Comments on: Xen and Heartbeat http://etbe.coker.com.au/2007/06/24/xen-and-heartbeat/ Linux, politics, and other interesting things Sun, 07 Sep 2008 15:57:32 +0000 http://wordpress.org/?v=2.6.1 By: Amos Shapira http://etbe.coker.com.au/2007/06/24/xen-and-heartbeat/#comment-11041 Amos Shapira Mon, 26 Nov 2007 22:16:41 +0000 http://etbe.coker.com.au/2007/06/24/xen-and-heartbeat/#comment-11041 1. I heard about people running entire Xen clusters on single physical servers with, e.g., a firewall on one guest, a mail server on another, a web server on yet another etc. 2. You can communicate with xend over a socket. See "xend-http-server" in xend-config.sxp(5). 3. To create a limited access to ssh I'd suggest considering use of special ssh private/public keys (without a pass-phrase) and a command="" parameter in authorized_keys. That way only the holder of the private key can invoke the command and the server can limit the command to be invoked by that key (look for "AUTHORIZED_KEYS" in sshd(8)). About (2) - you can't pass arguments to the command but I'm pretty confident it is allowed to read from standard input. Otherwise you can create different key-pairs for different commands if you have to. --Amos 1. I heard about people running entire Xen clusters on single physical servers with, e.g., a firewall on one guest, a mail server on another, a web server on yet another etc.

2. You can communicate with xend over a socket. See “xend-http-server” in xend-config.sxp(5).

3. To create a limited access to ssh I’d suggest considering use of special ssh private/public keys (without a pass-phrase) and a command=”" parameter in authorized_keys. That way only the holder of the private key can invoke the command and the server can limit the command to be invoked by that key (look for “AUTHORIZED_KEYS” in sshd(8)).

About (2) - you can’t pass arguments to the command but I’m pretty confident it is allowed to read from standard input. Otherwise you can create different key-pairs for different commands if you have to.

–Amos

]]> By: sadegh http://etbe.coker.com.au/2007/06/24/xen-and-heartbeat/#comment-10579 sadegh Wed, 14 Nov 2007 13:23:35 +0000 http://etbe.coker.com.au/2007/06/24/xen-and-heartbeat/#comment-10579 Hi, very good. my question is if we have only one domu on each machine (VMM) and our mechanism for failover is Migration how about Changes on Heartbeat and Xen? Thank you. Sadegh Hi,
very good.
my question is if we have only one domu on each machine
(VMM) and our mechanism for failover is Migration how about Changes on Heartbeat and Xen?

Thank you.
Sadegh

]]>