mirror of
https://gitlab.com/libvirt/libvirt.git
synced 2024-11-05 12:51:12 +00:00
2245287cbe
LXC version 3 config files are still using network old style definition. So, as LXC supports it now, they can be converted to use this new definition. Signed-off-by: Julio Faracco <jcfaracco@gmail.com> Reviewed-by: Michal Privoznik <mprivozn@redhat.com>
38 lines
1.1 KiB
Plaintext
38 lines
1.1 KiB
Plaintext
# Template used to create this container: opensuse
|
|
# Template script checksum (SHA-1): 27307e0a95bd81b2c0bd82d6f87fdbe83be075ef
|
|
|
|
lxc.net.0.type = veth
|
|
lxc.net.0.flags = up
|
|
lxc.net.0.link = virbr0
|
|
lxc.net.0.hwaddr = 02:00:15:8f:05:c1
|
|
lxc.net.0.name = eth0
|
|
|
|
#remove next line if host DNS configuration should not be available to container
|
|
lxc.mount.fstab = /var/lib/lxc/migrate_test/fstab
|
|
lxc.rootfs.path = /var/lib/lxc/migrate_test/rootfs
|
|
lxc.uts.name = migrate_test
|
|
lxc.autodev=1
|
|
lxc.tty.max = 2
|
|
lxc.pts = 1024
|
|
lxc.cap.drop = sys_module mac_admin mac_override mknod
|
|
|
|
# When using LXC with apparmor, uncomment the next line to run unconfined:
|
|
#lxc.aa_profile = unconfined
|
|
|
|
lxc.cgroup.devices.deny = a
|
|
# /dev/null and zero
|
|
lxc.cgroup.devices.allow = c 1:3 rwm
|
|
lxc.cgroup.devices.allow = c 1:5 rwm
|
|
# consoles
|
|
lxc.cgroup.devices.allow = c 5:1 rwm
|
|
lxc.cgroup.devices.allow = c 5:0 rwm
|
|
lxc.cgroup.devices.allow = c 4:0 rwm
|
|
lxc.cgroup.devices.allow = c 4:1 rwm
|
|
# /dev/{,u}random
|
|
lxc.cgroup.devices.allow = c 1:9 rwm
|
|
lxc.cgroup.devices.allow = c 1:8 rwm
|
|
lxc.cgroup.devices.allow = c 136:* rwm
|
|
lxc.cgroup.devices.allow = c 5:2 rwm
|
|
# rtc
|
|
lxc.cgroup.devices.allow = c 254:0 rwm
|