Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #!/bin/bash
- packages="systemd systemd-sysvcompat filesystem coreutils kmod procps psmisc pacman bash cronie iproute2 iputils inetutils dhcpcd dnsutils nano grep less gawk sed tar gzip which util-linux"
- rootfs=/srv/lxc/testlxc
- mkdir -p "${rootfs}"
- pacstrap -dc "${rootfs}" ${packages}
- cat > /tmp/testlxc.conf << EOF
- lxc.utsname=test
- lxc.autodev=1
- lxc.tty=1
- lxc.pts=1024
- lxc.cap.drop=sys_module mac_admin mac_override sys_time
- lxc.kmsg=0
- lxc.stopsignal=SIGRTMIN+4
- #networking
- lxc.network.type=veth
- lxc.network.link=br0
- lxc.network.name=eth0
- lxc.network.mtu=1500
- #cgroups
- lxc.cgroup.devices.deny = a
- lxc.cgroup.devices.allow = c *:* m
- lxc.cgroup.devices.allow = b *:* m
- lxc.cgroup.devices.allow = c 1:3 rwm
- lxc.cgroup.devices.allow = c 1:5 rwm
- lxc.cgroup.devices.allow = c 1:7 rwm
- lxc.cgroup.devices.allow = c 1:8 rwm
- lxc.cgroup.devices.allow = c 1:9 rwm
- lxc.cgroup.devices.allow = c 4:1 rwm
- lxc.cgroup.devices.allow = c 5:0 rwm
- lxc.cgroup.devices.allow = c 5:1 rwm
- lxc.cgroup.devices.allow = c 5:2 rwm
- lxc.cgroup.devices.allow = c 136:* rwm
- lxc.rootfs = /srv/lxc/testlxc
- EOF
- ln -s /dev/null "${rootfs}"/etc/systemd/system/systemd-udevd.service
- ln -s /dev/null "${rootfs}"/etc/systemd/system/systemd-udevd-control.socket
- ln -s /dev/null "${rootfs}"/etc/systemd/system/systemd-udevd-kernel.socket
- ln -s /dev/null "${rootfs}"/etc/systemd/system/proc-sys-fs-binfmt_misc.automount
- ln -s /usr/lib/systemd/system/multi-user.target "${rootfs}"/etc/systemd/system/default.target
- echo "KEYMAP=us" > "${rootfs}"/etc/vconsole.conf
- echo test > "${rootfs}"/etc/hostname
- chroot "${rootfs}" locale-gen
- chroot "${rootfs}" ldconfig
- lxc-create -n testcontainer -f /tmp/testlxc.conf
Advertisement
Add Comment
Please, Sign In to add comment
