{"id":3589,"date":"2022-12-20T17:09:06","date_gmt":"2022-12-20T20:09:06","guid":{"rendered":"http:\/\/lode.uno\/linux-man\/index.php\/2022\/12\/20\/nssmymachines-man8\/"},"modified":"2022-12-20T17:09:06","modified_gmt":"2022-12-20T20:09:06","slug":"nssmymachines-man8","status":"publish","type":"post","link":"https:\/\/lode.uno\/linux-man\/2022\/12\/20\/nssmymachines-man8\/","title":{"rendered":"NSS−MYMACHINES (man8)"},"content":{"rendered":"

NSS\u2212MYMACHINES<\/h1>\n

NAME<\/a>
SYNOPSIS<\/a>
DESCRIPTION<\/a>
CONFIGURATION IN \/ETC\/NSSWITCH.CONF<\/a>
EXAMPLE: MAPPINGS PROVIDED BY NSS\u2212MYMACHINES<\/a>
SEE ALSO<\/a> <\/p>\n

\n

NAME <\/a> <\/h2>\n

nss-mymachines, libnss_mymachines.so.2 \u2212 Hostname resolution for local container instances<\/p>\n

SYNOPSIS <\/a> <\/h2>\n

libnss_mymachines.so.2<\/p>\n

DESCRIPTION <\/a> <\/h2>\n

nss\u2212mymachines<\/b> is a plug\u2212in module for the GNU Name Service Switch (NSS) functionality of the GNU C Library (glibc<\/b>), providing hostname resolution for the names of containers running locally that are registered with systemd-machined.service<\/b>(8). The container names are resolved to the IP addresses of the specific container, ordered by their scope. This functionality only applies to containers using network namespacing (see the description of \u2212\u2212private\u2212network<\/b> in systemd-nspawn<\/b>(1)). Note that the name that is resolved is the one registered with systemd\u2212machined<\/b>, which may be different than the hostname configured inside of the container.<\/p>\n

To activate the NSS module, add “mymachines” to the line starting with “hosts:” in \/etc\/nsswitch.conf.<\/p>\n

It is recommended to place “mymachines” after the “files” or “compat” entry of the \/etc\/nsswitch.conf line to make sure that its mappings are preferred over other resolvers such as DNS, but so that \/etc\/hosts based mappings take precedence.<\/p>\n

CONFIGURATION IN \/ETC\/NSSWITCH.CONF <\/a> <\/h2>\n

Here is an example \/etc\/nsswitch.conf file that enables nss\u2212mymachines<\/b> correctly:<\/p>\n

passwd: compat systemd
group: compat systemd
shadow: compat<\/p>\n

hosts: mymachines<\/b> resolve [!UNAVAIL=return] myhostname files dns
networks: files<\/p>\n

protocols: db files
services: db files
ethers: db files
rpc: db files<\/p>\n

netgroup: nis<\/p>\n

EXAMPLE: MAPPINGS PROVIDED BY NSS\u2212MYMACHINES <\/a> <\/h2>\n

The container “rawhide” is spawned using systemd-nspawn<\/b>(1):<\/p>\n

# systemd\u2212nspawn \u2212M rawhide \u2212\u2212boot \u2212\u2212network\u2212veth \u2212\u2212private\u2212users=pick
Spawning container rawhide on \/var\/lib\/machines\/rawhide.
Selected user namespace base 20119552 and range 65536.
…<\/p>\n

$ machinectl \u2212\u2212max\u2212addresses=3
MACHINE CLASS SERVICE OS VERSION ADDRESSES
rawhide container systemd\u2212nspawn fedora 30 169.254.40.164 fe80::94aa:3aff:fe7b:d4b9<\/p>\n

$ ping \u2212c1 rawhide
PING rawhide(fe80::94aa:3aff:fe7b:d4b9%ve\u2212rawhide (fe80::94aa:3aff:fe7b:d4b9%ve\u2212rawhide)) 56 data bytes
64 bytes from fe80::94aa:3aff:fe7b:d4b9%ve\u2212rawhide (fe80::94aa:3aff:fe7b:d4b9%ve\u2212rawhide): icmp_seq=1 ttl=64 time=0.045 ms

$ ping \u2212c1 \u22124 rawhide
PING rawhide (169.254.40.164) 56(84) bytes of data.
64 bytes from 169.254.40.164 (169.254.40.164): icmp_seq=1 ttl=64 time=0.064 ms
…<\/p>\n

# machinectl shell rawhide \/sbin\/ip a
Connected to machine rawhide. Press ^] three times within 1s to exit session.
1: lo: mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000

2: host0@if21: mtu 1500 qdisc noqueue state UP group default qlen 1000
link\/ether 96:aa:3a:7b:d4:b9 brd ff:ff:ff:ff:ff:ff link\u2212netnsid 0
inet 169.254.40.164\/16 brd 169.254.255.255 scope link host0
valid_lft forever preferred_lft forever
inet6 fe80::94aa:3aff:fe7b:d4b9\/64 scope link
valid_lft forever preferred_lft forever
Connection to machine rawhide terminated.<\/p>\n

SEE ALSO <\/a> <\/h2>\n

systemd<\/b>(1), systemd-machined.service<\/b>(8), machinectl<\/b>(1), nss-systemd<\/b>(8), nss-resolve<\/b>(8), nss-myhostname<\/b>(8), nsswitch.conf<\/b>(5), getent<\/b>(1)<\/p>\n

\n","protected":false},"excerpt":{"rendered":"

nss-mymachines, libnss_mymachines.so.2 \u2212 Hostname resolution for local container instances <\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[5,52,4,706],"class_list":["post-3589","post","type-post","status-publish","format-standard","hentry","category-8-administracion-del-sistema","tag-5","tag-administracion","tag-man8","tag-nss-mymachines"],"gutentor_comment":0,"_links":{"self":[{"href":"https:\/\/lode.uno\/linux-man\/wp-json\/wp\/v2\/posts\/3589","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/lode.uno\/linux-man\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/lode.uno\/linux-man\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/lode.uno\/linux-man\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/lode.uno\/linux-man\/wp-json\/wp\/v2\/comments?post=3589"}],"version-history":[{"count":0,"href":"https:\/\/lode.uno\/linux-man\/wp-json\/wp\/v2\/posts\/3589\/revisions"}],"wp:attachment":[{"href":"https:\/\/lode.uno\/linux-man\/wp-json\/wp\/v2\/media?parent=3589"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/lode.uno\/linux-man\/wp-json\/wp\/v2\/categories?post=3589"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/lode.uno\/linux-man\/wp-json\/wp\/v2\/tags?post=3589"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}