container_hp9000.5 (2012 03)

ManualsBrandsHP ManualsSoftwareHP-UX Manpages

CONTAINER_HP9000(5) CONTAINER_HP9000(5)

(HP Integrity Systems only)

Most commands report container Some commands report system wide

relative information information

Can host applications using RPC Some applications using RPC

service registration service registration may fail

to start

Run level support inside container Partial run level support

Mount support inside container No mount support inside container

No support for user accounting and Accounting and quotas can be

quotas enabled since users are managed

on the host system

No support for trusted mode Support for trusted mode

HP-UX environments prior to 11.0 HP-UX environments prior to

not known to work 11i v1 known to work but not

supported

Emulated login process Native login process

Overview of HP 9000 System Containers

HP 9000 system container model provides private system services, ﬁle system isolation from host, SD

(Software Distributor) patching and container access using inetd services. Multiple instances of the con-

tainer can be created on the same HP-UX instance. It is the recommended model for new deployments.

Use classic containers only if there is a hard dependency on using Trusted Mode.

File System Layout:

The HP 9000 system container has a private HP 9000 ﬁle system under

/var/hpsrp/<srp_name>

directory.

The following two directories from the host system are read-only shared with an HP 9000 system con-

tainer, namely:

•

/usr/lib/hpux32

• /usr/lib/hpux64

When the container is created, it is provisioned with a default set of devices. These devises are copied

from host into /dev inside the container.

Overview of HP 9000 Classic Containers

The HP 9000 classic container is similar in concept to containers created with HP 9000 Containers

A.01.0x.

File System Layout:

There are three root directories on an HP-UX 11i v3 instance that hosts an HP 9000 classic container:

• the native HP-UX 11i v3 root (

/),

• SRP root (/var/hpsrp/<srp_name>),

• the HP 9000 container root (/<hp9000_root>).

The HP 9000 classic container ﬁle system is fairly, but not completely, isolated from the host ﬁle system.

No HP 9000 system services are started inside the classic container apart from

cron daemon. Applica-

tions inside the HP 9000 container have to interact with system services that are running in the HP-UX

11i v3 host system. To enable this, some of the system directories are shared between the HP 9000 classic

container and the host. This includes /etc, /dev, /net, /stand, /tcb, /var, /usr/lib/hpux32,

and /usr/lib/hpux64. File system sharing is implemented using local ﬁle system (LOFS) mounts.

CREATION AND RESTORE OF HP 9000 SERVER IMAGE

Creation of HP 9000 Server Image

Archive all directories from the HP 9000 server including

/stand, /etc, /opt, /usr and /var. The

image creation can be done using any tool that can restore under an alternate root directory and preserve

the ﬁle ownership and permissions. Common tools such as fbackup, tar and cpio may be used. It is

recommended that all applications on the server be stopped before creating the image to exclude

2 Hewlett-Packard Company − 2 − HP-UX 11i Version 3: March 2012