements >>> >>> overall pool status display implemented >>> >>> storage repository info implemented >>> >>> pool host info implemented >>> >>> VM virtual disk storage resize implemented >>> >>> manually shift to the alternate pool master implemented >>> >>> manually shift to the primary pool master implemented >>> >>> all functions are now available when running from the alternate pool >>> master >>> >>> XCCS now has a real installer script, YAY! >>> >>> Things left on the todo list: >>> >>> expand VM creator capability (ongoing) >>> >>> multitenancy (ver 0.4) >>> >>> VM import and export (ver 0.4) >>> >>> Whatever else anyone can come up with :) >>> >>> As always, XCCS 0.3 is available for download from >>> http://www.xencloudcontrol.com. >>> >>> Vern >>> SwiftWater Telecom >>> http://www.swiftwatertel.com >>> Xen Cloud Control System >>> http://www.xencloudcontrol.com >>> >>> >>> >>> _______________________________________________ >>> Xen-users mailing list >>> Xen-users@xxxxxxxxxxxxxxxxxxx >>> http://lists.xensource.com/xen-users >> > _______________________________________________ Xen-users mailing list Xen-users@xxxxxxxxxxxxxxxxxxx http://lists.xensource.com/xen-users
|
Lists.xenproject.org is hosted with RackSpace, monitoring our |