By Honglin Su-Oracle on Oct 06, 2014
Just published a blog to talk about how to apply latest security fixes to Oracle VM and Virtual Compute Appliances.
Just published a blog to talk about how to apply latest security fixes to Oracle VM and Virtual Compute Appliances.
During the keynote, Steve Grobman, Intel Fellow and CTO of Intel Security Platforms showed the NGFW demo with Oracle VM Manager:
Steve explained how NGFW is going to address the security threat. Here's the value of the joint solution from Intel and Oracle.
You can watch the keynote replay here.
Provides support for private virtual LANs. Using Private VLANs, in Oracle VM Server for SPARC 3.1 Administration Guide.
Increases the number of LDC endpoints per guest domain on SPARC T4, SPARC T5, SPARC M5, and SPARC M6 systems. See Using Logical Domain Channels, in Oracle VM Server for SPARC 3.1 Administration Guide.
Adds support for dynamically assigning PCIe endpoint devices to Fujitsu M10 systems. See the Fujitsu M10 Systems Product Notes.
For details, please review the documentation for the
software/hardware requirements by following the documentation: What's
To download the software, read the instructions from OTN page.
Oracle Validated Configurations program offers pre-tested, validated architectures — including
software, hardware, storage, and network components—along with
documented deployment guides, available on many different hardware platforms. Check the latest submissions:
VNC access to a virtual machine:
Serial console access to a virtual machine:
To use the new virtual machine console access feature, ovmcore-console package needs to be installed on the server running Oracle VM Manager 3.3 in order to gain VNC and serial console access to virtual machines. We just released an updated version of ovmcore-console package
(ovmcore-console-1.0-41) to ULN and public-yum.
Download the package from public-yum:
The package is also available at the ULN channels:
The new package has integrated a few bug fixes:
Oracle VM Manager chooses a MAC address using random numbers within the specified range when the user doesn't supply a specific MAC address. The default range has an OUI (Organizationally Unique Identifier), of 00:21:F6 and uses the remaining portion of 00:00:00 - FF:FF:FF from which to randomly choose a specific MAC address. This default range is used because the OUI prefix (00:21:f6) is officially registered to Oracle and should not conflict with any other vendors devices. However, that range can be changed.
When a vnic is created, the user can specify any MAC address. The user supplied MAC address does not have to fall within the default range. The manager will validate that this MAC address is not already used by another vnic created in that manager.
The manager allows the specification of an OUI other than the default and a range of addresses to use for the device specific portion of the MAC address.
The users need to explicitly set the range that they want to use. With coordination among Oracle VM Manager instances, you can set the range so that each Oracle VM Manager won't conflict with other Oracle VM Manager instances.
Here I'd like to explain how to configure the Java RAS proxy so that you can use your preferred local VNC client to access the guest VM console when using Oracle VM 3.2. For more details and the background, please consult Oracle VM 3.2 Installation and Upgrade Guide where it explains the VNC console used to connect virtual machines in x86-based server pools.
To configure which VNC viewer to use with the Options > Configuration menu item of the Java RAS proxy window, enter the path to the VNC client on the client desktop computer.
If you don't have a local VNC viewer, be sure to get the latest TightVNC package from Oracle's public YUM repository to be installed on the server running Oracle VM Manager:
# rpm -ivh tightvnc-java-
IOUG (Independent Oracle User Group) Virtualization SIG is hosting the webcast on the best practices of Oracle VM server virtualization.
For more white paper about best practices, visit Oracle VM OTN page here.
I just set up a SunRay 3i thin client at home. I used to have SunRay 270 at home, but I had to use a dedicated router for VPN connection. With the updated firmware, it's now easy to configure VPN from the SunRay built-in pop-up GUI options.
The SunRay thin client does not have a wifi connection. A simple workaround is to use a wifi client device, such as Asus Wireless-G Access Point (WL-330GE).
Systems Practice has rolled out Logical Domains Discovery Day events, and many more to come in the next couple quarters.
It's a great opportunity to learn the concepts of chip multi-threading and how this can be virtualized using LDoms. See a demonstration of a fully operational LDoms system and hear about the potential savings in total cost of ownership. Find out why Coolthreads servers with LDoms is not just a new technology - it's a compelling cost and efficiency story.Please look for a city near you:
Today Sun announces quad-core availability for the newest additions to its x86/x64 product line - the Sun Fire X4140, Sun Fire X4240, and Sun Fire X4440 servers featuring AMD Opteron processors. I'm pleased to announce that we are shipping Sun Installation Assistant (SIA) with these new systems, and more Sun x86 platforms support will be available in the coming months.
SIA was created to address the demand for simple, easy and consistent OS installation experience. It allows enterprise users to easily load and preconfigure operating systems on Sun x86 systems. Additional functions have been added, such as SP/BIOS upgrade, HBA/Expander firmware upgrade, software utility installation, and so on.
Today it marks the anniversary of the release of Logical Domains. We've seen thousands of customers across many industries who are evaluating Logical Domains, some have deployed LDoms into their data centers to achieve higher system utilization within such a short period of time.
Just to name a few:
We are pleased to announce that Logical Domains (LDoms) 1.0.2, bringing the benefits of more platform support, has been released and is freely available for customer download at NO EXTRA COST.
Logical Domains (http://www.sun.com/ldoms) is Sun's server virtualization and partitioning technology. It's one of the key enabling technologies of Sun xVM (http://www.sun.com/xvm) on Sun CoolThreads servers. Logical Domains Manager 1.0.2 was released and adds support for UltraSPARC T2 Plus based platforms.
\* Up to 128 domain support for UltraSPARC T2 Plus based systems
\* Up to 64 domain support for UltraSPARC T2 based systems
\* Libvirt management interface software included
The LDoms 1.0.2 is supported on the following systems:
o UltraSPARC T2 Plus based systems
+ Sun SPARC Enterprise T5140 Server
+ Sun SPARC Enterprise T5240 Server
o UltraSPARC T2 based systems
+ Sun SPARC Enterprise T5120 Server
+ Sun SPARC Enterprise T5220 Server
+ Sun Blade T6320 Server Module
+ Sun Netra T5220 Server
+ Sun Netra CP3260 ATCA Blade Server
o UltraSPARC T1 based systems
+ Sun SPARC Enterprise T1000 Server
+ Sun SPARC Enterprise T2000 Server
+ Sun Fire T1000 Server
+ Sun Fire T2000 Server
+ Sun Blade T6300 Server Module.
+ Netra T2000 Server
+ Netra CP3060 ATCA Blade Server
See LDoms release notes in details for required system firmware and OS patches.
Exciting and fast moving roadmap will deliver ever more compelling functionality over the next few months - and for customers to exploit these new functions, you need to implement it today and start to learn what the technology can do for you. Please visit the LDoms web site http://www.sun.com/ldoms for additional resources such as support, datasheet, blueprints, whitepaper, customer references, etc.
Today we are pleased to announce that Logical Domains (LDoms) 1.0.1, bringing customers greater benefits in reliability, security and manageability, has been released and is freely available for customer download at NO EXTRA COST.
Logical Domains (http://www.sun.com/ldoms) is Sun's server virtualization and partitioning technology, and a key element of Sun xVM Infrastructure on Sun servers with CoolThreads technology. LDoms software leverages the hypervisor to subdivide supported platforms' resources (CPUs, memory, I/O, and storage) by creating partitions called logical or virtual domains. Each logical domain can run an independent operating system. Specialized control domain allow the management of
these resources using the Logical Domains Manager.
LDoms technology is supported on Sun servers which utilize UltraSPARC T1 and UltraSPARC T2 processors. Currently the following servers are supported by LDoms 1.0.1:
\* Sun SPARC Enterprise T5120 Server
\* Sun SPARC Enterprise T5220 Server
\* Sun SPARC Enterprise T1000 Server
\* Sun SPARC Enterprise T2000 Server
\* Sun Fire T1000 Server
\* Sun Fire T2000 Server
\* Sun Blade T6300 Server Module
\* Sun Blade T6320 Server Module
\* Netra T2000 Server
\* Netra CP3060 Blade
The following key components work together to deliver the LDoms 1.0.1 technology, and they are all available for download now:
1) Minimum level of Sun System Firmware 6.5 for UltraSPARC T1 systems; Sun System Firmware 7.0 at a minimum is required for UltraSPARC T2 systems.
2) Operating system that understands the sun4v platform and virtual devices. Currently it's Solaris 10 11/06 OS plus required patches. In addition, Solaris 10 8/07 OS is required to run in the primary domain of UltraSPARC T2 systems. Please reference the Logical Domains (LDoms) 1.0.1 Administration Guide and visit http://sunsolve.sun.com to obtain required patches and upgrade procedure from LDoms 1.0.
3) Logical Domains Manager 1.0.1 software that is used to create and manage logical domains on CoolThreads servers.
KEY NEW FEATURES/BENEFITS
The LDoms technology provides system administrators the ability to create and manage logical domains; virtualize resources; create communications channels; and define network, storage, and other I/O devices as services able to be shared from one domain to another.
In addition to all the functionality introduced in LDoms 1.0, LDoms 1.0.1 brings customers greater benefits on reliability, security and manageability. Some key enhancements are:
1) Reliability differentiator for SPARC CMT virtualization
With LDoms 1.0.1, any domains, whether it's a guest domain or a primary domain, are independent virtual machines and they can be configured, started or stopped independently without requiring a power-cycle of machine.
2) UltraSPARC T2 platforms support (32 domains support at initial
release, 64 domains support following)
In addition to UltraSPARC T2, LDoms 1.0.1 supports all the current UltraSPARC T1 platforms.
3) LDoms MIB
The Logical Domains MIB (management information base) is delivered as an extension module to the System Management Agent of Solaris 10 running in the control domain. The LDoms MIB helps enable third party system management applications to perform remote monitoring and starting and stopping logical domains using the Simple Network Management Protocol (SNMP).
4) Domain minimization support
Minimal/reduced Solaris installation for higher security and ease of maintenance.
5) LDoms Browser User Interface (web console, unsupported freeware)
LICENSE AND SUPPORT
There's no additional license cost to use and deploy Logical Domains 1.0.1. Sun System Packs or Sun System Service Plans (SunSpectrum) are required for support.
Can I run Linux or FreeBSD as a in an LDoms environment?
Some Linux distributions (e.g. Ubuntu, Wind River, Gentoo, etc.) can run on CoolThreads servers (Niagara, UltraSPARC T1) natively, but not as a guest OS in a strict sense. Because the guest OS has to be modified by the nature of paravirtualization, namely to add virtual devices support, which was integrated into Solaris 10 11/06 (update 3).
However, you should be able to run Ubuntu on a domain that does not need any virtual devices. So you can try to create a new domain and assign a PCI bus to that domain. Then you need to have a disk and network card connected to this PCI bus and you can use the new domain as a regular sun4v system and install Ubuntu from the network. The limitation with such a configuration is that you can not use virtual devices (vdisk, vnet) on the domain running Linux, and some LDoms feature will not work (like dynamic reconfiguration of vCPU).
Also for the current Niagara servers, you can only create one domain running Linux because there is one PCI bus available to create a new domain, while the other is occupied by the control domain running Solaris. Once the community brings the virtual devices functionality to Linux, FreeBSD, etc., then they are run as guests in an LDoms environment. Stay tuned.
Welcome your feedback on the use cases of Linux and FreeBSD leveraging LDoms on Niagara servers.
Once you have the system ready, download the LDoms software, and it's free. You may want to read the architecture white paper and the BluePrints article to plan the deployment. Be sure to check the LDoms 1.0 documentation as well.
Want to see a demo? up to 32 independent logical domains - each with its own OS instance running on a single CoolThreads server.
Meanwhile, you can explore the blogs for additional information.
Logical Domains (LDoms) is Sun's new server virtualization and partitioning technology for CoolThreads servers. LDoms is free and the most open virtualization technology available. It runs on the free and open source Solaris which has the largest installed-base than any other commercial UNIX or Linux distribution on the planet. Unlike competitive systems with their proprietary virtualization technologies, LDoms can save you up to $3,600 per server - of course, the more servers that are virtualized, the higher the savings and the greater the benefits.
LDoms technology is supported on Sun servers which utilize UltraSPARC T1 (Niagara) and future chip multithreading (CMT) processors developed by Sun. Currently the following servers are supported by LDoms:
The LDoms technology provides system administrators the ability to create and manage logical domains; virtualize resources; create communications channels; and define network, storage, and other I/O devices as services able to be shared from one domain to another. The following are the key features for the 1.0 release:
By deeply integrating Logical Domains with both the industry-leading CMT capability of the UltraSPARC T1 processor and Solaris 10 operating system, LDoms technology helps increase flexibility, isolate workload processing, and improve the potential for maximum server utilization.
Many customers have already used Solaris Containers on CoolThreads servers for application isolation. LDoms technology provides another important feature with OS isolation, giving customers the flexibility to deploy multiple operating systems simultaneously on a single platform. Therefore, organizations can couple Solaris Containers and LDoms software with the breakthrough space and energy savings afforded by CoolThreads servers to deliver a more agile, responsive, and low-cost environment. To summarize, LDoms technology, working with Solaris Containers on CoolThreads servers, breaks though typical space and energy data center constraints to serve millions of new customers.
Honglin Su manages the product management team responsible for Oracle VM and Virtual Compute Appliance.
You can follow him on Twitter @honglinsu