Documentation
Rate This Document
Findability
Accuracy
Completeness
Readability
SubmitClose

Configuring the System Environment

The OVS network acceleration feature provided by Kunpeng BoostKit for Virtualization requires creating VMs. However, the SELinux security mechanism enabled by default on Linux prevents guest VM images from being loaded. As a result, services for virtualization scenarios cannot be deployed. This is the behavior of Linux itself, and Kunpeng BoostKit for Virtualization does not provide a solution to this issue. If you want to use SELinux in your own system, please find a solution by yourself.

We provide a method for quickly disabling SELinux. The SELinux configuration method provided in Kunpeng BoostKit for Virtualization is for reference only. You need to evaluate the method and bear related risks.

Disabling SELinux may cause security issues. If you do not plan to enable SELinux, it is recommended that an end-to-end solution be used to eliminate the risks caused by disabling SELinux. You shall bear the security risks by yourself. If you need to enable SELinux, configure fine-grained security rules based on actual SELinux issues to ensure system security.

The firewall and SELinux in the example have been disabled.

Configure BIOS Settings

For details, see BIOS Settings in the OVS Flow Table Normalization Feature Guide.

Configuring Huge Pages, IOMMU, and CPU Isolation

For details, see Running and Verifying XPF in the OVS Flow Table Normalization Feature Guide.

Configuring QEMU Permissions

For details, see Deploying the Prometheus-based Container Cluster Monitoring Solution in the OVS Flow Table Normalization Feature Guide.

Configuring the MLX Driver

  1. Download the MLX driver package of the OS and architecture.
  2. Upload the driver package to the server and decompress it to the corresponding directory.
  3. Install the driver.
    1
    ./mlnxofedinstall --dpdk --upstream-libs

    Install the dependency as prompted and run the command again.

  4. Check the PCI address of the MLX.
    1
    ethtool -i enp1s0f0


    1
    ethtool -i enp1s0f1

  5. Configure the MLX firmware.
    1
2
3
4
    mlxconfig -d 01:00.0 set UEFI_HII_EN=1
mlxconfig -d 01:00.0 set EXP_ROM_UEFI_ARM_ENABLE=1
mlxconfig -d 01:00.1 set UEFI_HII_EN=1
mlxconfig -d 01:00.1 set EXP_ROM_UEFI_ARM_ENABLE=1

    Complete the configuration as prompted.

If a 1822 NIC exists in the environment, install the 1822 driver and firmware to prevent the 1822 NIC from causing high IRQs, which occupies a large number of CPU resources and affects the test.