====== Gentoo/KVM ======
[[Category:Hosts]]
[[Category:Hosts/Servers]]
[[Category:Hosts/Gentoo]]
===== Filesystems =====
{| class="wikitable" cellspacing="10"
|+ /dev/sda (20Gb qcow2 image)
|-
! Partition Number
! Size
! Filesystem
! Mount point
! Notes
|-
| 1
| ~20Gb
| lvm
| //none//
|
|}
And the logical filesystems are:
{| class="wikitable" cellspacing="10"
|+ Logical volumes
|-
! Volume Name
! Size
! Filesystem
! Mount point
! Notes
|-
| system/root
| 8 GB
| ext3
| /
|
|-
| system/home
| 11.5 GB
| ext3
| /home
|
|-
| swap
| 512 MB
| ext3
| /var
|
|}
===== Installation =====
All the KVM machines will be set up to use binary packages for the base system, built by the host node. Only packages that require custom use flags unique to that host will be built on the virtual machine itself. New packages should be built on the build host even if they are not to be installed on the build host itself.
See [[Local Portage Mirror]] for instructions on setting up machines to use the local portage mirror for syncing the portage tree, and downloading binary or cached source packages.
==== Kernel ====
The kernel is built and stored on the host machine so that a single kernel can be maintained for all virtual machines.
//todo// - Document the process for configuring and installing a new kernel
==== Installed Software ====
Also see:
* [[Gentoo#Essential packages]]
===== Configuration =====
==== LDAP ====
See [[LDAP/Openldap]]. Configuration files are stored in subversion, under [[https://dev.sihnon.net/svnpriv/configs/ldap/client/|configs:/ldap/client/]].
==== NTP ====
Install NTP and configure it to start up on boot. The configuration will be pushed to the machine via DHCP, so the clock will synchronise with the local time server.
{{Root|}}
==== Logging ====
Configure network logging, as per [[Syslog]].
==== Firewalls ====
Start with an blank firewall which can be customised per host. The ipv4 and ipv6 firewalls are disabled by default, so create the empty rule set, and start them up.
{{Root|}}
===== Maintenance =====
Virtual machines built using binary packages provided by a build host should be updated using the following incantation only:
{{Root|}}
===== Hardware =====
==== lspci ====
===== Todo =====
* ...