AWS AMI Virtualization Types: HVM vs PV (Paravirtual VS Hardware VM)

Amazon Machine Images (AWS AMI) offers two types of virtualization: Paravirtual (PV) and Hardware Virtual Machine (HVM).  Each solution offers its own advantages.

Today we’re going to talk about an important aspect of Amazon Machine Images that somehow fails to capture our attention. Choosing an AWS AMIvirtualization type may not seem critical or relevant at first, but I believe everyone should have at least a basic understanding of how the different virtualization options function.

How many times have you actually thought about which kind of virtualization is best suited to your needs before you select your AWS AMI? Or better: how often have you thought about it, but ignored it and just started working anyway? When you select an AWS AMI to launch an instance you will see something like this:

What are these highlighted terms all about? I’ll explain.

The AWS AMI and the Xen hypervisor

Every AWS AMI uses the Xen hypervisor on bare metal. Xen offers two kinds of virtualization: HVM (Hardware Virtual Machine) and PV(Paravirtualization). But before we discuss these virtualization capabilities, it’s important to understand how Xen architecture works. Below is a high-level representation of Xen components:

Virtual machines (also known as Guests) run on top of a hypervisor. The hypervisor takes care of CPU scheduling and memory partitioning, but it is unaware of networking, external storage devices, video, or any other common I/O functions found on a computing system.

These guest VMs can be either HVM or PV.

The AWS AMI and HVM vs. PV

HVM guests are fully virtualized. It means that the VMs running on top of their hypervisors are not aware that they are sharing processing time with other clients on the same hardware. The host should have the capability to emulate underlying hardware for each of its guest machines. This virtualization type provides the ability to run an operating system directly on top of a virtual machine without any modification — as if it were run on the bare-metal hardware. The advantage of this is that HVMs can use hardware extensions which provide very fast access to underlying hardware on the host system.

Paravirtualization, on the other hand, is a lighter form of virtualization. This technique is fast, and provides near native speed in comparison to full virtualization. With Paravirtualization, the guest operating system requires some modification before everything can work. These modifications allow the hypervisor to export a modified version of the underlying hardware to the VMs, allowing them near-native performance. All PV machines running on a hypervisor are basically modified operating systems like Solaris or various Linux distributions.

This is in contrast to HVM, which requires no modifications to the guest OS and the host OS is completely unaware of the virtualization. This may add to the performance penalty because it places an extra burden on the hypervisor.

Let’s extend this discussion to the AWS AMI. AWS supports Hardware Virtual Machine (HVM) for Windows instances as well as Paravirtualization (PV) for Linux instances. Years ago, AWS would encourage users to use Paravirtualized guest VMs, because they were then considered more efficient than HVM.

Take note here, there is one major disadvantage with Paravirtualization. You need a region-specific kernel object for each Linux instance. Consider a scenario where you want to recover or build an instance in some other AWS region. In that scenario, you need to find a matching kernel — which can be tedious and complex. Nevertheless, I can’t say that this is the only reason that Amazon now recommends using the HVM virtualization versions of latest generation of their instances: there are a number of additional recent enhancements in HVM virtualization which have improved its performance greatly.

Here are some key factors that contributed to Hardware Virtual Machine’s closing the performance gap with Paravirtualization:

• Improvements to the Xen Hypervisor.
• Newer generation CPUs with new instruction sets.
• EC2 driver improvements.
• Overall infrastructure changes in AWS.

Consider upgrading if you are using an older instance type. Here is an excellent discussion about migrating PV instances to HVM.

This table shows which flavor of AWS AMI (Amazon Linux) are recommended for each Amazon EC2 instance type:

Amazon currently recommends users choose HVM instead of PV. Ignoring their advice can have very real consequences. For example, in the AWS Frankfurt region, if you try to select an AWS AMI (Amazon Linux) using PV, you will be greatly restricted in your choice of instance types:

As you can see, the cheapest instance type you can select here is m3.medium. But going with the Amazon Linux AMI on HVM, the cheapest instance type available to you is t2.micro.

I am not sure it will work this way in all AWS regions, but this should serve to make you aware about the relevance of virtualization type — which we ignore at our own peril.

Conclusion

Traditionally, Paravirtualized guests performed better with storage and network operations than HVM guests, because they could avoid the overhead of emulating network and disk hardware. This is no longer the case with HVM guests. They must translate these instructions (I/O) every time to effectively emulated hardware. Things have also improved since the introduction of PV drivers for HVM guest’s. HVM guests will also experience performance advantages in storage and network I/O.

Because Amazon is changing their approach towards the AWS AMI, we have no choice but to address this topic. It is possible that in near future you may see HVM types completely replacing PV types. If this happens it is critical that you make informed decisions today. 

How to Install Docker in Linux?

How to Install Docker in Linux?

 

Note - You should install Docker using root or with sudo access.

 

Install Docker on Ubantu 

# apt-get update

# apt-get install -y docker.io

# service docker.io start

 

Install Docker on Redhar / Centos

# yum update

# yum install -y docker.io

# systemctl start docker.service

 

How to verify the version of docker?

# docker -v

# docker version

 

How to know docker running?

# service docker.io status (Ubantu)

# systemctl status docker.service (Redhat)

 

How to check details of Docker clients, deamon, containers, images, drivers, etc

# docker info

 

How to update Docker version?

==============================================

# wget -q0- https://get.docker.com/gpg | apt-key add -

# echo deb http://get.docker.com/ubantu docker main > /etc/apt/sources.list.d/docker.list

# apt-get update

# apt-get install lxc-docker

# docker version

 

Configuration post docker installation:

Adding Users to the Docker Group for non-root user

==============================================

# docker run -it ubuntu /bin/bash (as a non-root)

[ permission denied]

# cat /etc/group

# sudo gpasswd -a username docker

# cat /etc/group

# docker run -it ubuntu /bin/bash (as a non-root)

# logout

# login username

Setting the proxy configuratin in Linux and Windows

Setting the proxy configuration in Linux and Windows

 

If you use a proxy server or firewall, you may need to set the http_proxy environment variable in order to access some url from commandline.

 

Windows Command line

set http_proxy=http://your_proxy:your_port

set http_proxy=http://username:password@your_proxy:your_port

set https_proxy=https://your_proxy:your_port

set https_proxy=https://username:password@your_proxy:your_port

 

Windows GUI

1. Open the Control Panel and click the System icon.The System Properties dialog is displayed.

2. On the Advanced tab, click on Environment Variables. The Environment Variables dialog is displayed.

3. Click New in the System variables panel. The New Sytem Variable dialog is displayed.

4. Add http_proxy with the appropriate proxy information

 

Windows Registry

IE can set username and password proxies, so maybe setting it there and import does work

 

reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings" /v ProxyEnable /t REG_DWORD /d 1

reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings" /v ProxyServer /t REG_SZ /d name:port

reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings" /v ProxyUser /t REG_SZ /d username

reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings" /v ProxyPass /t REG_SZ /d password

netsh winhttp import proxy source=ie

 

Command to enable proxy usage:

reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings" /v ProxyEnable /t REG_DWORD /d 1 /f

 

Command to disable proxy usage:

reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings" /v ProxyEnable /t REG_DWORD /d 0 /f

 

Command to change the proxy address:

reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings" /v ProxyServer /t REG_SZ /d proxyserveraddress:proxyport /f

 

Linux 

export http_proxy=http://your_proxy:your_port

export http_proxy=http://username:password@your_proxy:your_port

export https_proxy=https://your_proxy:your_port

export https_proxy=https://username:password@your_proxy:your_port

export https_proxy=https://%username%:%password%@your_proxy:your_port

 

FAQ

1. How to escape if password has a @ character

Ans - try %40 instead of @

 

2. What is the file name where it stroed the proxy in Ubantu

Ans - /etc/environment

 

3. How to set proxy inforamtin in Apt?

Ans - Adding following line to /etc/apt/apt.conf has solved the problem: 

Acquire::http::proxy "http://10.1.3.1:8080/";

If file does not exist, create it. Do not confuse it with apt.conf.d directory.

 

4. How to set proxy inforamtin in linux Profile?

 

5. Why manual export failed to affect apt-get with the proxy info?

Ans - The reason your manual export failed to affect apt-get is because sudo ignores that environment variable by default (i.e. it doesn't pass it on to the command). For one-off runs, you could do sudo env http_proxy=http://10.1.3.1:8080 apt-get update. Otherwise, you could configure sudo to allow http_proxy to fall through.

Vagrant installation in Centos, Ubuntu and Windows

Vagrant installation in ubuntu

 

1. Update your apt repository

> sudo apt-get update

2. Install VirtualBox.

> sudo apt-get install virtualbox

3. Install Vagrant.

> sudo apt-get install vagrant

 

Vagrant installation in Centos

1. Update your system

> yum -y update

> cd etc/yum.repos.d/

> wget http://download.virtualbox.org/virtualbox/rpm/fedora/virtualbox.repo

> yum update -y

> yum install binutils qt gcc make patch libgomp glibc-headers glibc-devel kernel-headers kernel-devel 

> dkms

> yum install virtualbox-5.0

 

2. Install Vagrant

> wget https://releases.hashicorp.com/vagrant/1.8.1/vagrant_1.8.1_x86_64.rpm

> yum localinstall vagrant_1.8.1_x86_64.rpm

 

Vagrant installation in Windows

In this tutorial, we will be installing Vagrant, a bare bones server with Ubuntu installed. Vagrant is a server that runs under VirtualBox. You will need to have VirtualBox installed. You will also need to have Putty installed in order to access your new Vagrant server via SSH. These instructions also apply to Windows 8.

 

Requirements:

A hard connection to the Internet

Putty needs to be installed. (putty-0.62-installer.exe)

VirtualBox needs to be installed.

Recommended: 8 GB RAM is recommended to run VirtualBox on Windows PCs

 

A. Installing Vagrant – bare bones server – Ubuntu only

1. Download and install the most recent VirtualBox for Windows from https://www.virtualbox.org/wiki/Downloads

 

Start up VirtualBox

 

2. Download and install the latest version of Vagrant from http://downloads.vagrantup.com. For this tutorial, we will use version 1.0.6. Windows users, download Vagrant.msi

 

Open Windows cmd prompt

For Windows 8, press Windows key and then press “R” key. This will open the RUN dialog box for you. Type “cmd” and press Enter.

Note: I typed vagrant command and I got the error message saying, ‘vagrant’ command not recognized. It was not added to the Path during install. Restarting your computer may help to refresh the path.

 

3. Change directory to C:\vagrant\vagrant\bin

 

4. Then type the following commands:

 

C:\vagrant\vagrant\bin> vagrant box add lucid32 http://files.vagrantup.com/lucid32.box

C:\vagrant\vagrant\bin> vagrant init lucid32

C:\vagrant\vagrant\bin> vagrant up

 

5. Open Putty and enter these credentials:

Hostname: 127.0.0.1

Port: 2222

Connection type: SSH

 

6. Login to Vagrant server

Enter username: vagrant

Password: vagrant

 

Type ls –lah at the prompt.

This is a bare bones server with Ubuntu installed.

 

vagrant@lucid32:~$ls -lah

Tools and Technologies

Operating Systems
Windows
Linux (CentOs & Ubantu)
Version Control Management Tools Using
SVN
Git
Build & Lifecycle Management Tools Using
Ant
Maven
MSBUILD
NANT
Gradle
World of Application Packaging Tools with
RPM
YUM
APT
Virtualization and Container with
Docker
Vagrant
Vmware
VirtualBox
Static Code Analysis using
SonarQube
Test Coverage using
Jacoco
Cobertura
Configuration Management, Automation & Deployment Tools Using
Chef
Puppet
Continuous Integration & Delivery Using
Jenkins
Understanding the Cloud Infrastructure with
Amazon AWS EC2
Server Monitoring Tools with
Nagios
Programming and Scripting with
Bash Scripting
Ruby Fundamental