Step 1:
Make sure the tun module has been already loaded on the hardware node:
# lsmod | grep tun
If it is not there, use the following command to load tun module:
# modprobe tun
Step2:
Granting container an access to TUN/TAP
Allow the container to use the tun/tap device:
vzctl set CTID --devices c:10:200:rw --save
vzctl set CTID --capability net_admin:on --save
And create the character device file inside the container:
vzctl exec CTID mkdir -p /dev/net
vzctl exec CTID mknod /dev/net/tun c 10 200
vzctl exec CTID chmod 600 /dev/net/tun
VPN Parameters have been activated to the container
Network Admin Interview Question and Answers
12 years ago
No comments:
Post a Comment