virt-sandbox-service man page

virt-sandbox-service — Secure container tool




    create              create a sandbox container

    clone               Clone an existing sandbox container

    connect             Connect to a sandbox container

    delete              Delete a sandbox container

    execute             Execute a command within a sandbox container

    reload              Reload a running sandbox container

    upgrade             Upgrade an existing sandbox container


virt-sandbox-service is used to provision secure sandboxed system services. These applications will be launched via libvirt and run within a virtualization technology such as LinuX Containers (LXC), or optionally QEMU/KVM. The container / virtual machines will be secured by SELinux and resource separated using cgroups.

By default, it will use the libvirt LXC driver, with the "lxc:///" URI. This is different from libvirt's normal behaviour, which is to probe for the best URI to use. Thus if using "virsh" to get a list of containers, one must specify an explicit URI for it, "virsh -c lxc:///". Alternatively the "LIBVIRT_DEFAULT_URI" environment variable can be set, or the config file "/etc/libvirt/libvirt.conf" can have a default URI set.


-h, --help

Display help message

-c URI, --connect URI

The connection URI for the hypervisor (currently only LXC URIs are supported).

See Also

libvirt(8), selinux(8), systemd(8), "virt-sandbox(1)", "virt-sandbox-service-create(1)", "virt-sandbox-service-clone(1)", "virt-sandbox-service-connect(1)", "virt-sandbox-service-delete(1)", "virt-sandbox-service-execute(1)", "virt-sandbox-service-reload(1)", "virt-sandbox-service-upgrade(1)"


Container content will be stored in subdirectories of /var/lib/libvirt/filesystems, by default.  You can manage the content in these directories outside of the container and processes within the container will see the content.


Daniel Walsh <>

Daniel P. Berrange <>


virt-sandbox is distributed under the terms of the GNU LGPL v2+. This is free software; see the source for copying conditions. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE

Referenced By

virt-sandbox-service-clone(1), virt-sandbox-service-connect(1), virt-sandbox-service-create(1), virt-sandbox-service-delete(1), virt-sandbox-service-execute(1), virt-sandbox-service-reload(1), virt-sandbox-service-upgrade(1).

2015-07-01 libvirt-sandbox-0.6.0 Virtualization Support