Manualshelf

HP-UX Containers (SRP) A.03.01 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX Containers (SRP)
31323334353637383940
36
6 Managing containers using the srp command
The srp command is the command level interface available to configure containers. It allows you to
add, update, delete, list, and manage containers (see srp(1M)).
6.1 Templates, services, and variables
The srp command uses templates to determine the type and actions to be performed on a container.
Templates consist of modular units called services which groups the actions performed on each
functional component of a container. Variables are elements of a service that you can use to
configure or update parts of a service.
Templates
There is a primary template (such as workload and system) for each container type. When you
create a container, you must specify the template using the template option. After you created a
container with the primary template, secondary templates can be applied to further define and
provision a container. You can also apply the same template multiple times to apply actions that can
be performed multiple times per container, such as adding or removing additional network
interfaces. See Part III: Container type specific for information on the templates provided for each
container type.
Services
When you specify the service option, the srp command executes an operation on a specified
component. HP-UX Containers supports the following services, each service roughly maps to a
subsystem used in constructing the container:
Service Name Description
cmpt
Manages configuration data for an HP-UX Security Containment compartment,
which forms the core of the container.
admin
Defines the users and groups allowed to execute the srp command options:
start, stop, and status.
login
Defines the system’s users and groups that are allowed to login to a container.
Applied only for container types that share the file system namespace and
service daemons, such as the workload container.
prm
Manages the configuration of the PRM group for the container. You can specify
the PRM CPU and memory allocations for the group.
provision
Executes a script containing user provided content to be executed during srp
operations excluding start and stop.
network
Manages the network configuration of a container.
init
Manages the core file directory layout and provisioning of system files for the
container.
ipfilter
Configures IPFilter rules for the container that restrict inbound IP packets to the
container's IP interface.