WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 
 
Home Products Support Community News
 
   
 

xen-users

Re: [Xen-users] XCP Xen Cloud Control System ver 0.3 released!

To: "Jonathan Tripathy" <jonnyt@xxxxxxxxxxx>, Xen-users@xxxxxxxxxxxxxxxxxxx
Subject: Re: [Xen-users] XCP Xen Cloud Control System ver 0.3 released!
From: "Vern Burke" <vburke@xxxxxxxx>
Date: Mon, 24 May 2010 22:09:53 +0000
Cc:
Delivery-date: Mon, 24 May 2010 15:11:13 -0700
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
Importance: Normal
In-reply-to: <4BFAEC50.7070103@xxxxxxxxxxx>
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
References: <4BFAC419.9020507@xxxxxxxx> <4BFADA4B.5060705@xxxxxxxxxxx> <4BFADF2B.70205@xxxxxxxx><4BFAEC50.7070103@xxxxxxxxxxx>
Reply-to: vburke@xxxxxxxx
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx
Sensitivity: Normal
Jonathan:
   I don't think there's much to do about preventing someone breaking out of a 
DomU. As I've said before, that would have to be a severe fubar of the 
hypervisor and it's not likely.

Protecting the Dom0 is really nothing more than the standard best practices for 
any Internet connected server.

If you're really concerned about packet sniffing you could always use a private 
vswitch and use a Vyatta virtual router and VPN out to wherever you're going.

Vern
Sent from my BlackBerry® wireless device from U.S. Cellular

-----Original Message-----
From: Jonathan Tripathy <jonnyt@xxxxxxxxxxx>
Date: Mon, 24 May 2010 22:14:56 
To: Vern Burke<vburke@xxxxxxxx>; <Xen-users@xxxxxxxxxxxxxxxxxxx>
Subject: Re: [Xen-users] XCP Xen Cloud Control System ver 0.3 released!

Vern!

Excellent stuff!

I'm hoping to provide XCP based solutions to my customers as well. I'll 
have a play around with your software and give you some proper feedback, 
but something tells me that I won't be disappointed!

So currently, regarding networking and security, what are you hoping to 
do regarding your customers' VMs? What are you thinking of doing to 
prevent "breaking out of the VM", or packet sniffing, and also 
protecting the Dom0?

We're a Ubuntu house, so our DomUs will have to be Ubuntu...

Cheers

Jonathan

On 24/05/10 21:18, Vern Burke wrote:
> Thanks Jonathan!
>    I do have various networking things on the dance card, but, since 
> I'm running a production public cloud, my focus has been on day to day 
> automation plus automatic disaster recovery (vm and host watchdogs) 
> and the load balancer. I'm trying to avoid the Amazon bozo model 
> (can't restart VMs from a failed host and then take 5-6 hours to 
> restart VMs when the host is back up).
>
> I have dynamic pool resizing in test on the stunt cloud (when load is 
> low, it will automatically shut down hosts, when load picks up, it 
> will automatically restart hosts), I'll probably add VM import and 
> export as a .1 release in the next week, basic multitenancy will 
> probably come in the next week or so, then I'll see if I can get it to 
> perform some networking tricks :).
>
> Of course, schedule is subject to modification (I'm in the middle of 
> an intense build out of another 1000 sq ft of data center space with 
> all the green goodies which will, coincidently, be the new home of the 
> production cloud) :).
>
> Vern
> SwiftWater Telecom
> http://www.swiftwatertel.com
> Xen Cloud Control System
> http://www.xencloudcontrol.com
>
> On 5/24/2010 3:58 PM, Jonathan Tripathy wrote:
>> Great job!
>>
>> Is there anything in the pipeline regarding networking? Would be 
>> awesome if it was able to create "Virtual Switches" (aka bridges) and 
>> internal private networks..
>>
>> Cheers
>>
>> On 24/05/10 19:23, Vern Burke wrote:
>>> Greetings all!
>>>    I've just released ver 0.3 of the Xen Cloud Control System! 
>>> Changes for 0.3 include:
>>>
>>> Lots of user interface improvements
>>>
>>> overall pool status display implemented
>>>
>>> storage repository info implemented
>>>
>>> pool host info implemented
>>>
>>> VM virtual disk storage resize implemented
>>>
>>> manually shift to the alternate pool master implemented
>>>
>>> manually shift to the primary pool master implemented
>>>
>>> all functions are now available when running from the alternate pool 
>>> master
>>>
>>> XCCS now has a real installer script, YAY!
>>>
>>> Things left on the todo list:
>>>
>>> expand VM creator capability (ongoing)
>>>
>>> multitenancy (ver 0.4)
>>>
>>> VM import and export (ver 0.4)
>>>
>>> Whatever else anyone can come up with :)
>>>
>>> As always, XCCS 0.3 is available for download from 
>>> http://www.xencloudcontrol.com.
>>>
>>> Vern
>>> SwiftWater Telecom
>>> http://www.swiftwatertel.com
>>> Xen Cloud Control System
>>> http://www.xencloudcontrol.com
>>>
>>>
>>>
>>> _______________________________________________
>>> Xen-users mailing list
>>> Xen-users@xxxxxxxxxxxxxxxxxxx
>>> http://lists.xensource.com/xen-users
>>
>
_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users