|
Re: Is it practical/possible to have openvz with mutiple VEs on a single IP? [message #22674 is a reply to message #22671] |
Thu, 01 November 2007 11:44 |
Bodysplit
Messages: 20 Registered: July 2007
|
Junior Member |
|
|
Hi JimL,
you can always go and do good old NATing of several different hosts to virtual internal IPs (eg 192.168.x.x). Keep in mind that this will only work on a per-service level. Say you might want to give your mailserver one VZ and your Apache another one.
This would simply be added security.
If you want to run several apache-instances on different hosts, you would need to run a proxy server on one VE or the host (not recommended - security). The proxy could go and interpret the clients DNS wanted and hand out the wanted data from another VZ. The problem with this situation to me is, how could the users of different servers edit their webspace say with FTP? We could only redirect to one FTP service which needs access to all VEs hosting areas => the FTP would need to be run on the host.
All in all, I personally can not think of a good hosting for several domains with different VEs. Although, service seperation might be the option that already suits you.
--
This doesn't look comfortable...
|
|
|
Re: Is it practical/possible to have openvz with mutiple VEs on a single IP? [message #22677 is a reply to message #22671] |
Thu, 01 November 2007 12:31 |
tpso
Messages: 19 Registered: September 2006 Location: Denmark
|
Junior Member |
|
|
Hi Jim
I run a couple of VZ-host each running a small number of domains, in different VE's.
So I believe it is both practical and possible.
I use one VE to run the apache that listens to the external port, and then uses virtual-domains and mod_proxy to forward each domain into it's own VE.
The benefits are many:
- Each domain can run different kind of web-software (php, typo3, tomcat, xplanner, twiki ect) and it is much simpler to administrate when it is running in different VE's.
- IT is possible to update one site with a new version without the risk of corrupting the others.
- It is possible to give external users access to a single domain. For that purpose it setup nat for ssh, so eg external-ip:6022 maps to the ssh-port in one VE.
- easy backup and restore of a single domian via vzdump.
- ...
So go on - I think you will be happy once you have it up and running.
regards
Thomas
|
|
|
Re: Is it practical/possible to have openvz with mutiple VEs on a single IP? [message #22679 is a reply to message #22677] |
Thu, 01 November 2007 13:13 |
|
JimL
Messages: 116 Registered: February 2007
|
Senior Member |
|
|
tpso wrote on Thu, 01 November 2007 07:31 | Hi Jim
I run a couple of VZ-host each running a small number of domains, in different VE's.
So I believe it is both practical and possible.
I use one VE to run the apache that listens to the external port, and then uses virtual-domains and mod_proxy to forward each domain into it's own VE.
The benefits are many:
- Each domain can run different kind of web-software (php, typo3, tomcat, xplanner, twiki ect) and it is much simpler to administrate when it is running in different VE's.
- IT is possible to update one site with a new version without the risk of corrupting the others.
- It is possible to give external users access to a single domain. For that purpose it setup nat for ssh, so eg external-ip:6022 maps to the ssh-port in one VE.
- easy backup and restore of a single domian via vzdump.
- ...
So go on - I think you will be happy once you have it up and running.
regards
Thomas
|
Hi Thomas,
Thanks for the encouragement. I can muddle through getting mod_proxy to redirect the http requests, but is there a way to redirect "ssh www.foobar.com" to xxx.xxx.xxx.xxx:6062 as in your example? Or would the user have to ssh -p 6022?
There are large holes in my networking knowledge.
THanks,
Jim.
|
|
|
|
|
|
|
|