715
edits
Changes
Created page with "= LAB PREPARATION = Image:vmware-1a.png|thumb|right|400px|At the end of lab2, your VMware Workstation application will contain '''4 virtual machines''' ('''c7host''' in your..."
= LAB PREPARATION =
[[Image:vmware-1a.png|thumb|right|400px|At the end of lab2, your VMware Workstation application will contain '''4 virtual machines''' ('''c7host''' in your '''VMware Workstation''' application, and '''centos1, centos2, centos3 VMs''' in your '''KVM''' application). You will now have the option to run one virtual machine at a time, or run all machines simultaneously to learn about networking (covered in later labs) ]]
=== Purpose / Objectives of Lab 2===
In this lab, you will create 3 remaining virtual machines using another virtualization program called '''KVM''' that will run in your c7host VM. These VMs will be used throughout the remainder of this course to learn how to administer them (installing software, managing services, networking, etc).
While you are performing this lab, it is recommended to generally note the major differences in the different installation methods, and which method you prefer to use if you were a Linux system administrator in charge of installing many Linux distributions for an organization.
<u>Main Objectives</u>
* Installing additional Virtualization Software on your '''c7host''' machine ('''KVM''')
* '''Create 3 separate VMs (virtual machines) using different installation methods:'''
:* '''centos1''': Network CentOS Installation ('''Graphical''')
:* '''centos2''': Network CentOS Installation (minimal install - '''CLI only''')
:* '''centos3''': Network CentOS Installation with Kickstart configuration file ('''CLI only''')
* Manipulate virtual machines by CLI ('''virsh''')
* Properly '''backup VM images''' and backup '''VM configuration files'''
* Create and run '''Bash Shell scripts''' to automatically create a post-install report for an installed VM.
{|width="100%" cellspacing="0"
|- valign="top"
|colspan="3" style="font-size:16px;font-weight:bold;border-bottom: thin solid black;border-spacing:0px;padding-left:20px;"|Minimum Required Materials<br>
|colspan="3" style="font-size:16px;font-weight:bold;border-bottom: thin solid black;border-spacing:0px;padding-left:20px;"|Linux Command Reference<br>
|- valign="top"
| |[[Image:ssd.png|thumb|left|85px|<b>Solid State Drive</b>]]
| |[[Image:ubs-key.png|thumb|left|85px|<b>USB key</b><br>(for backups)]]
| |[[Image:log-book.png|thumb|left|70px|<b>Lab2 Log Book</b>]]
| valign="top" style="padding-left:20px;"|
Virtualization<br>
[http://linux.die.net/man/1/virt-manager virt-manager]<br>
[http://linux.die.net/man/1/virsh virsh]<br>
Installation Guides<br>
[http://wiki.centos.org/HowTos/KVM Installing & Using KVM on CentOS ]<br>
[http://www.dedoimedo.com/computers/kvm-intro.html Using KVM (tutorial)]<br>
[https://libvirt.org/sources/virshcmdref/html-single/ virsh command reference ]<br>
|valign="top" style="padding-left:20px;"|
Miscellaneous<br>
[http://linuxcommand.org/lc3_man_pages/gzip1.html gzip , gunzip]<br>
[http://man7.org/linux/man-pages/man8/ip.8.html ip]<br>
[http://man7.org/linux/man-pages/man1/grep.1.html grep]<br>
[http://man7.org/linux/man-pages/man1/wc.1.html wc]<br>
[http://man7.org/linux/man-pages/man1/pwd.1.html pwd]<br>
[http://man7.org/linux/man-pages/man1/ls.1.html ls]<br>
[http://man7.org/linux/man-pages/man1/more.1.html more]<br>
[http://man7.org/linux/man-pages/man1/file.1.html file]<br>
[http://man7.org/linux/man-pages/man1/wget.1.html wget]<br>
[http://man7.org/linux/man-pages/man1/chmod.1.html chmod]<br>
[http://ss64.com/vi.html vi]
|valign="top" style="padding-left:20px;"|Matrix Online Tutorials:<br><ul><li>Shell Scripting - Part 2 (Logic & Math Expressions):<br>'''/home/ops235/scripting-2'''</li><li>Shell Scripting - Part 3 (Loops)<br>'''/home/ops235/scripting-3'''</li></ul>
|}
=INVESTIGATION 1: SETUP FOR NESTED VIRTUAL MACHINES=
===Part 1: Install KVM Virtualization Application===
We will now install the KVM package in order to create our remaining "nested" VMs. We will also be starting several services (including iptables) and disabling the firewalld service. We will learn more about managing firewalls using iptables in lab6.
:'''Perform the following steps:'''
# Log into your c7host machine.
# perform a software update on your '''c7host''' VM by issuing the following command: <b><code><span style="color:#3366CC;font-size:1.2em;">sudo yum update</span></code></b>
{{Admon/important |Yum Update Hangs|If you experience yum update "hanging" around item 689 of over 1200 packages, issue the following commands <b>(in a new terminal!)</b>:<br><source>sudo pkill systemctl
sudo yum clean all
sudo yum update
</source>'''NOTE:''' Do NOT press '''<ctrl>c''' since it may cause your machine to cause a kernel panic when you restart your machine.}}
<ol><li value="3">Using elevated privileges, install the virtualization software by issuing the command:<br><b><code><span style="color:#3366CC;font-size:1.2em;">sudo yum install qemu-kvm qemu-img virt-manager libvirt libvirt-python \<br>libvirt-client virt-install virt-viewer bridge-utils</span></code></b> <br><br></li>
<li>'''Restart your c7host virtual machine'''. If you fail to do this, you may experience virtualization network problems.
{| width="40%" align="right" cellpadding="10"
|- valign="top"
|
{{Admon/note|About KVM|There are actually several key programs installed for virtualization using KVM:<ul><li>'''kvm/qemu''' - the hypervisor and other hardware emulation systems.</li><li>A system service named '''libvirtd''' that manages the VMs.</li><li>A graphical tool for managing virtual machines ('''virt-manager''') and the '''virsh''' command-line tool.</li></ul>}}
|}
</li><li>Start the virtualization service: <b><code><span style="color:#3366CC;font-size:1.2em;">sudo systemctl start libvirtd</span></code></b><br><br>'''NOTE:''' The most recent variants of CentOS and Fedora are using a service called '''firewalld''' that replaces '''iptables''', however the ''iptables'' service is still in relatively common usage and knowing how to use it also works with firewalld. In this course we will concentrate on ''iptables''.<br><br></li>
<li>To disable and remove firewalld, issue the following commands:<br>
<b><code><span style="color:#3366CC;font-size:1.2em;">sudo systemctl disable firewalld</span></code></b><br>
<b><code><span style="color:#3366CC;font-size:1.2em;">sudo systemctl stop firewalld</span></code></b><br>
<b><code><span style="color:#3366CC;font-size:1.2em;">sudo yum remove firewalld</span></code></b><br>
<br></li>
<li>To install and enable the IPTables services, issue the following commands:<br>
<b><code><span style="color:#3366CC;font-size:1.2em;">sudo yum install iptables-services</span></code></b><br>
<b><code><span style="color:#3366CC;font-size:1.2em;">sudo systemctl enable iptables</span></code></b><br>
<b><code><span style="color:#3366CC;font-size:1.2em;">sudo systemctl start iptables</span></code></b><br><br>
</li>
</ol>
{{Admon/important|Run virt-manager as a regular user, not as root|Otherwise all your virtual machines will be owned by root and you won't be able to use them as a regular user.}}
<ol>
<li value="8">Start the graphical tool by selecting the menu options '''Applications'''>'''System Tools'''>'''Virtual Machine Manager''' or by typing the command <b><code><span style="color:#3366CC;font-size:1.2em;">virt-manager</span></code></b> (without sudo!)</li>
<li>You will be learning in the next investigation to perform several different types of CentOS Linux installs.</li>
</ol>
===Part 2: Configure VMware Workstation for Nested VMs ===
Although we are using VMware Workstation to run our c7host VM, we will now install and configure another virtualization package called KVM in order to install the remaining VMs for this course.
Since we are "nesting" VMs (i.e. running a VM inside another VM) we need to configure our c7host's Linux boot-up parameters in order to allow these VMs to run efficiently.
:'''Perform the following steps:'''
# In a terminal use elavated privileges to edit the file called: '''/boot/efi/EFI/centos/grub.cfg'''<ul><li>'''If this file doesn't exist, double-check your UEFI settings in VMWare Workstation for c7host. If BIOS is selected, <u>you MUST redo Lab 1</u>.'''</li></ul>
# Search for the <b>first occurrence</b> of the Linux Kernel boot command. Do not make the following changes on more than one entry!
# Insert the boot option: '''kvm-intel.nested=1''' (for AMD processors '''kvm-amd.nested=1''') at the end of the Linux kernel boot options.
<ol>
{{Admon/important|About the reference settings shown below|
* Only '''ONE''' of these settings might be applicable.
* Enter '''JUST''' the text highlighted in '''BLUE''' as your kernel version, root, and LVM settings might vary slightly.}}
</ol>
<blockquote><code style="font-family:courier;font-size:1.2em;margin-left:20px;">
<br>linuxefi /vmlinuz-3.10.0-1062.1.2.el7.x86_64 root=/dev/mapper/centos_c7host-root ro crashkernel=auto rd.lvm.lv=centos_c7host/root rd.lvm.lv=centos_c7host/swap rhgb quiet LANG=en_CA.UTF-8 <span style="color:blue;font-weight:bold">kvm-intel.nested=1</span>
<br> initrdefi /initramfs-3.10.0-1062.1.2.el7.x86_64.img
</code></blockquote>
<span style="color:red;font-weight:bold">OR</span>
<blockquote><code style="font-family:courier;font-size:1.2em;margin-left:20px;">
<br>
linuxefi /boot/vmlinuz-3.10.0-1062.el7.x86_64 root=/dev/mapper/centos_c7host-root ro crashkernel=auto rd.lvm.lv=centos_c7host/root rd.lvm.lv=centos_c7host/swap rhgb quiet LANG=en_CA.UTF-8 <span style="color:blue;font-weight:bold">kvm-intel.nested=1</span><br>initrdefi /boot/initramfs-3.10.0-1062.el7.x86_64.img
</code></blockquote>
<ol><li value="4">Save your editing changes, close the virtual machine application, and <u>'''reboot'''</u> your c7host VM.</li>
<li>If you configured your c7host VM for nested VMs, then you should get the output <b><code><span style="color:#3366CC;font-size:1.2em;">Y</span></code></b> when you issue the following command:<br><b><code><span style="color:#3366CC;font-size:1.2em;">cat /sys/module/kvm_intel/parameters/nested</span></code></b></li><ul><li>For '''AMD''' processors, check the /sys/module/'''kvm_amd'''/parameters/nested file. You should get the output <b><code><span style="color:#3366CC;font-size:1.2em;">1</span></code></b></li></ul>
<ul><li>And if kvm_intel directory doesn't exist, double-check your '''Processors => Virtualization Engine (Intel VT-x/EPT...)''' settings in VMWare Workstation.</li></ul>
</ol>
'''Answer the INVESTIGATION 1 observations / questions in your lab log book.'''
=INVESTIGATION 2: INSTALL NESTED VIRTUAL MACHINES (KVM)=
{|width="50%" cellspacing="0"
|- valign="top"
|{{Admon/important|Keep the root password the same for Host and VMs|In order to simplify running the lab checking scripts in future labs, using the same root password for ALL machines (c7host and virtual machines). Also use the same username and passwords for all of your machines (c7host and virtual machines).}}<br><br>
|}
=== Part 1: Installing VM from a Network (Graphical)===
:'''VM Details:'''
:: '''VM Name (and hostname):''' centos1
:: '''Boot media:''' Network installation
:: '''CentOS Full Network Install URL:'''
:::*Seneca Lab: http://mirror.senecacollege.ca/centos/7/os/x86_64/ ('''NOTE: requires VPN''')
:::*Home: http://mirror.netflash.net/centos/7/os/x86_64/
:: '''VM Image Pathname:''' /var/lib/libvirt/images/centos1.qcow2
:: '''Memory:''' 2048MB
:: '''Disk space:''' 15GB
:: '''CPUs:''' 2
[[Image:Kvm-warning.jpg|thumb|right|400px|You may see this warning when creating your first VM inside CentOS. Select''' ''Don't ask me about these directories again'' '''and click''' ''Yes'''''.]]
:'''Perform the following steps:'''
# Launch the ''KVM virtual machine manager'' by clicking '''Applications''' -> '''System Tools''' -> '''Virtual Machine Manager'''.
# When prompted, enter your password.
# Click the '''create a new VM icon''' located near the top left-corner of the application window.
# Select the '''Network Install''' option and click '''Forward'''.
# Enter (copy and paste) the URL located at the top of this section (depending whether you are at Seneca College or not) and click '''Forward'''.
# Set RAM size to 2048 MB and CPUs to 2, then click '''Forward'''.
# Set Hard Disk size to 15GB and click '''Forward'''.
# <span style="background-color:yellow;">Enter the name: '''centos1''', <u>AND</u> then select the option: '''Customize configuration before install''', and click '''Finish'''.</span>
# <span style="background-color:yellow;">Another dialog will appear. Click '''CPUs''' (or "processors") and on right-side under Configuration select '''Copy Host CPU Configuration''', click '''Apply''', and then click '''Begin Installation''' at the top left-hand side.</span>
#<span style="background-color:yellow;">During the install, select '''Gnome Desktop''' (software selection). For partitioning, select '''I will configure partitions''' settings, click done, then select '''Click here to create them automatically'''. Set the / partition for '''ext4''' file-system type, and click '''Done'''.</span>
#<span style="background-color:yellow;">Set the correct '''Date and Time Zone''', and then click on '''Network and Hostname'''. The network should be turned '''ON'''. For hostname, enter: '''centos1''' and then click '''Done'''.</span>
# <span style="background-color:yellow;">Make sure that when you create your regular user account you check the box to make them an administrator.</span>
# <span style="background-color:yellow;">Complete the installation. Login to your regular user account, and perform a '''sudo yum update''' for the centos1 VM (reboot if required). Make certain to adjust your screen-saver settings if desired.</span>
<br>
{{Admon/important|Use same root password / regular username / regular user passwords for c7host and ALL VMs|To simplify the lab checking process make certain that you use the identical root password, regular username, and regular username password for VMs that you create in this labs as you did for c7host machine in lab1.<br><br>}}
<br>
<ol><li value="14"><span style="background-color:yellow;">Repeat the steps as you did in the previous investigation ([https://wiki.cdot.senecacollege.ca/wiki/OPS245_Lab_2#Part_1:_Install_KVM_Virtualization_Application Investigation1 Part 1]) to '''stop, disable and remove firewalld, install iptables-services, start and enable iptables''' for this newly-created VM.</span></li>
<li><span style="background-color:yellow;">Repeat the steps as you did with c7host post-install to '''turn off (permissive) SELinux''' and perform a '''yum update'''.</span></li>
<li>Issue the following command to obtain the IPADDR for your centos1 VM to record in your lab2 logbook: <b><code><span style="color:#3366CC;font-size:1.2em;">ip address show</span></code></b></li>
<li>Record the time taken to install, and compare this to the time taken by the previous installations in your lab2 logbook.</li>
</ol>
=== Part 2: Installing from a Network (Minimal install - CLI) ===
:'''VM Details:'''
:: '''VM Name (and hostname):''' centos2
:: '''Boot media:''' Network installation
:: '''CentOS Full Network Install URL:'''
:::*Seneca Lab: http://mirror.senecacollege.ca/centos/7/os/x86_64/ ('''NOTE: requires VPN''')
:::*Home: http://mirror.netflash.net/centos/7/os/x86_64/
:: '''VM Image Pathname:''' /var/lib/libvirt/images/centos2.qcow2
:: '''Memory:''' 2048MB
:: '''Disk space:''' 20GB
:: '''CPUs:''' 1
:'''Perform the following steps:'''
# Create the VM (called '''centos2''') as you did with the ''centos1'' machine.
# Make certain to enter the name: '''centos2''', <u>AND</u> then select the option: '''Customize configuration before install''', and select '''Copy Host CPU Configuration''', click '''Apply''', and then click '''Begin Installation'''.
#When selecting the install options for centos2, do the same operation that you did in centos1 (but with '''Minimal Install''' software selection instead), but after '''automatically creating the partitions''', reduce the size of the root logical volume to '''8 GiB''' and add a logical volume with a size of '''2 GiB''' (mount point: '''/home''', name: '''home''', and make certain root and /home logical volumes have '''ext4''' file system).<br><br>
# <span style="background-color:yellow;">Complete the installation. Login to your regular user account.</span>
# <span style="background-color:yellow;">Repeat the steps as you did in the previous investigation ([https://wiki.cdot.senecacollege.ca/wiki/OPS245_Lab_2#Part_1:_Install_KVM_Virtualization_Application Investigation1 Part 1]) to '''stop and disable firewalld, install iptables-services, start and enable iptables''' for this newly-created VM.</span>
# <span style="background-color:yellow;">Repeat the steps as you did with c7host post-install to '''turn off (permissive) SELinux''' (using the command 'vi' instead of 'vim') and perform a '''yum update'''.</span>
# Issue the following command to obtain and record your centos2 IPADDR in your lab2 logbook: <b><code><span style="color:#3366CC;font-size:1.2em;">ip address show</span></code></b>
# Record the time taken to install, and compare this to the time taken by the previous installations in your lab2 logbook.
=== Part 3: Installing from a Network using a Kickstart File ===
{| width="40%" align="right" cellpadding="10"
|- valign="top"
|colspan="2"|{{Admon/important|Using a Kickstart file with a local install|Under most circumstances, a network install would be drawing the installation data from a server in the local network, allowing it to transmit data at higher speeds than we can achieve over the internet. If your download speed is slow enough that network installs are failing, it is acceptable to install these VMs from local media. However, you will still need to provide a kickstart file to Centos3. <br /><br />To do so, start the install process as normal for an installation from an iso file, but when presented with the menu giving you the option to 'Install CentOS 7' or 'Test this media & install CentOS 7', highlight 'Install CentOS7' and press '''<tab>'''. This will open a prompt at the bottom of the window for you to enter grub configuration options. Type '''inst.ks=https://raw.githubusercontent.com/OPS245/labs/main/centos7-kickstart.cfg''' and hit '''<enter>'''.}}
|}
:'''VM Details:'''
:: '''VM Name (and hostname):''' centos3
:: '''Boot media:''' Network installation
:: '''CentOS 7 Full Install Network URL:'''
:::*Seneca Lab: https://mirror.senecacollege.ca/centos/7/os/x86_64/
:::*Home: http://mirror.netflash.net/centos/7/os/x86_64/
:: '''Kickstart File URL (Kernel options): '''
:::* Home:''' <span style="color:green;font-weight:bold">ks=</span>https://raw.githubusercontent.com/OPS245/labs/main/centos7-kickstart.cfg
:: '''VM Image Pathname:''' /var/lib/libvirt/images/centos3.qcow2
:: '''Memory:''' 2048MB ('''IMPORTANT''' Do not use less than 2048MB during installation.)
:: '''Disk space:''' 15GB
:: '''CPUs:''' 2
<br>
{{Admon/important|Include ''ks='' in the URL options field!|When using a kickstart file, make sure you include the''' ''ks='' '''portion of the link. If done correctly, you should not be able to select partitions or any other settings.}}
<br>
:'''Perform the following steps:'''
# Create the VM (called '''centos3''')
# During the install, copy the network URL, then click the '''URL options''' to expand the '''kernel options''' input textbox. Type the following in the kernel options textbox: <ul><li><span style="color:green;font-weight:bold">ks=</span>https://raw.githubusercontent.com/OPS245/labs/main/centos7-kickstart.cfg</li></ul>
# Then click the '''forward''' button to proceed. Make certain to select the correct Memory Size and Disk Space size shown in the VM Details above
# Make certain to enter the name: '''centos3''', <u>AND</u> then select the option: '''Customize configuration before install''', and select '''Copy Host CPU Configuration''', click '''Apply''', and then click '''Begin Installation'''.
# Observe the installation. How is it different from booting from a downloaded image?
# Record the time taken to install, and compare this to the time taken by the previous installations.<br><br>If during the installation, you see the message at the bottom '''Pane is Dead''', click the '''Virtual Machine''' menu at the top, select '''Shut Down''' -> '''Force Off''', '''right-click''' on '''centos3''' in the ''virtual manager'' window and select '''Delete'''. Redo the VM setup for a new instance of the ''centos3'' VM.<br><br>
# What happens when the installation is finished?
# '''In a web browser''', click the kickstart (KS) link above. This link is a text file. Read through it to find the following information (pay attention to lines starting with #) and record it in your Lab Logbook:<ul><li>'''Regular-user account name'''</li><li>'''Regular-user account password'''</li><li>'''Root Password'''</li></ul>
# Boot the virtual machine and log in (use the user ID and password information from the previous step to gain access to this VM).
# Compare the experience to the first time you booted the other virtual machines.
# <span style="background-color:yellow;">Repeat the steps as you did in the previous investigation ([https://wiki.cdot.senecacollege.ca/wiki/OPS245_Lab_2#Part_1:_Install_KVM_Virtualization_Application Investigation1 Part 1]) to '''stop and disable firewalld, install iptables-services, start and enable iptables''' for this newly-created VM.</span>
# <span style="background-color:yellow;">Repeat the steps as you did with c7host post-install to '''turn off SELinux''' and perform a '''yum update'''.</span><br />
:::You'll notice something when you go to set '''SElinux''' to '''permissive'''. The kickstart file already did that for you. It could even have performed the switch from firewalld to iptables for you (but it didn't).
# Issue the following command to obtain and record your centos2 IPADDR in your lab2 logbook: <b><code><span style="color:#3366CC;font-size:1.2em;">ip address</span></code></b>
# Remember that centos3 is text-based interface only (no graphics). To recover from a blank screen, press a key (like the SPACE key) to return to the screen display.
# Record the time taken to install, and compare this to the time taken by the previous installations in your lab2 logbook.
'''Answer the INVESTIGATION 2 observations / questions in your lab log book.'''
=INVESTIGATION 3: MANAGING VIRTUAL MACHINES (KVM)=
{{Admon/important |Root Privileges|As part of this investigation you will learn how to switch over to the root account in order to run several privileged commands in sequence. It can be tempting to just use this technique all the time, and never have to worrry about sudo, but do '''not''' do so. It undermines the security of your system. Use it only when you need it. }}
{| width="40%" align="right" cellpadding="10"
|- valign="top"
|colspan="2"|{{Admon/important|Backing up VMs|There are two general processes in order to back up your images:<ol><li>'''Compressing your images''' (also recommended to backup up to external storage USB Key) using the '''gzip''' command.</li><li>'''Backup the VM xml configuration file''' (preferably to USB key) using '''virsh''' shell command to add VM to virtual machine manager list (in the event that the HOST machine is "wiped" and re-installed, but VM images and xml configuration files have been backed up external storage).</li></ol><br />Taking the time to backup the image of the Operating System's file system allows the user to return to a '''"restoration point"''' using the '''gunzip''' command in case something bad occurs to the OS during a lab.<br />Failure to take the time to make and confirm backups can result in loss of lab work for the student!|}}
|}
=== Part 1: Backing Up Virtual Machines ===
:'''Perform the following steps:'''
# Shut down your '''centos1''', '''centos2''', and '''centos3''' VMs. For ''centos2'' and ''centos3'', which are CLI-only, you can issue the following command to shutdown: <b><code><span style="color:#3366CC;font-size:1.2em;">poweroff</span></code></b>. Please be patient, the VMs will shut down!
# In your '''c7host''' VM, open a new Terminal window.
# Use elevated privileges to list the size and names of files in<b><code><span style="color:#3366CC;font-size:1.2em;">/var/lib/libvirt/images/</span></code></b><ul><li>What do these files contain?</li></ul>
# Use the command <b><code><span style="color:#3366CC;font-size:1.2em;">sudo -i</span></code></b> and enter your password if prompted. You are now root until you use the command '''exit''' to return to your normal user account.
# Change to the images directory by issuing the following command: <b><code><span style="color:#3366CC;font-size:1.2em;"> cd /var/lib/libvirt/images/</span></code></b>. Note that you did not need to use sudo, as you are already using elevated permissions.
# Make a compressed backup of your '''centos1.qcow2''', '''centos2.qcow2''', and '''centos3.qcow2''' files to your regular user's home directory by issuing each command - one at a time (create '''backups''' directory '''within your regular user's home directory''' before running these commands):<br><b><code><span style="color:#3366CC;font-size:1.2em;">gzip < centos1.qcow2 > ~YourRegularUsername/backups/centos1.qcow2.gz</span></code></b><br><b><code><span style="color:#3366CC;font-size:1.2em;">gzip < centos2.qcow2 > ~YourRegularUsername/backups/centos2.qcow2.gz</span></code></b><br><b><code><span style="color:#3366CC;font-size:1.2em;">gzip < centos3.qcow2 > ~YourRegularUsername/backups/centos3.qcow2.gz</span></code></b><ul>'''NOTE:''' Make certain to use the redirection signs "<" and ">" properly in the command!</ul>
{{Admon/important |Please be patient|It may look like the command prompt is stuck but it could take a while for gzip to compress an entire operating system. '''NOTE:''' Do NOT press '''<ctrl>c''' to cancel this process. If you do, your archive will become incomplete and your recovery will be corrupt.}}
<ol><li value="7"> Compare the size of the compressed and original files (hint: use '''ls -lh'''). If file is very large (like 15GB), you didn't compress it and you need to remove that file and perform the previous step until you get it right!</li>
<li>Once you are '''sure you have all three VMs backed up''', use the <b><code><span style="color:#3366CC;font-size:1.2em;">exit</span></code></b> command to revert back to your normal user.</li>
<li> Start the '''''centos3''''' VM.</li>
<li> '''Make certain that you are in your VM and <u>not</u> in your main system!''' </li>
<li> Wreck <u>only</u> your centos3 system! Try this command inside the centos3 virtual machine:<b><code><span style="color:#3366CC;font-size:1.2em;">sudo rm -rf /*</span></code></b> (ignore error messages).</li>
<li> Shut down and restart the centos3 VM (you may need to use the '''Force Reset''' option to do so).</lI>
<li> When the machine restarts it will not boot since all system files have been removed!</li>
<li> Use the '''Force Off''' option to turn centos3 back off.</li>
<li> Restore the original image from the backup from your home directory to your '''images''' directory by typing <b><code><span style="color:#3366CC;font-size:1.2em;">sudo -i</span></code></b> command first [do not forget to '''exit''' when you are done], then this command:<br><b><code><span style="color:#3366CC;font-size:1.2em;">gunzip < ~YourRegularUsername/backups/centos3.qcow2.gz > /var/lib/libvirt/images/centos3.qcow2'''</span></code></b></li>
<li> Restart the VM. Is it working normally?</li>
<li> You should also make a copy of the XML configuration file for each VM in case you "wipe" and re-install the host machine, and want to add a restored VM backups to the virtual machine manager list. We will demonstrate using the centos3 XML configuration file, and prove that a "clone" can be added to your list.Please perform the following step:</li>
<li> Execute the following command: <b><code><span style="color:#3366CC;font-size:1.2em;">sudo virsh dumpxml centos3 > centos3.xml</span></code></b></li>
<li> Examine the file <b><code><span style="color:#3366CC;font-size:1.2em;">centos3.xml</span></code></b>. What does it contain? What format is it in?<br></li></ol>
=== Part 2: Restoring Virtual Machines ===
[[Image:Cinnamon-2-245.png|thumb|right|500px|Click on the cog icon to select different installed desktop environments.]]
# We will now learn how to download a compressed image file and XML configuration file and add it as a VM to the Virtual Machine Manager menu.
# Issue the following commands:<ul><li><b><code><span style="color:#3366CC;font-size:1.2em;">wget https://matrix.senecacollege.ca/~ops245/centos4.qcow2.gz</span></code></b></li><li><b><code><span style="color:#3366CC;font-size:1.2em;">wget https://matrix.senecacollege.ca/~ops245/centos4.xml</span></code></b></li></ul>
# Use gunzip with elevated privileges to decompress the qcow2 image file into the '''/var/lib/libvirt/images''' directory.
# Issue the command: <b><code><span style="color:#3366CC;font-size:1.2em;">sudo virsh define centos4.xml</span></code></b>
# What happened in the virtual manager window? In order to remove a VM entry in the Virtual Manager window, simply issue the command '''virsh undefine VM_name''' without the '''.xml''' file extension
# Start up your new centos4 VM.
# Click on the user <i>OPS245</i>, and click the cog icon.
# Notice <i>Cinnamon (Software Rendering)</i> is selected. The Cinnamon desktop environment has been installed on this VM. From this menu, you can select other installed desktop environments. This is how you switch between them. Write it down.
# Login with the password <b><i>ops245</i></b>. Feel free to explore the new environment.
# Prior to your practical test, you will be required to perform a similar operation to download, unzip and run a VM image for your practical test.<br>
{{Admon/important|Shutting Down the Host while Virtual Machines are Running|If you shut down your host system while virtual machines are running, they will be suspended, and will resume the next time you boot your host system. Note that it is better to shut down the VMs prior to shutting down the host}}<ol><li value="12">For the remainder of these labs, it is assumed that you will backup <u>'''both'''</u> the images and XML configuration files for <u>'''all'''</u> Virtual machines, when asked to backup your virtual machines. It is also highly recommended to backup these files to an external storage device (eg. USB key) in case the host machine gets "wiped" and you need to rebuild your HOST machine and then restore your Virtual Machines...</li>
<li>Answer this question in your log book:</li>
</ol>
::* In order to fully back up a virtual machine, what information should be saved in addition to the virtual machine image?
=== Part 3: Using the Command Line for VM State Management===
{|width="40%" align="right" cellpadding="10"
|- valign="top"
|
{{Admon/tip|Bash Shell Tips:|<br>'''<u>Data Input</u>'''<br><ul><li>A shell can obtain data from a number of methods: '''reading input files''', using '''arguments when issuing command''' (positional parameters), or '''prompting for data to store in a variable'''. The later method can be accomplished by using the '''read''' command.<br><br></li><li>Example:<br><br>''read -p "Enter your name: " userName''.<br><br></li></ul>'''<u>Mathematical Expressions</u>'''<br><ul><li>In the bash shell, data is stored in variable as text, not other data types (ints, floats, chars, etc) like in compiled programs like C or Java. In order to have a shell perform '''mathematical operations''', number or variable need to be surrounded by two sets of parenthesis '''((..))''' in order to convert a number stored as text to a binary number.<br><br></li><li>Examples<br><br>''var1=5;var2=10''<br>''echo "$var1 + $var2 = $((var1+var2))"''<br><br>'''Note:''' shell does not perform floating point calculations (like '''5/10'''). Instead, other commands like '''awk''' or '''bc''' would be required for floating point calculations (decimals)<br><br></li></ul>}}
|}
You will continue our use of the Bash Shell by examining commands will allow the Linux sysadmin to gather information about and manage their Virtual Machines.
:'''Perform the following steps:'''
# Start the '''centos1''' virtual machine, and stop the '''centos2''' and '''centos3''' virtual machines.
# Switch to the '''c7host''' machine, and open a shell terminal.
# Enter these admin commands into your '''c7host''' machine and note the result:
:: <b><code><span style="color:#3366CC;font-size:1.2em;">sudo virsh list</span></code></b>
:: <b><code><span style="color:#3366CC;font-size:1.2em;">sudo virsh list --all</span></code></b>
:: <b><code><span style="color:#3366CC;font-size:1.2em;">sudo virsh list --inactive</span></code></b>
<ol><li value="4">Now, shut-down your centos1 VM normally, and close the centos1 VM window.</li><li>Switch to your terminal and issue the command: <b><code><span style="color:#3366CC;font-size:1.2em;">sudo virsh start centos1</span></code></b></li><li>Using the appropriate command check to see if your centos1 VM is now running.</li><li>There are other commands that can be used (such as '''suspend''', or '''shutdown'''). The "shutdown" command may not always work since it relies on the guest handling a particular ACPI event. Why do you think it is useful to have commands to manipulate VMs?</li></ol>
{{Admon/important|Virtual Machine Does not Shutdown from Command|If the Virtual machine fails to shutdown from the <code>virsh shutdown</code> command, then you can go to the '''Virtual Machine manager''' and '''halt''' or '''shutdown''' within the VM itself, then you can click the '''PowerOff''' button in the VM window. You'll want to avoid a forced shutdown since those are equivalent to yanking the power cord out of the wall on a physical machine!|}}
<br/>
<br/>
<br/>
<br/>
<br/>
<br/>
<br/>
'''Answer INVESTIGATION 3 observations / questions in your lab log book.'''
=INVESTIGATION 4: USING PYTHON TO AUTOMATE MANAGING VIRTUAL MACHINES=
{|width="40%" align="right" cellpadding="10"
|- valign="top"
|
{{Admon/tip|Python Scripting Tips:|<br>'''<u>String Methods</u>'''<br><ul><li>The string data type has a number of methods that we can use on it to get a modified version of the data a string variable holds.</li><li>Note that these don't change the existing string, just return a copy of it with some change. You can store this updated copy in a variable, or use it in a command.</li><li>Some examples include:<ul><li>find() - locates a value (e.g. another string) if it is in this string.</li><li>lower() - convert the entire string to lower-case</li><li>replace() - finds a value in the string, and replaces it with a different value.</li><li>split() - breaks the string up on a value, and returns a list.</li><li>strip() - removes leading and trailing whitespace</li><li>upper() - convert the entire string to upper-case</li></ul></li><li>There are [https://www.w3schools.com/python/python_ref_string.asp many more options] than this, but you will get a lot of utility out of these.</li></ul><br />'''<u>Methods in General</u>'''<br><ul><li>Python is an object oriented programming language. In this course, that won't actually affect us much, but it does change how you run some commands.</li><li>In bash, every command ran on its own (while you might provide the command some arguments, or pipe different data into it). In python, the modules we import, and the types of variables we use can (will) have commands built into them. For example: converting all letters in a string to UPPER CASE).</li><li>While you could write a command in bash that would do that and pass it a variable holding a series of letters as an argument, in python that behaviour (and more) is built into the string type of variable.</li><li>The actions that are built into types are called '''methods'''. To use a method on a variable just add .methodname() to the end of the variable. Instead of getting back the value, you'll get something else (based on what that method does). Suppose we had a variable called course that currently had the value 'ops245'. Course codes are usually written in ALL-CAPS, so instead of just saying print(course), we could say print(course.upper())</li></ul>}}
|}
This week you have added some significant capabilities to your python scripting. The ability to run loops and make decisions makes your scripts much more powerful. In this investigation you will write a python script that backs up the centos1, centos2, and centos3 VMs, or lets the user specify which VMs they want backed up.
<ol>
<li>In your '''bin''' directory, create the file '''backupVM.py''', and populate with our standard beginning
<code style="color:#3366CC;font-family:courier;font-size:.9em;">
<br>
#!/usr/bin/env python3<br />
# backupVM.py<br />
# Purpose: Backs up virtual machines<br />
#<br />
# USAGE: ./backupVM.py<br />
#<br />
# Author: *** INSERT YOUR NAME ***<br />
# Date: *** CURRENT DATE ***<br />
import os<br />
currentuser = os.popen('whoami')<br />
if currentuser.read() != 'root':<br />
print("You must be root")<br />
exit()<br />
else:<br />
print('Backing up centos1')<br />
os.system('gzip < /var/lib/libvirt/images/centos1.qcow2 > ~YourRegularUsername/backups/centos1.qcow2.gz')<br />
print('Backing up centos2')<br />
os.system('gzip < /var/lib/libvirt/images/centos2.qcow2 > ~YourRegularUsername/backups/centos2.qcow2.gz')<br />
print('Backing up centos3')<br />
os.system('gzip < /var/lib/libvirt/images/centos3.qcow2 > ~YourRegularUsername/backups/centos3.qcow2.gz')<br />
</code>
</li>
<li>Try to run that script. You'll notice it does not work. No matter what you do, it always says you are not root.</li>
<li>Modify the print statement that tells the user they must be root to also include the current username, then run the program again.</li>
<li>It should print out root, but with an extra new-line. You may have noticed this in your other python scripts so far: the data we get from os.popen() has an extra new-line on the end. We will need to modify the string(s) it gives us a bit. See the side-bar for hints on how to do so.</li>
<li>Modify the if statement so it is just getting the current username, not the username and a newline. You can do this using several steps and several variables, but it can also be done in a single line.</li>
<li>Test your script to make sure it works. If it doesn't, go back and fix it. '''Do not continue until it successfully makes backups of your VMs'''.</li>
<li>There is a weakness to this script as written. Every time you run it, it will make a backup of all three VMs. But what if you only made a change to one of them? Do we really need to wait through a full backup cycle for two machines that didn't change? As the script is currently written, we do. But we can make it better. We've provided the scripts with some comments below.</li>
<li><code style="color:#3366CC;font-family:courier;font-size:.9em;">
#!/usr/bin/env python3<br />
# backupVM.py<br />
# Purpose: Backs up virtual machines<br />
#<br />
# USAGE: ./backupVM.py<br />
#<br />
# Author: *** INSERT YOUR NAME ***<br />
# Date: *** CURRENT DATE ***<br />
import os<br />
<br />
#Make sure script is being run with elevated permissions<br />
currentuser = os.popen('whoami').read().strip()<br />
if currentuser != 'root':<br />
print("You must be root")<br />
exit()<br />
else<br />
<br />
#The rest of this script identifies steps with comments 'Step <something>'.<br />
#This is not a normal standard for commenting, it has been done here to link the script<br />
# to the instructions on the wiki.<br />
<br />
#Step A: Find out if user wants to back up all VMs<br />
#Step B-1:use the existing loop to back up all the VMs<br />
print('Backing up centos1')<br />
os.system('gzip < /var/lib/libvirt/images/centos1.qcow2 > ~YourRegularUsername/backups/centos1.qcow2.gz')<br />
print('Backing up centos2')<br />
os.system('gzip < /var/lib/libvirt/images/centos2.qcow2 > ~YourRegularUsername/backups/centos2.qcow2.gz')<br />
print('Backing up centos3')<br />
os.system('gzip < /var/lib/libvirt/images/centos3.qcow2 > ~YourRegularUsername/backups/centos3.qcow2.gz')<br />
#Step B-2: They don't want to back up all VMs, prompt them for which VM they want to back up<br />
#Step C: Prompt the user for the name of the VM they want to back up<br />
#Step C-1: If the user chose Centos1, back up that machine.<br />
#Step C-2: If the user chose Centos2, back up that machine.<br />
#Step C-3: If the user chose Centos3, back up that machine.<br />
</code></li>
<li>Before the block that backs up each machine add a prompt to ask the user if they want to back up all machines. Use an if statement to check if they said yes (See comment 'Step A').
<ul><li>if they did say yes, back up all the VMs using your existing block (Comment step B-1).</li><li>If they didn't say yes, do nothing for now (you could even use python's pass statement).</li></ul></li>
<li>Test your script to make sure it works. Check what happens if you say 'yes' to the prompt, and check what happens if you say things other than 'yes'.</li>
<li>Now we have a script that asks the user if they want to back up all VMS, and if they say they do, it does. But if they don't want to back up every VM, it currently does nothing.</li>
<li>Add an else statement at comment Step B-2 to handle the user not wanting to back up every VM. Inside that else clause (Comment step C) ask the user which VM they would like to back up (you can even give them the names of available VMs (Centos1, Centos2, Centos3).</li>
<li>Now nest an if statement inside that else (Comments C-1, C-2, and C-3) so that your script can handle what your user just responded with. If they asked for Centos1, back up Centos1. If they want to back up Centos2, only back up Centos2, etc. Hint: You might want to use elif for this.</li>
<li>Test your script again. You should now have a script that:<ul><li>Makes sure the user is running the script with elevated permissions.</li><li>Asks the user if they want to back up every VM.</li><li>If they want to back up every VM, it backs up every VM.</li><li>If the user does not want to back up every VM, the script asks them which VM they do want to back up.</li><li>If the user selected a single VM, the script will back up that one VM.</li>
<li>Now you may notice another issue with the script: The gzip lines are almost identical. The only difference in them is the name of the VM file being backed up. In the portion of code where you back up each machine individually (comment steps C-1, C-2, and C-3) try replacing the machine name in the gzip command with a string variable that holds the machine's name instead. Note that you will have to make us of string concatenation for this to work correctly.</li></ul></li>
</ol>
= LAB 2 SIGN-OFF (SHOW INSTRUCTOR) =
Follow the submission instructions for lab 2 on Blackboard.
{{Admon/important|Backup ALL of your VMs!|If you have successfully completed this lab, make a new backup of all of your virtual machines onto your USB Key.}}
:'''Perform the Following Steps:'''
# Use the '''virsh start''' command to launch all the VMs ('''centos1''', '''centos2''', and '''centos3''').
# Inside each virtual machine, run <b><code>ip a</code></b> on the command line. Open a Terminal window in centos1 to do so. You'll need the IP address of each machine for the next steps.
# Switch to your '''c7host''' VM, open a terminal, login as root, and change directory to '''/root/bin'''.
# Issue the Linux command: <b><code><span style="color:#3366CC;font-size:1.2em;">wget https://raw.githubusercontent.com/OPS245/labs/main/lab2-check.bash</span></code></b>
# Give the '''lab2-check.bash''' file execute permissions (for the file owner).
# Run the shell script and if any warnings, make fixes and re-run shell script until you receive "congratulations" message.
#Arrange proof of the following on the screen:
::✓ '''<u>All</u> VMs''':<blockquote><ul><li>All 4 nested VMs '''created''' and '''running'''</li><li> Proof of '''yum updates''' on ALL VMs (i.e. results from '''yum update''' command)</li></ul></blockquote>
::<span style="color:green;font-size:1.5em;">✓</span>'''c7host VM''':<blockquote><ul><li>Run the '''lab2-check.bash''' script in front of your instructor (must have all <b><code><span style="color:#66cc00;border:thin solid black;font-size:1.2em;"> OK </span></code></b> messages)</li></ul></blockquote>
::<span style="color:green;font-size:1.5em;">✓</span> Lab2 logbook notes completed.
#Upload a screenshot of the proof listed above, the output file generated by the lab2-check.bash script, your log book, and your backupVM.py to blackboard.
= Practice For Quizzes, Tests, Midterm & Final Exam =
# What is the name of the CentOS installation program?
# What is the name of the file created by the CentOS installation program?
# Which type of installation works best for confirming compatibility with hardware before installation? Why?
# Which type of installation works best for installing large numbers of computers? Why?
# How can you reduce the number of software updates required immediately after installation?
# How do you start and stop virtual machines?
# How do you SSH into your virtual machines?
# List the steps to install a VM from:<ul><li>Downloaded iso file</li><li>Network install (without kickstart file)</li><li>Network install (with kickstart file)</li></ul>
# What is the purpose of the virsh command?
# How to start and stop VMs using the virsh command?
# List the steps to correctly backup your VMs to a USB disk
# List the steps to correctly restore your VMs from a USB disk to your c7host VM.
# How can you prompt the user for data and store into a variable?
# Show a few examples how loops can be used to error-check when prompting the user for data.
# What does the command '''rpm -qi centos-release''' do and why is it important?
# What is the difference between '''rpm -q centos-release''' and '''uname -a'''?
[[Category:OPS245]]
[[Category:OPS245 Labs]]
[[Category:Digital Classroom]]
[[Image:vmware-1a.png|thumb|right|400px|At the end of lab2, your VMware Workstation application will contain '''4 virtual machines''' ('''c7host''' in your '''VMware Workstation''' application, and '''centos1, centos2, centos3 VMs''' in your '''KVM''' application). You will now have the option to run one virtual machine at a time, or run all machines simultaneously to learn about networking (covered in later labs) ]]
=== Purpose / Objectives of Lab 2===
In this lab, you will create 3 remaining virtual machines using another virtualization program called '''KVM''' that will run in your c7host VM. These VMs will be used throughout the remainder of this course to learn how to administer them (installing software, managing services, networking, etc).
While you are performing this lab, it is recommended to generally note the major differences in the different installation methods, and which method you prefer to use if you were a Linux system administrator in charge of installing many Linux distributions for an organization.
<u>Main Objectives</u>
* Installing additional Virtualization Software on your '''c7host''' machine ('''KVM''')
* '''Create 3 separate VMs (virtual machines) using different installation methods:'''
:* '''centos1''': Network CentOS Installation ('''Graphical''')
:* '''centos2''': Network CentOS Installation (minimal install - '''CLI only''')
:* '''centos3''': Network CentOS Installation with Kickstart configuration file ('''CLI only''')
* Manipulate virtual machines by CLI ('''virsh''')
* Properly '''backup VM images''' and backup '''VM configuration files'''
* Create and run '''Bash Shell scripts''' to automatically create a post-install report for an installed VM.
{|width="100%" cellspacing="0"
|- valign="top"
|colspan="3" style="font-size:16px;font-weight:bold;border-bottom: thin solid black;border-spacing:0px;padding-left:20px;"|Minimum Required Materials<br>
|colspan="3" style="font-size:16px;font-weight:bold;border-bottom: thin solid black;border-spacing:0px;padding-left:20px;"|Linux Command Reference<br>
|- valign="top"
| |[[Image:ssd.png|thumb|left|85px|<b>Solid State Drive</b>]]
| |[[Image:ubs-key.png|thumb|left|85px|<b>USB key</b><br>(for backups)]]
| |[[Image:log-book.png|thumb|left|70px|<b>Lab2 Log Book</b>]]
| valign="top" style="padding-left:20px;"|
Virtualization<br>
[http://linux.die.net/man/1/virt-manager virt-manager]<br>
[http://linux.die.net/man/1/virsh virsh]<br>
Installation Guides<br>
[http://wiki.centos.org/HowTos/KVM Installing & Using KVM on CentOS ]<br>
[http://www.dedoimedo.com/computers/kvm-intro.html Using KVM (tutorial)]<br>
[https://libvirt.org/sources/virshcmdref/html-single/ virsh command reference ]<br>
|valign="top" style="padding-left:20px;"|
Miscellaneous<br>
[http://linuxcommand.org/lc3_man_pages/gzip1.html gzip , gunzip]<br>
[http://man7.org/linux/man-pages/man8/ip.8.html ip]<br>
[http://man7.org/linux/man-pages/man1/grep.1.html grep]<br>
[http://man7.org/linux/man-pages/man1/wc.1.html wc]<br>
[http://man7.org/linux/man-pages/man1/pwd.1.html pwd]<br>
[http://man7.org/linux/man-pages/man1/ls.1.html ls]<br>
[http://man7.org/linux/man-pages/man1/more.1.html more]<br>
[http://man7.org/linux/man-pages/man1/file.1.html file]<br>
[http://man7.org/linux/man-pages/man1/wget.1.html wget]<br>
[http://man7.org/linux/man-pages/man1/chmod.1.html chmod]<br>
[http://ss64.com/vi.html vi]
|valign="top" style="padding-left:20px;"|Matrix Online Tutorials:<br><ul><li>Shell Scripting - Part 2 (Logic & Math Expressions):<br>'''/home/ops235/scripting-2'''</li><li>Shell Scripting - Part 3 (Loops)<br>'''/home/ops235/scripting-3'''</li></ul>
|}
=INVESTIGATION 1: SETUP FOR NESTED VIRTUAL MACHINES=
===Part 1: Install KVM Virtualization Application===
We will now install the KVM package in order to create our remaining "nested" VMs. We will also be starting several services (including iptables) and disabling the firewalld service. We will learn more about managing firewalls using iptables in lab6.
:'''Perform the following steps:'''
# Log into your c7host machine.
# perform a software update on your '''c7host''' VM by issuing the following command: <b><code><span style="color:#3366CC;font-size:1.2em;">sudo yum update</span></code></b>
{{Admon/important |Yum Update Hangs|If you experience yum update "hanging" around item 689 of over 1200 packages, issue the following commands <b>(in a new terminal!)</b>:<br><source>sudo pkill systemctl
sudo yum clean all
sudo yum update
</source>'''NOTE:''' Do NOT press '''<ctrl>c''' since it may cause your machine to cause a kernel panic when you restart your machine.}}
<ol><li value="3">Using elevated privileges, install the virtualization software by issuing the command:<br><b><code><span style="color:#3366CC;font-size:1.2em;">sudo yum install qemu-kvm qemu-img virt-manager libvirt libvirt-python \<br>libvirt-client virt-install virt-viewer bridge-utils</span></code></b> <br><br></li>
<li>'''Restart your c7host virtual machine'''. If you fail to do this, you may experience virtualization network problems.
{| width="40%" align="right" cellpadding="10"
|- valign="top"
|
{{Admon/note|About KVM|There are actually several key programs installed for virtualization using KVM:<ul><li>'''kvm/qemu''' - the hypervisor and other hardware emulation systems.</li><li>A system service named '''libvirtd''' that manages the VMs.</li><li>A graphical tool for managing virtual machines ('''virt-manager''') and the '''virsh''' command-line tool.</li></ul>}}
|}
</li><li>Start the virtualization service: <b><code><span style="color:#3366CC;font-size:1.2em;">sudo systemctl start libvirtd</span></code></b><br><br>'''NOTE:''' The most recent variants of CentOS and Fedora are using a service called '''firewalld''' that replaces '''iptables''', however the ''iptables'' service is still in relatively common usage and knowing how to use it also works with firewalld. In this course we will concentrate on ''iptables''.<br><br></li>
<li>To disable and remove firewalld, issue the following commands:<br>
<b><code><span style="color:#3366CC;font-size:1.2em;">sudo systemctl disable firewalld</span></code></b><br>
<b><code><span style="color:#3366CC;font-size:1.2em;">sudo systemctl stop firewalld</span></code></b><br>
<b><code><span style="color:#3366CC;font-size:1.2em;">sudo yum remove firewalld</span></code></b><br>
<br></li>
<li>To install and enable the IPTables services, issue the following commands:<br>
<b><code><span style="color:#3366CC;font-size:1.2em;">sudo yum install iptables-services</span></code></b><br>
<b><code><span style="color:#3366CC;font-size:1.2em;">sudo systemctl enable iptables</span></code></b><br>
<b><code><span style="color:#3366CC;font-size:1.2em;">sudo systemctl start iptables</span></code></b><br><br>
</li>
</ol>
{{Admon/important|Run virt-manager as a regular user, not as root|Otherwise all your virtual machines will be owned by root and you won't be able to use them as a regular user.}}
<ol>
<li value="8">Start the graphical tool by selecting the menu options '''Applications'''>'''System Tools'''>'''Virtual Machine Manager''' or by typing the command <b><code><span style="color:#3366CC;font-size:1.2em;">virt-manager</span></code></b> (without sudo!)</li>
<li>You will be learning in the next investigation to perform several different types of CentOS Linux installs.</li>
</ol>
===Part 2: Configure VMware Workstation for Nested VMs ===
Although we are using VMware Workstation to run our c7host VM, we will now install and configure another virtualization package called KVM in order to install the remaining VMs for this course.
Since we are "nesting" VMs (i.e. running a VM inside another VM) we need to configure our c7host's Linux boot-up parameters in order to allow these VMs to run efficiently.
:'''Perform the following steps:'''
# In a terminal use elavated privileges to edit the file called: '''/boot/efi/EFI/centos/grub.cfg'''<ul><li>'''If this file doesn't exist, double-check your UEFI settings in VMWare Workstation for c7host. If BIOS is selected, <u>you MUST redo Lab 1</u>.'''</li></ul>
# Search for the <b>first occurrence</b> of the Linux Kernel boot command. Do not make the following changes on more than one entry!
# Insert the boot option: '''kvm-intel.nested=1''' (for AMD processors '''kvm-amd.nested=1''') at the end of the Linux kernel boot options.
<ol>
{{Admon/important|About the reference settings shown below|
* Only '''ONE''' of these settings might be applicable.
* Enter '''JUST''' the text highlighted in '''BLUE''' as your kernel version, root, and LVM settings might vary slightly.}}
</ol>
<blockquote><code style="font-family:courier;font-size:1.2em;margin-left:20px;">
<br>linuxefi /vmlinuz-3.10.0-1062.1.2.el7.x86_64 root=/dev/mapper/centos_c7host-root ro crashkernel=auto rd.lvm.lv=centos_c7host/root rd.lvm.lv=centos_c7host/swap rhgb quiet LANG=en_CA.UTF-8 <span style="color:blue;font-weight:bold">kvm-intel.nested=1</span>
<br> initrdefi /initramfs-3.10.0-1062.1.2.el7.x86_64.img
</code></blockquote>
<span style="color:red;font-weight:bold">OR</span>
<blockquote><code style="font-family:courier;font-size:1.2em;margin-left:20px;">
<br>
linuxefi /boot/vmlinuz-3.10.0-1062.el7.x86_64 root=/dev/mapper/centos_c7host-root ro crashkernel=auto rd.lvm.lv=centos_c7host/root rd.lvm.lv=centos_c7host/swap rhgb quiet LANG=en_CA.UTF-8 <span style="color:blue;font-weight:bold">kvm-intel.nested=1</span><br>initrdefi /boot/initramfs-3.10.0-1062.el7.x86_64.img
</code></blockquote>
<ol><li value="4">Save your editing changes, close the virtual machine application, and <u>'''reboot'''</u> your c7host VM.</li>
<li>If you configured your c7host VM for nested VMs, then you should get the output <b><code><span style="color:#3366CC;font-size:1.2em;">Y</span></code></b> when you issue the following command:<br><b><code><span style="color:#3366CC;font-size:1.2em;">cat /sys/module/kvm_intel/parameters/nested</span></code></b></li><ul><li>For '''AMD''' processors, check the /sys/module/'''kvm_amd'''/parameters/nested file. You should get the output <b><code><span style="color:#3366CC;font-size:1.2em;">1</span></code></b></li></ul>
<ul><li>And if kvm_intel directory doesn't exist, double-check your '''Processors => Virtualization Engine (Intel VT-x/EPT...)''' settings in VMWare Workstation.</li></ul>
</ol>
'''Answer the INVESTIGATION 1 observations / questions in your lab log book.'''
=INVESTIGATION 2: INSTALL NESTED VIRTUAL MACHINES (KVM)=
{|width="50%" cellspacing="0"
|- valign="top"
|{{Admon/important|Keep the root password the same for Host and VMs|In order to simplify running the lab checking scripts in future labs, using the same root password for ALL machines (c7host and virtual machines). Also use the same username and passwords for all of your machines (c7host and virtual machines).}}<br><br>
|}
=== Part 1: Installing VM from a Network (Graphical)===
:'''VM Details:'''
:: '''VM Name (and hostname):''' centos1
:: '''Boot media:''' Network installation
:: '''CentOS Full Network Install URL:'''
:::*Seneca Lab: http://mirror.senecacollege.ca/centos/7/os/x86_64/ ('''NOTE: requires VPN''')
:::*Home: http://mirror.netflash.net/centos/7/os/x86_64/
:: '''VM Image Pathname:''' /var/lib/libvirt/images/centos1.qcow2
:: '''Memory:''' 2048MB
:: '''Disk space:''' 15GB
:: '''CPUs:''' 2
[[Image:Kvm-warning.jpg|thumb|right|400px|You may see this warning when creating your first VM inside CentOS. Select''' ''Don't ask me about these directories again'' '''and click''' ''Yes'''''.]]
:'''Perform the following steps:'''
# Launch the ''KVM virtual machine manager'' by clicking '''Applications''' -> '''System Tools''' -> '''Virtual Machine Manager'''.
# When prompted, enter your password.
# Click the '''create a new VM icon''' located near the top left-corner of the application window.
# Select the '''Network Install''' option and click '''Forward'''.
# Enter (copy and paste) the URL located at the top of this section (depending whether you are at Seneca College or not) and click '''Forward'''.
# Set RAM size to 2048 MB and CPUs to 2, then click '''Forward'''.
# Set Hard Disk size to 15GB and click '''Forward'''.
# <span style="background-color:yellow;">Enter the name: '''centos1''', <u>AND</u> then select the option: '''Customize configuration before install''', and click '''Finish'''.</span>
# <span style="background-color:yellow;">Another dialog will appear. Click '''CPUs''' (or "processors") and on right-side under Configuration select '''Copy Host CPU Configuration''', click '''Apply''', and then click '''Begin Installation''' at the top left-hand side.</span>
#<span style="background-color:yellow;">During the install, select '''Gnome Desktop''' (software selection). For partitioning, select '''I will configure partitions''' settings, click done, then select '''Click here to create them automatically'''. Set the / partition for '''ext4''' file-system type, and click '''Done'''.</span>
#<span style="background-color:yellow;">Set the correct '''Date and Time Zone''', and then click on '''Network and Hostname'''. The network should be turned '''ON'''. For hostname, enter: '''centos1''' and then click '''Done'''.</span>
# <span style="background-color:yellow;">Make sure that when you create your regular user account you check the box to make them an administrator.</span>
# <span style="background-color:yellow;">Complete the installation. Login to your regular user account, and perform a '''sudo yum update''' for the centos1 VM (reboot if required). Make certain to adjust your screen-saver settings if desired.</span>
<br>
{{Admon/important|Use same root password / regular username / regular user passwords for c7host and ALL VMs|To simplify the lab checking process make certain that you use the identical root password, regular username, and regular username password for VMs that you create in this labs as you did for c7host machine in lab1.<br><br>}}
<br>
<ol><li value="14"><span style="background-color:yellow;">Repeat the steps as you did in the previous investigation ([https://wiki.cdot.senecacollege.ca/wiki/OPS245_Lab_2#Part_1:_Install_KVM_Virtualization_Application Investigation1 Part 1]) to '''stop, disable and remove firewalld, install iptables-services, start and enable iptables''' for this newly-created VM.</span></li>
<li><span style="background-color:yellow;">Repeat the steps as you did with c7host post-install to '''turn off (permissive) SELinux''' and perform a '''yum update'''.</span></li>
<li>Issue the following command to obtain the IPADDR for your centos1 VM to record in your lab2 logbook: <b><code><span style="color:#3366CC;font-size:1.2em;">ip address show</span></code></b></li>
<li>Record the time taken to install, and compare this to the time taken by the previous installations in your lab2 logbook.</li>
</ol>
=== Part 2: Installing from a Network (Minimal install - CLI) ===
:'''VM Details:'''
:: '''VM Name (and hostname):''' centos2
:: '''Boot media:''' Network installation
:: '''CentOS Full Network Install URL:'''
:::*Seneca Lab: http://mirror.senecacollege.ca/centos/7/os/x86_64/ ('''NOTE: requires VPN''')
:::*Home: http://mirror.netflash.net/centos/7/os/x86_64/
:: '''VM Image Pathname:''' /var/lib/libvirt/images/centos2.qcow2
:: '''Memory:''' 2048MB
:: '''Disk space:''' 20GB
:: '''CPUs:''' 1
:'''Perform the following steps:'''
# Create the VM (called '''centos2''') as you did with the ''centos1'' machine.
# Make certain to enter the name: '''centos2''', <u>AND</u> then select the option: '''Customize configuration before install''', and select '''Copy Host CPU Configuration''', click '''Apply''', and then click '''Begin Installation'''.
#When selecting the install options for centos2, do the same operation that you did in centos1 (but with '''Minimal Install''' software selection instead), but after '''automatically creating the partitions''', reduce the size of the root logical volume to '''8 GiB''' and add a logical volume with a size of '''2 GiB''' (mount point: '''/home''', name: '''home''', and make certain root and /home logical volumes have '''ext4''' file system).<br><br>
# <span style="background-color:yellow;">Complete the installation. Login to your regular user account.</span>
# <span style="background-color:yellow;">Repeat the steps as you did in the previous investigation ([https://wiki.cdot.senecacollege.ca/wiki/OPS245_Lab_2#Part_1:_Install_KVM_Virtualization_Application Investigation1 Part 1]) to '''stop and disable firewalld, install iptables-services, start and enable iptables''' for this newly-created VM.</span>
# <span style="background-color:yellow;">Repeat the steps as you did with c7host post-install to '''turn off (permissive) SELinux''' (using the command 'vi' instead of 'vim') and perform a '''yum update'''.</span>
# Issue the following command to obtain and record your centos2 IPADDR in your lab2 logbook: <b><code><span style="color:#3366CC;font-size:1.2em;">ip address show</span></code></b>
# Record the time taken to install, and compare this to the time taken by the previous installations in your lab2 logbook.
=== Part 3: Installing from a Network using a Kickstart File ===
{| width="40%" align="right" cellpadding="10"
|- valign="top"
|colspan="2"|{{Admon/important|Using a Kickstart file with a local install|Under most circumstances, a network install would be drawing the installation data from a server in the local network, allowing it to transmit data at higher speeds than we can achieve over the internet. If your download speed is slow enough that network installs are failing, it is acceptable to install these VMs from local media. However, you will still need to provide a kickstart file to Centos3. <br /><br />To do so, start the install process as normal for an installation from an iso file, but when presented with the menu giving you the option to 'Install CentOS 7' or 'Test this media & install CentOS 7', highlight 'Install CentOS7' and press '''<tab>'''. This will open a prompt at the bottom of the window for you to enter grub configuration options. Type '''inst.ks=https://raw.githubusercontent.com/OPS245/labs/main/centos7-kickstart.cfg''' and hit '''<enter>'''.}}
|}
:'''VM Details:'''
:: '''VM Name (and hostname):''' centos3
:: '''Boot media:''' Network installation
:: '''CentOS 7 Full Install Network URL:'''
:::*Seneca Lab: https://mirror.senecacollege.ca/centos/7/os/x86_64/
:::*Home: http://mirror.netflash.net/centos/7/os/x86_64/
:: '''Kickstart File URL (Kernel options): '''
:::* Home:''' <span style="color:green;font-weight:bold">ks=</span>https://raw.githubusercontent.com/OPS245/labs/main/centos7-kickstart.cfg
:: '''VM Image Pathname:''' /var/lib/libvirt/images/centos3.qcow2
:: '''Memory:''' 2048MB ('''IMPORTANT''' Do not use less than 2048MB during installation.)
:: '''Disk space:''' 15GB
:: '''CPUs:''' 2
<br>
{{Admon/important|Include ''ks='' in the URL options field!|When using a kickstart file, make sure you include the''' ''ks='' '''portion of the link. If done correctly, you should not be able to select partitions or any other settings.}}
<br>
:'''Perform the following steps:'''
# Create the VM (called '''centos3''')
# During the install, copy the network URL, then click the '''URL options''' to expand the '''kernel options''' input textbox. Type the following in the kernel options textbox: <ul><li><span style="color:green;font-weight:bold">ks=</span>https://raw.githubusercontent.com/OPS245/labs/main/centos7-kickstart.cfg</li></ul>
# Then click the '''forward''' button to proceed. Make certain to select the correct Memory Size and Disk Space size shown in the VM Details above
# Make certain to enter the name: '''centos3''', <u>AND</u> then select the option: '''Customize configuration before install''', and select '''Copy Host CPU Configuration''', click '''Apply''', and then click '''Begin Installation'''.
# Observe the installation. How is it different from booting from a downloaded image?
# Record the time taken to install, and compare this to the time taken by the previous installations.<br><br>If during the installation, you see the message at the bottom '''Pane is Dead''', click the '''Virtual Machine''' menu at the top, select '''Shut Down''' -> '''Force Off''', '''right-click''' on '''centos3''' in the ''virtual manager'' window and select '''Delete'''. Redo the VM setup for a new instance of the ''centos3'' VM.<br><br>
# What happens when the installation is finished?
# '''In a web browser''', click the kickstart (KS) link above. This link is a text file. Read through it to find the following information (pay attention to lines starting with #) and record it in your Lab Logbook:<ul><li>'''Regular-user account name'''</li><li>'''Regular-user account password'''</li><li>'''Root Password'''</li></ul>
# Boot the virtual machine and log in (use the user ID and password information from the previous step to gain access to this VM).
# Compare the experience to the first time you booted the other virtual machines.
# <span style="background-color:yellow;">Repeat the steps as you did in the previous investigation ([https://wiki.cdot.senecacollege.ca/wiki/OPS245_Lab_2#Part_1:_Install_KVM_Virtualization_Application Investigation1 Part 1]) to '''stop and disable firewalld, install iptables-services, start and enable iptables''' for this newly-created VM.</span>
# <span style="background-color:yellow;">Repeat the steps as you did with c7host post-install to '''turn off SELinux''' and perform a '''yum update'''.</span><br />
:::You'll notice something when you go to set '''SElinux''' to '''permissive'''. The kickstart file already did that for you. It could even have performed the switch from firewalld to iptables for you (but it didn't).
# Issue the following command to obtain and record your centos2 IPADDR in your lab2 logbook: <b><code><span style="color:#3366CC;font-size:1.2em;">ip address</span></code></b>
# Remember that centos3 is text-based interface only (no graphics). To recover from a blank screen, press a key (like the SPACE key) to return to the screen display.
# Record the time taken to install, and compare this to the time taken by the previous installations in your lab2 logbook.
'''Answer the INVESTIGATION 2 observations / questions in your lab log book.'''
=INVESTIGATION 3: MANAGING VIRTUAL MACHINES (KVM)=
{{Admon/important |Root Privileges|As part of this investigation you will learn how to switch over to the root account in order to run several privileged commands in sequence. It can be tempting to just use this technique all the time, and never have to worrry about sudo, but do '''not''' do so. It undermines the security of your system. Use it only when you need it. }}
{| width="40%" align="right" cellpadding="10"
|- valign="top"
|colspan="2"|{{Admon/important|Backing up VMs|There are two general processes in order to back up your images:<ol><li>'''Compressing your images''' (also recommended to backup up to external storage USB Key) using the '''gzip''' command.</li><li>'''Backup the VM xml configuration file''' (preferably to USB key) using '''virsh''' shell command to add VM to virtual machine manager list (in the event that the HOST machine is "wiped" and re-installed, but VM images and xml configuration files have been backed up external storage).</li></ol><br />Taking the time to backup the image of the Operating System's file system allows the user to return to a '''"restoration point"''' using the '''gunzip''' command in case something bad occurs to the OS during a lab.<br />Failure to take the time to make and confirm backups can result in loss of lab work for the student!|}}
|}
=== Part 1: Backing Up Virtual Machines ===
:'''Perform the following steps:'''
# Shut down your '''centos1''', '''centos2''', and '''centos3''' VMs. For ''centos2'' and ''centos3'', which are CLI-only, you can issue the following command to shutdown: <b><code><span style="color:#3366CC;font-size:1.2em;">poweroff</span></code></b>. Please be patient, the VMs will shut down!
# In your '''c7host''' VM, open a new Terminal window.
# Use elevated privileges to list the size and names of files in<b><code><span style="color:#3366CC;font-size:1.2em;">/var/lib/libvirt/images/</span></code></b><ul><li>What do these files contain?</li></ul>
# Use the command <b><code><span style="color:#3366CC;font-size:1.2em;">sudo -i</span></code></b> and enter your password if prompted. You are now root until you use the command '''exit''' to return to your normal user account.
# Change to the images directory by issuing the following command: <b><code><span style="color:#3366CC;font-size:1.2em;"> cd /var/lib/libvirt/images/</span></code></b>. Note that you did not need to use sudo, as you are already using elevated permissions.
# Make a compressed backup of your '''centos1.qcow2''', '''centos2.qcow2''', and '''centos3.qcow2''' files to your regular user's home directory by issuing each command - one at a time (create '''backups''' directory '''within your regular user's home directory''' before running these commands):<br><b><code><span style="color:#3366CC;font-size:1.2em;">gzip < centos1.qcow2 > ~YourRegularUsername/backups/centos1.qcow2.gz</span></code></b><br><b><code><span style="color:#3366CC;font-size:1.2em;">gzip < centos2.qcow2 > ~YourRegularUsername/backups/centos2.qcow2.gz</span></code></b><br><b><code><span style="color:#3366CC;font-size:1.2em;">gzip < centos3.qcow2 > ~YourRegularUsername/backups/centos3.qcow2.gz</span></code></b><ul>'''NOTE:''' Make certain to use the redirection signs "<" and ">" properly in the command!</ul>
{{Admon/important |Please be patient|It may look like the command prompt is stuck but it could take a while for gzip to compress an entire operating system. '''NOTE:''' Do NOT press '''<ctrl>c''' to cancel this process. If you do, your archive will become incomplete and your recovery will be corrupt.}}
<ol><li value="7"> Compare the size of the compressed and original files (hint: use '''ls -lh'''). If file is very large (like 15GB), you didn't compress it and you need to remove that file and perform the previous step until you get it right!</li>
<li>Once you are '''sure you have all three VMs backed up''', use the <b><code><span style="color:#3366CC;font-size:1.2em;">exit</span></code></b> command to revert back to your normal user.</li>
<li> Start the '''''centos3''''' VM.</li>
<li> '''Make certain that you are in your VM and <u>not</u> in your main system!''' </li>
<li> Wreck <u>only</u> your centos3 system! Try this command inside the centos3 virtual machine:<b><code><span style="color:#3366CC;font-size:1.2em;">sudo rm -rf /*</span></code></b> (ignore error messages).</li>
<li> Shut down and restart the centos3 VM (you may need to use the '''Force Reset''' option to do so).</lI>
<li> When the machine restarts it will not boot since all system files have been removed!</li>
<li> Use the '''Force Off''' option to turn centos3 back off.</li>
<li> Restore the original image from the backup from your home directory to your '''images''' directory by typing <b><code><span style="color:#3366CC;font-size:1.2em;">sudo -i</span></code></b> command first [do not forget to '''exit''' when you are done], then this command:<br><b><code><span style="color:#3366CC;font-size:1.2em;">gunzip < ~YourRegularUsername/backups/centos3.qcow2.gz > /var/lib/libvirt/images/centos3.qcow2'''</span></code></b></li>
<li> Restart the VM. Is it working normally?</li>
<li> You should also make a copy of the XML configuration file for each VM in case you "wipe" and re-install the host machine, and want to add a restored VM backups to the virtual machine manager list. We will demonstrate using the centos3 XML configuration file, and prove that a "clone" can be added to your list.Please perform the following step:</li>
<li> Execute the following command: <b><code><span style="color:#3366CC;font-size:1.2em;">sudo virsh dumpxml centos3 > centos3.xml</span></code></b></li>
<li> Examine the file <b><code><span style="color:#3366CC;font-size:1.2em;">centos3.xml</span></code></b>. What does it contain? What format is it in?<br></li></ol>
=== Part 2: Restoring Virtual Machines ===
[[Image:Cinnamon-2-245.png|thumb|right|500px|Click on the cog icon to select different installed desktop environments.]]
# We will now learn how to download a compressed image file and XML configuration file and add it as a VM to the Virtual Machine Manager menu.
# Issue the following commands:<ul><li><b><code><span style="color:#3366CC;font-size:1.2em;">wget https://matrix.senecacollege.ca/~ops245/centos4.qcow2.gz</span></code></b></li><li><b><code><span style="color:#3366CC;font-size:1.2em;">wget https://matrix.senecacollege.ca/~ops245/centos4.xml</span></code></b></li></ul>
# Use gunzip with elevated privileges to decompress the qcow2 image file into the '''/var/lib/libvirt/images''' directory.
# Issue the command: <b><code><span style="color:#3366CC;font-size:1.2em;">sudo virsh define centos4.xml</span></code></b>
# What happened in the virtual manager window? In order to remove a VM entry in the Virtual Manager window, simply issue the command '''virsh undefine VM_name''' without the '''.xml''' file extension
# Start up your new centos4 VM.
# Click on the user <i>OPS245</i>, and click the cog icon.
# Notice <i>Cinnamon (Software Rendering)</i> is selected. The Cinnamon desktop environment has been installed on this VM. From this menu, you can select other installed desktop environments. This is how you switch between them. Write it down.
# Login with the password <b><i>ops245</i></b>. Feel free to explore the new environment.
# Prior to your practical test, you will be required to perform a similar operation to download, unzip and run a VM image for your practical test.<br>
{{Admon/important|Shutting Down the Host while Virtual Machines are Running|If you shut down your host system while virtual machines are running, they will be suspended, and will resume the next time you boot your host system. Note that it is better to shut down the VMs prior to shutting down the host}}<ol><li value="12">For the remainder of these labs, it is assumed that you will backup <u>'''both'''</u> the images and XML configuration files for <u>'''all'''</u> Virtual machines, when asked to backup your virtual machines. It is also highly recommended to backup these files to an external storage device (eg. USB key) in case the host machine gets "wiped" and you need to rebuild your HOST machine and then restore your Virtual Machines...</li>
<li>Answer this question in your log book:</li>
</ol>
::* In order to fully back up a virtual machine, what information should be saved in addition to the virtual machine image?
=== Part 3: Using the Command Line for VM State Management===
{|width="40%" align="right" cellpadding="10"
|- valign="top"
|
{{Admon/tip|Bash Shell Tips:|<br>'''<u>Data Input</u>'''<br><ul><li>A shell can obtain data from a number of methods: '''reading input files''', using '''arguments when issuing command''' (positional parameters), or '''prompting for data to store in a variable'''. The later method can be accomplished by using the '''read''' command.<br><br></li><li>Example:<br><br>''read -p "Enter your name: " userName''.<br><br></li></ul>'''<u>Mathematical Expressions</u>'''<br><ul><li>In the bash shell, data is stored in variable as text, not other data types (ints, floats, chars, etc) like in compiled programs like C or Java. In order to have a shell perform '''mathematical operations''', number or variable need to be surrounded by two sets of parenthesis '''((..))''' in order to convert a number stored as text to a binary number.<br><br></li><li>Examples<br><br>''var1=5;var2=10''<br>''echo "$var1 + $var2 = $((var1+var2))"''<br><br>'''Note:''' shell does not perform floating point calculations (like '''5/10'''). Instead, other commands like '''awk''' or '''bc''' would be required for floating point calculations (decimals)<br><br></li></ul>}}
|}
You will continue our use of the Bash Shell by examining commands will allow the Linux sysadmin to gather information about and manage their Virtual Machines.
:'''Perform the following steps:'''
# Start the '''centos1''' virtual machine, and stop the '''centos2''' and '''centos3''' virtual machines.
# Switch to the '''c7host''' machine, and open a shell terminal.
# Enter these admin commands into your '''c7host''' machine and note the result:
:: <b><code><span style="color:#3366CC;font-size:1.2em;">sudo virsh list</span></code></b>
:: <b><code><span style="color:#3366CC;font-size:1.2em;">sudo virsh list --all</span></code></b>
:: <b><code><span style="color:#3366CC;font-size:1.2em;">sudo virsh list --inactive</span></code></b>
<ol><li value="4">Now, shut-down your centos1 VM normally, and close the centos1 VM window.</li><li>Switch to your terminal and issue the command: <b><code><span style="color:#3366CC;font-size:1.2em;">sudo virsh start centos1</span></code></b></li><li>Using the appropriate command check to see if your centos1 VM is now running.</li><li>There are other commands that can be used (such as '''suspend''', or '''shutdown'''). The "shutdown" command may not always work since it relies on the guest handling a particular ACPI event. Why do you think it is useful to have commands to manipulate VMs?</li></ol>
{{Admon/important|Virtual Machine Does not Shutdown from Command|If the Virtual machine fails to shutdown from the <code>virsh shutdown</code> command, then you can go to the '''Virtual Machine manager''' and '''halt''' or '''shutdown''' within the VM itself, then you can click the '''PowerOff''' button in the VM window. You'll want to avoid a forced shutdown since those are equivalent to yanking the power cord out of the wall on a physical machine!|}}
<br/>
<br/>
<br/>
<br/>
<br/>
<br/>
<br/>
'''Answer INVESTIGATION 3 observations / questions in your lab log book.'''
=INVESTIGATION 4: USING PYTHON TO AUTOMATE MANAGING VIRTUAL MACHINES=
{|width="40%" align="right" cellpadding="10"
|- valign="top"
|
{{Admon/tip|Python Scripting Tips:|<br>'''<u>String Methods</u>'''<br><ul><li>The string data type has a number of methods that we can use on it to get a modified version of the data a string variable holds.</li><li>Note that these don't change the existing string, just return a copy of it with some change. You can store this updated copy in a variable, or use it in a command.</li><li>Some examples include:<ul><li>find() - locates a value (e.g. another string) if it is in this string.</li><li>lower() - convert the entire string to lower-case</li><li>replace() - finds a value in the string, and replaces it with a different value.</li><li>split() - breaks the string up on a value, and returns a list.</li><li>strip() - removes leading and trailing whitespace</li><li>upper() - convert the entire string to upper-case</li></ul></li><li>There are [https://www.w3schools.com/python/python_ref_string.asp many more options] than this, but you will get a lot of utility out of these.</li></ul><br />'''<u>Methods in General</u>'''<br><ul><li>Python is an object oriented programming language. In this course, that won't actually affect us much, but it does change how you run some commands.</li><li>In bash, every command ran on its own (while you might provide the command some arguments, or pipe different data into it). In python, the modules we import, and the types of variables we use can (will) have commands built into them. For example: converting all letters in a string to UPPER CASE).</li><li>While you could write a command in bash that would do that and pass it a variable holding a series of letters as an argument, in python that behaviour (and more) is built into the string type of variable.</li><li>The actions that are built into types are called '''methods'''. To use a method on a variable just add .methodname() to the end of the variable. Instead of getting back the value, you'll get something else (based on what that method does). Suppose we had a variable called course that currently had the value 'ops245'. Course codes are usually written in ALL-CAPS, so instead of just saying print(course), we could say print(course.upper())</li></ul>}}
|}
This week you have added some significant capabilities to your python scripting. The ability to run loops and make decisions makes your scripts much more powerful. In this investigation you will write a python script that backs up the centos1, centos2, and centos3 VMs, or lets the user specify which VMs they want backed up.
<ol>
<li>In your '''bin''' directory, create the file '''backupVM.py''', and populate with our standard beginning
<code style="color:#3366CC;font-family:courier;font-size:.9em;">
<br>
#!/usr/bin/env python3<br />
# backupVM.py<br />
# Purpose: Backs up virtual machines<br />
#<br />
# USAGE: ./backupVM.py<br />
#<br />
# Author: *** INSERT YOUR NAME ***<br />
# Date: *** CURRENT DATE ***<br />
import os<br />
currentuser = os.popen('whoami')<br />
if currentuser.read() != 'root':<br />
print("You must be root")<br />
exit()<br />
else:<br />
print('Backing up centos1')<br />
os.system('gzip < /var/lib/libvirt/images/centos1.qcow2 > ~YourRegularUsername/backups/centos1.qcow2.gz')<br />
print('Backing up centos2')<br />
os.system('gzip < /var/lib/libvirt/images/centos2.qcow2 > ~YourRegularUsername/backups/centos2.qcow2.gz')<br />
print('Backing up centos3')<br />
os.system('gzip < /var/lib/libvirt/images/centos3.qcow2 > ~YourRegularUsername/backups/centos3.qcow2.gz')<br />
</code>
</li>
<li>Try to run that script. You'll notice it does not work. No matter what you do, it always says you are not root.</li>
<li>Modify the print statement that tells the user they must be root to also include the current username, then run the program again.</li>
<li>It should print out root, but with an extra new-line. You may have noticed this in your other python scripts so far: the data we get from os.popen() has an extra new-line on the end. We will need to modify the string(s) it gives us a bit. See the side-bar for hints on how to do so.</li>
<li>Modify the if statement so it is just getting the current username, not the username and a newline. You can do this using several steps and several variables, but it can also be done in a single line.</li>
<li>Test your script to make sure it works. If it doesn't, go back and fix it. '''Do not continue until it successfully makes backups of your VMs'''.</li>
<li>There is a weakness to this script as written. Every time you run it, it will make a backup of all three VMs. But what if you only made a change to one of them? Do we really need to wait through a full backup cycle for two machines that didn't change? As the script is currently written, we do. But we can make it better. We've provided the scripts with some comments below.</li>
<li><code style="color:#3366CC;font-family:courier;font-size:.9em;">
#!/usr/bin/env python3<br />
# backupVM.py<br />
# Purpose: Backs up virtual machines<br />
#<br />
# USAGE: ./backupVM.py<br />
#<br />
# Author: *** INSERT YOUR NAME ***<br />
# Date: *** CURRENT DATE ***<br />
import os<br />
<br />
#Make sure script is being run with elevated permissions<br />
currentuser = os.popen('whoami').read().strip()<br />
if currentuser != 'root':<br />
print("You must be root")<br />
exit()<br />
else<br />
<br />
#The rest of this script identifies steps with comments 'Step <something>'.<br />
#This is not a normal standard for commenting, it has been done here to link the script<br />
# to the instructions on the wiki.<br />
<br />
#Step A: Find out if user wants to back up all VMs<br />
#Step B-1:use the existing loop to back up all the VMs<br />
print('Backing up centos1')<br />
os.system('gzip < /var/lib/libvirt/images/centos1.qcow2 > ~YourRegularUsername/backups/centos1.qcow2.gz')<br />
print('Backing up centos2')<br />
os.system('gzip < /var/lib/libvirt/images/centos2.qcow2 > ~YourRegularUsername/backups/centos2.qcow2.gz')<br />
print('Backing up centos3')<br />
os.system('gzip < /var/lib/libvirt/images/centos3.qcow2 > ~YourRegularUsername/backups/centos3.qcow2.gz')<br />
#Step B-2: They don't want to back up all VMs, prompt them for which VM they want to back up<br />
#Step C: Prompt the user for the name of the VM they want to back up<br />
#Step C-1: If the user chose Centos1, back up that machine.<br />
#Step C-2: If the user chose Centos2, back up that machine.<br />
#Step C-3: If the user chose Centos3, back up that machine.<br />
</code></li>
<li>Before the block that backs up each machine add a prompt to ask the user if they want to back up all machines. Use an if statement to check if they said yes (See comment 'Step A').
<ul><li>if they did say yes, back up all the VMs using your existing block (Comment step B-1).</li><li>If they didn't say yes, do nothing for now (you could even use python's pass statement).</li></ul></li>
<li>Test your script to make sure it works. Check what happens if you say 'yes' to the prompt, and check what happens if you say things other than 'yes'.</li>
<li>Now we have a script that asks the user if they want to back up all VMS, and if they say they do, it does. But if they don't want to back up every VM, it currently does nothing.</li>
<li>Add an else statement at comment Step B-2 to handle the user not wanting to back up every VM. Inside that else clause (Comment step C) ask the user which VM they would like to back up (you can even give them the names of available VMs (Centos1, Centos2, Centos3).</li>
<li>Now nest an if statement inside that else (Comments C-1, C-2, and C-3) so that your script can handle what your user just responded with. If they asked for Centos1, back up Centos1. If they want to back up Centos2, only back up Centos2, etc. Hint: You might want to use elif for this.</li>
<li>Test your script again. You should now have a script that:<ul><li>Makes sure the user is running the script with elevated permissions.</li><li>Asks the user if they want to back up every VM.</li><li>If they want to back up every VM, it backs up every VM.</li><li>If the user does not want to back up every VM, the script asks them which VM they do want to back up.</li><li>If the user selected a single VM, the script will back up that one VM.</li>
<li>Now you may notice another issue with the script: The gzip lines are almost identical. The only difference in them is the name of the VM file being backed up. In the portion of code where you back up each machine individually (comment steps C-1, C-2, and C-3) try replacing the machine name in the gzip command with a string variable that holds the machine's name instead. Note that you will have to make us of string concatenation for this to work correctly.</li></ul></li>
</ol>
= LAB 2 SIGN-OFF (SHOW INSTRUCTOR) =
Follow the submission instructions for lab 2 on Blackboard.
{{Admon/important|Backup ALL of your VMs!|If you have successfully completed this lab, make a new backup of all of your virtual machines onto your USB Key.}}
:'''Perform the Following Steps:'''
# Use the '''virsh start''' command to launch all the VMs ('''centos1''', '''centos2''', and '''centos3''').
# Inside each virtual machine, run <b><code>ip a</code></b> on the command line. Open a Terminal window in centos1 to do so. You'll need the IP address of each machine for the next steps.
# Switch to your '''c7host''' VM, open a terminal, login as root, and change directory to '''/root/bin'''.
# Issue the Linux command: <b><code><span style="color:#3366CC;font-size:1.2em;">wget https://raw.githubusercontent.com/OPS245/labs/main/lab2-check.bash</span></code></b>
# Give the '''lab2-check.bash''' file execute permissions (for the file owner).
# Run the shell script and if any warnings, make fixes and re-run shell script until you receive "congratulations" message.
#Arrange proof of the following on the screen:
::✓ '''<u>All</u> VMs''':<blockquote><ul><li>All 4 nested VMs '''created''' and '''running'''</li><li> Proof of '''yum updates''' on ALL VMs (i.e. results from '''yum update''' command)</li></ul></blockquote>
::<span style="color:green;font-size:1.5em;">✓</span>'''c7host VM''':<blockquote><ul><li>Run the '''lab2-check.bash''' script in front of your instructor (must have all <b><code><span style="color:#66cc00;border:thin solid black;font-size:1.2em;"> OK </span></code></b> messages)</li></ul></blockquote>
::<span style="color:green;font-size:1.5em;">✓</span> Lab2 logbook notes completed.
#Upload a screenshot of the proof listed above, the output file generated by the lab2-check.bash script, your log book, and your backupVM.py to blackboard.
= Practice For Quizzes, Tests, Midterm & Final Exam =
# What is the name of the CentOS installation program?
# What is the name of the file created by the CentOS installation program?
# Which type of installation works best for confirming compatibility with hardware before installation? Why?
# Which type of installation works best for installing large numbers of computers? Why?
# How can you reduce the number of software updates required immediately after installation?
# How do you start and stop virtual machines?
# How do you SSH into your virtual machines?
# List the steps to install a VM from:<ul><li>Downloaded iso file</li><li>Network install (without kickstart file)</li><li>Network install (with kickstart file)</li></ul>
# What is the purpose of the virsh command?
# How to start and stop VMs using the virsh command?
# List the steps to correctly backup your VMs to a USB disk
# List the steps to correctly restore your VMs from a USB disk to your c7host VM.
# How can you prompt the user for data and store into a variable?
# Show a few examples how loops can be used to error-check when prompting the user for data.
# What does the command '''rpm -qi centos-release''' do and why is it important?
# What is the difference between '''rpm -q centos-release''' and '''uname -a'''?
[[Category:OPS245]]
[[Category:OPS245 Labs]]
[[Category:Digital Classroom]]