Power of the containers (mainly based on docker) has been proved many, many times. But what in the scenario you have very, very limited resources in your virtual lab and lets say, small debian installation with very few GB of RAM and 1 CPU. With LXC you can use this resources in very convenient and efficient way, to build few separated environment that will serve services for you like DNS, DHCP or web server to provide easy file access in your VMware lab environment. All done in a way you like, as LXC provides full Linux OS in those separated environment. For every of them you can use apt to install and then configure application whatever you like. <\/p>\n\n\n\n
I have found such very nice to use, especially with VMware environment, as such one VM (with many containers) can be with little configuration change cloned for many environments and adjusted in a way that is needed – in that sense, it can be duplicated and used several times without huge time effort.<\/p>\n\n\n\n
At home lab, my favorite distribution to use is Debian, and so this configuration example is based on it.<\/p>\n\n\n\n
apt-get install lxc libvirt0 libpam-cgfs bridge-utils uidmap libvirt-clients libvirt-daemon-system iptables ebtables dnsmasq-base libxml2-utils iproute2<\/code> — not necessary all needed, but better to be on safe site.<\/li>\n\n\n\n- Lets configure bridge interface for communication containers with the word.
Use ip a command to check network interfaces name (eno0 <\/code>in this example)
then edit:
\/etc\/network\/interfaces<\/code>
and set the file accordingly:
<\/li>\n<\/ul>\n\n\n\nl@host:~$ cat \/etc\/network\/interfaces\n# This file describes the network interfaces available on your system\n# and how to activate them. For more information, see interfaces(5).\n\nsource \/etc\/network\/interfaces.d\/*\n\n# The loopback network interface\nauto lo\niface lo inet loopback\n\n#auto eno0\n#iface eno0 inet static\n#\taddress 192.168.1.19\n#\tnetmask 255.255.255.0\n#\tgateway 192.168.1.1\n\nauto br0\niface br0 inet static\n bridge_ports eno0\n bridge_fd 0\n address 192.168.1.19\n netmask 255.255.255.0\n network 192.168.1.0\n broadcast 192.168.1.255\n gateway 192.168.1.1\n # dns-* options are implemented by the resolvconf package, if installed\n #dns-nameservers 8.8.8.8 1.1.1.1\n #dns-search your.search.domain.here\n<\/code><\/pre><\/div>\n\n\n\nChange \/etc\/default\/lxc-net to disable lxc bridge as we don’t really need it:<\/p>\n\n\n\n
#USE_LXC_BRIDGE="true"\nUSE_LXC_BRIDGE="false"<\/code><\/pre><\/div>\n\n\n\nLXC can create own bridge to use simply use NAT for containers.<\/p>\n\n\n\n
Also edit \/etc\/lxc\/default.conf, with the following:<\/p>\n\n\n\n
cat \/etc\/lxc\/default.conf \nlxc.net.0.type = veth\n#lxc.net.0.link = lxcbr0\nlxc.net.0.link = virbr0\nlxc.net.0.flags = up\n\nlxc.apparmor.profile = generated\nlxc.apparmor.allow_nesting = 1<\/code><\/pre><\/div>\n\n\n\nRestart network (\/etc\/init.d\/networking restart<\/code>). While you are doing that, it would be good to have console access to VM, there are many changes and it is likely that network won’t work at the first try. It would be good also to restart whole server and verify how it is working after.<\/p>\n\n\n\nVerify if bridge has created with command ip a<\/code>
Try to ping gateway, other networks and verify also if br0 interface is reachable.<\/p>\n\n\n\n\n- create first container and configure it:<\/li>\n<\/ul>\n\n\n\n
lxc-create -n lxdeb1 -t debian -- -r stretch<\/code><\/pre><\/div>\n\n\n\nlxc-start -n lxdeb1\nlxc-attach lxdeb1 \/\/check if you have access and if it is working fine; verify the network<\/code><\/pre><\/div>\n\n\n\ncat \/etc\/network\/interfaces\nauto lo\niface lo inet loopback\n\n#auto eth0\n#iface eth0 inet dhcp<\/code><\/pre><\/div>\n\n\n\nnetwork\/interfaces we are changing inside the container as we don’t really need that configuration, network interface will be configured by the container configuration (see below)<\/p>\n\n\n\n
lxc-stop lxdeb1<\/code><\/pre><\/div>\n\n\n\nReconfigure container with our new br0 interface, file: \/var\/lib\/lxc\/lxdeb1\/config<\/strong><\/code>: \/\/modify lxdeb1 with yours container name.<\/p>\n\n\n\n## Network\nlxc.uts.name = lxdeb1\nlxc.net.0.type = veth\nlxc.net.0.flags = up\n\n## Network\nlxc.utsname = containershostname\nlxc.network.type = veth\nlxc.network.flags = up\n\n# that's the interface defined above in host's interfaces file\nlxc.network.link = br0\n\n# name of network device inside the container,\n# defaults to eth0, you could choose a name freely\n# lxc.network.name = lxcnet0 \n\nlxc.network.hwaddr = 00:FF:AA:00:00:01\n\n# the ip may be set to 0.0.0.0\/24 or skip this line\n# if you like to use a dhcp client inside the container\nlxc.network.ipv4 = 192.168.1.110\/24\n\n# define a gateway to have access to the internet\nlxc.network.ipv4.gateway = 192.168.1.1\n\nlxc.apparmor.profile = generated\nlxc.apparmor.allow_nesting = 1\nlxc.rootfs.path = dir:\/var\/lib\/lxc\/unfiy\/rootfs\n\n# Common configuration\nlxc.include = \/usr\/share\/lxc\/config\/debian.common.conf\n\n# Container specific configuration\nlxc.tty.max = 4\nlxc.uts.name = unfiy\nlxc.arch = amd64\nlxc.pty.max = 1024\n\n<\/code><\/pre><\/div>\n\n\n\n