Libvirt. Why should I care?

Michal Privoznik

mprivozn@redhat.com

KVM Forum, Düsseldorf 2014

Libvirt. Why should I care?

Michal Prívozník
mprivozn@redhat.com
KVM Forum Düsseldorf 2014

QEMU/KVM

QEMU/KVM

Libvirt


http://libvirt.org

Domain startup

Domain startup

Domain startup (child)

Domain startup

Domain startup

CGroup layout

CGroup layout example

Virtual Networks

Network Filters

Enforce network traffic filtering on vNIC basis:

        <devices>
          <interface type='bridge'>
            <mac address='00:16:3e:5d:c7:9e'/>
            <filterref filter='clean-traffic'>
              <parameter name='IP' value='10.0.0.1'/>
            </filterref>
          </interface>
        </devices>

Network Filters

Filters written in XML:

        <filter name='no-ip-spoofing' chain='ipv4-ip' priority='-710'>
          <uuid>2b308492-52d3-4bda-8f0c-1dedbcf58e04
          <rule action='return' direction='out' priority='100'>
            <ip srcipaddr='0.0.0.0' protocol='udp'/>
          </rule>
          <rule action='return' direction='out' priority='500'>
            <ip srcipaddr='$IP'/>
          </rule>
          <rule action='drop' direction='out' priority='1000'/>
        </filter>

Network Filters

Automatic IP address detection:

Secrets

Storage management

sVirt

Snapshots

  disk memory checkpoint
internal No N/A Yes
external Yes Yes Yes

Questions?