[PVE-User] pve-user Digest, Vol 111, Issue 26
roots at zaclys.com
roots at zaclys.com
Tue Jun 27 17:46:49 CEST 2017
hello
our server is more stable since yesterday
ovh debian 8 pve 4 zfs , with 50 lxc centos container
(Some ones were centos 6 openvz containers , converted to simfs and
imported on pve4 lxc )
1/ we have modified /etc/security/limits.conf too :
* soft nproc unlimited
* hard nproc unlimited
* soft nofile unlimited
* hard nofile unlimited
root soft nproc unlimited
root hard nproc unlimited
root soft nofile unlimited
root hard nofile unlimited
2/ we have modified limits _into_ lxc centos containers :
if exists, modify /etc/security/limits.d/*nproc.conf ( 1024 to 60000 ) :
* soft nproc 60000
root soft nproc unlimited
3/ on host modify /etc/sysctl.conf
fs.inotify.max_user_instances=60000
fs.file-max=26341360
fs.nr_open=26341360
kernel.pid_max=60000
reload : sysctl -p
4/ modify /etc/systemd/system/multi-user.target.wants/pveproxy.service
and /etc/systemd/system/multi-user.target.wants/pvedaemon.service
add to section service :
LimitNOFILE=300000
(perhaps unnecessary ... )
5/ add to /etc/lxc/default.conf
lxc.aa_profile = unconfined
add to /etc/pve/lxc/CTID.conf
lxc.aa_profile: unconfined
and restart the CT
( disable apparmor on CT ! perhaps unnecessary ... we'll test without
this patch asap )
thanks
More information about the pve-user
mailing list