You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@cloudstack.apache.org by Gary Dixon <Ga...@quadris.co.uk.INVALID> on 2023/02/10 14:28:20 UTC
noob question about Templates
HI
Sorry for the newbie question but .....
When creating a template - does enabling the HVM option allow the virtual machine to also be a hypervisor so that nested virtualization can be achieved?
Gary Dixon
Senior Technical Consultant
T: +44 161 537 4990
E: vms@quadris-support.com
W: www.quadris.co.uk
The information contained in this e-mail from Quadris may be confidential and privileged for the private use of the named recipient. The contents of this e-mail may not necessarily represent the official views of Quadris. If you have received this information in error you must not copy, distribute or take any action or reliance on its contents. Please destroy any hard copies and delete this message.
Re: noob question about Templates
Posted by Simon Weller <si...@gmail.com>.
Yeah, I don't think you need to worry about it. Without the modprobe flag
configured on the KVM host, it won't allow a nested VM to be deployed.
-Si
On Fri, Feb 10, 2023 at 10:51 AM Gary Dixon
<Ga...@quadris.co.uk.invalid> wrote:
>
> Hi Simon
>
> Thanks for the info - its quite interesting !!
>
>
> We are running KVM hypervisor on Ubuntu 20.04 on AMD EPYC cpu's
>
> We haven't been enabling HVM on templates as we don't want users to be
> able to nest hypervisors within their VM's
>
> Gary Dixon
> Senior Technical Consultant
> T: +44 161 537 4990
> E: *v* <+44%207989717661>ms@quadris‑support.com
> W: www.quadris.co.uk
> The information contained in this e-mail from Quadris may be confidential
> and privileged for the private use of the named recipient. The contents of
> this e-mail may not necessarily represent the official views of Quadris.
> If you have received this information in error you must not copy,
> distribute or take any action or reliance on its contents. Please destroy
> any hard copies and delete this message.
> -----Original Message-----
> From: Simon Weller <si...@gmail.com>
> Sent: 10 February 2023 16:23
> To: users@cloudstack.apache.org
> Subject: Re: noob question about Templates
>
> Hey Gary,
>
> Welcome to the list.
>
> Firstly, which hypervisor are you using?
>
> HVM used to mean use hardware accelerated virtualization back in the day
> when it was still fairly new. It was required for some hypervisors, but not
> all.
> These days everything is hardware accelerated.
>
> If you are running KVM, you can enable the ability to run nested
> virilization by doing this -
>
> Intel -
> modprobe -r kvm_intel
> modprobe kvm_intel nested=1
>
> Make it permanent by adding the following line to /etc/modprobe.d/kvm.conf:
> options kvm_intel nested=1
>
> AMD -
> modprobe -r kvm_amd
> modprobe kvm_amd nested=1
>
> Make it permanent by adding the following line to /etc/modprobe.d/kvm.conf:
> options kvm_amd nested=1
>
> Please note that CloudStack will not manage any nested virtualization
> unless Cloudstack itself is nested (e.g. a lab environment).
>
> -Si
>
>
> On Fri, Feb 10, 2023 at 8:28 AM Gary Dixon
> <Ga...@quadris.co.uk.invalid>
> wrote:
>
> > HI
> >
> >
> >
> > Sorry for the newbie question but …..
> >
> >
> >
> > When creating a template – does enabling the HVM option allow the
> > virtual machine to also be a hypervisor so that nested virtualization
> > can be achieved?
> > Gary Dixon
> > Senior Technical Consultant
> > T: +44 161 537 4990
> > E: *v* <+44%207989717661>ms@quadris‑support.com
> > W:
> > https://eur01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.q
> > uadris.co.uk%2F&data=05%7C01%7CGary.Dixon%40quadris.co.uk%7C425ae13b53
> > 394cabd18808db0b831363%7Cf1d6abf3d3b44894ae16db0fb93a96a2%7C0%7C0%7C63
> > 8116429828439052%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV
> > 2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=2GprAUWMFJ
> > cOjv2PGTIr6gZdnFIDOFAZQd61NGvMGBc%3D&reserved=0
> > The information contained in this e-mail from Quadris may be
> > confidential and privileged for the private use of the named
> > recipient. The contents of this e-mail may not necessarily represent the
> official views of Quadris.
> > If you have received this information in error you must not copy,
> > distribute or take any action or reliance on its contents. Please
> > destroy any hard copies and delete this message.
> >
>
RE: noob question about Templates
Posted by Gary Dixon <Ga...@quadris.co.uk.INVALID>.
Hi Simon
Thanks for the info - its quite interesting !!
We are running KVM hypervisor on Ubuntu 20.04 on AMD EPYC cpu's
We haven't been enabling HVM on templates as we don't want users to be able to nest hypervisors within their VM's
Gary Dixon
Senior Technical Consultant
T: +44 161 537 4990
E: vms@quadris-support.com
W: www.quadris.co.uk
The information contained in this e-mail from Quadris may be confidential and privileged for the private use of the named recipient. The contents of this e-mail may not necessarily represent the official views of Quadris. If you have received this information in error you must not copy, distribute or take any action or reliance on its contents. Please destroy any hard copies and delete this message.
-----Original Message-----
From: Simon Weller <si...@gmail.com>
Sent: 10 February 2023 16:23
To: users@cloudstack.apache.org
Subject: Re: noob question about Templates
Hey Gary,
Welcome to the list.
Firstly, which hypervisor are you using?
HVM used to mean use hardware accelerated virtualization back in the day when it was still fairly new. It was required for some hypervisors, but not all.
These days everything is hardware accelerated.
If you are running KVM, you can enable the ability to run nested virilization by doing this -
Intel -
modprobe -r kvm_intel
modprobe kvm_intel nested=1
Make it permanent by adding the following line to /etc/modprobe.d/kvm.conf:
options kvm_intel nested=1
AMD -
modprobe -r kvm_amd
modprobe kvm_amd nested=1
Make it permanent by adding the following line to /etc/modprobe.d/kvm.conf:
options kvm_amd nested=1
Please note that CloudStack will not manage any nested virtualization unless Cloudstack itself is nested (e.g. a lab environment).
-Si
On Fri, Feb 10, 2023 at 8:28 AM Gary Dixon <Ga...@quadris.co.uk.invalid>
wrote:
> HI
>
>
>
> Sorry for the newbie question but …..
>
>
>
> When creating a template – does enabling the HVM option allow the
> virtual machine to also be a hypervisor so that nested virtualization
> can be achieved?
> Gary Dixon
> Senior Technical Consultant
> T: +44 161 537 4990
> E: *v* <+44%207989717661>ms@quadris‑support.com
> W:
> https://eur01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.q
> uadris.co.uk%2F&data=05%7C01%7CGary.Dixon%40quadris.co.uk%7C425ae13b53
> 394cabd18808db0b831363%7Cf1d6abf3d3b44894ae16db0fb93a96a2%7C0%7C0%7C63
> 8116429828439052%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV
> 2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=2GprAUWMFJ
> cOjv2PGTIr6gZdnFIDOFAZQd61NGvMGBc%3D&reserved=0
> The information contained in this e-mail from Quadris may be
> confidential and privileged for the private use of the named
> recipient. The contents of this e-mail may not necessarily represent the official views of Quadris.
> If you have received this information in error you must not copy,
> distribute or take any action or reliance on its contents. Please
> destroy any hard copies and delete this message.
>
Re: noob question about Templates
Posted by Simon Weller <si...@gmail.com>.
Hey Gary,
Welcome to the list.
Firstly, which hypervisor are you using?
HVM used to mean use hardware accelerated virtualization back in the day
when it was still fairly new. It was required for some hypervisors, but not
all.
These days everything is hardware accelerated.
If you are running KVM, you can enable the ability to run nested
virilization by doing this -
Intel -
modprobe -r kvm_intel
modprobe kvm_intel nested=1
Make it permanent by adding the following line to /etc/modprobe.d/kvm.conf:
options kvm_intel nested=1
AMD -
modprobe -r kvm_amd
modprobe kvm_amd nested=1
Make it permanent by adding the following line to /etc/modprobe.d/kvm.conf:
options kvm_amd nested=1
Please note that CloudStack will not manage any nested virtualization
unless Cloudstack itself is nested (e.g. a lab environment).
-Si
On Fri, Feb 10, 2023 at 8:28 AM Gary Dixon <Ga...@quadris.co.uk.invalid>
wrote:
> HI
>
>
>
> Sorry for the newbie question but …..
>
>
>
> When creating a template – does enabling the HVM option allow the virtual
> machine to also be a hypervisor so that nested virtualization can be
> achieved?
> Gary Dixon
> Senior Technical Consultant
> T: +44 161 537 4990
> E: *v* <+44%207989717661>ms@quadris‑support.com
> W: www.quadris.co.uk
> The information contained in this e-mail from Quadris may be confidential
> and privileged for the private use of the named recipient. The contents of
> this e-mail may not necessarily represent the official views of Quadris.
> If you have received this information in error you must not copy,
> distribute or take any action or reliance on its contents. Please destroy
> any hard copies and delete this message.
>