virt-sandbox-service man page

virt-sandbox-service — Secure container tool

Synopsis

{create,clone,connect,delete,execute,reload,upgrade}
commands:
  create              create a sandbox container
  clone               Clone an existing sandbox container
  connect             Connect to a sandbox container
  delete              Delete a sandbox container
  execute             Execute a command within a sandbox container
  reload              Reload a running sandbox container
  upgrade             Upgrade an existing sandbox container

Description

virt-sandbox-service is used to provision secure sandboxed system services. These applications will be launched via libvirt and run within a virtualization technology such as LinuX Containers (LXC), or optionally QEMU/KVM. The container / virtual machines will be secured by SELinux and resource separated using cgroups.

By default, it will use the libvirt LXC driver, with the "lxc:///" URI. This is different from libvirt's normal behaviour, which is to probe for the best URI to use. Thus if using "virsh" to get a list of containers, one must specify an explicit URI for it, "virsh -c lxc:///". Alternatively the "LIBVIRT_DEFAULT_URI" environment variable can be set, or the config file "/etc/libvirt/libvirt.conf" can have a default URI set.

Options

-h, --help
Display help message
-c URI, --connect URI
The connection URI for the hypervisor (currently only LXC URIs are supported).

See Also

libvirt(8), selinux(8), systemd(8), "virt-sandbox(1)", "virt-sandbox-service-create(1)", "virt-sandbox-service-clone(1)", "virt-sandbox-service-connect(1)", "virt-sandbox-service-delete(1)", "virt-sandbox-service-execute(1)", "virt-sandbox-service-reload(1)", "virt-sandbox-service-upgrade(1)"

Files

Container content will be stored in subdirectories of /var/lib/libvirt/filesystems, by default. You can manage the content in these directories outside of the container and processes within the container will see the content.

Authors

Daniel Walsh <dwalsh@redhat.com>

Daniel P. Berrange <dan@berrange.com>

License

virt-sandbox is distributed under the terms of the GNU LGPL v2+. This is free software; see the source for copying conditions. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE

Referenced By

virt-sandbox-service-clone(1), virt-sandbox-service-connect(1), virt-sandbox-service-create(1), virt-sandbox-service-delete(1), virt-sandbox-service-execute(1), virt-sandbox-service-reload(1), virt-sandbox-service-upgrade(1).

2015-07-01 libvirt-sandbox-0.6.0 Virtualization Support