XCP-ng
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Groups
    • Register
    • Login
    1. Home
    2. john.c
    3. Posts
    J Offline
    • Profile
    • Following 0
    • Followers 1
    • Topics 16
    • Posts 398
    • Groups 0

    Posts

    Recent Best Controversial
    • RE: Xen 8.2 isos

      @TrapoSAMA said:

      @john.c

      I have this iso but how to know what is de package?

      Thx

      It’s going to be an msi installer package or on the guest tools iso, which is on the XCP-ng or Xen Server your running likely in Local Storage SR or Shared Storage SR (if moved). Named the same as the file linked to above, likely.

      Anyway did you know that the UEFI SecureBoot certificates (at least one of them from 2011) issued by Microsoft are expiring fully during October 2026. Around that time likely at sometime after then those certificates will be placed into dbx. This means the Windows Server 2012 R2 if operating as a UEFI SecureBoot VM, will if restarted (or reboot following a crash), fail to boot.

      So your client will go from having a working app that they can use, but not upgrade at the moment to one which won’t work and can’t be used! They really need to upgrade or migrate from Windows to Linux (released during 2025 or 2026) along with the app if needed. Alternatively upgrade to Windows Server 2022 or 2025 and the app!

      posted in Off topic
      J
      john.c
    • RE: Xen 8.2 isos

      @TrapoSAMA said:

      @john.c

      Oh yes!! but client have still working app and cant upgrade in this moment! 😧

      An instance of that agent maybe held in the contents of one of the XenServer installation media, with a compatible old enough version of the agent compared to current. Though running such old versions, may mean you end up running vulnerable versions of any drivers needed.

      Plus they also have the situation where they can’t, benefit from major improvements. For one thing the highly performing and memory safe agents.

      7.2.x guest agent can be found here http://downloadns.citrix.com.edgesuite.net/14644/managementagentx64.msi

      8.x guest agent is in the 8.2.x Xen Server media, so if you have a copy of the ISO, or on an optical disk then it can be found there!

      posted in Off topic
      J
      john.c
    • RE: Xen 8.2 isos

      @TrapoSAMA said:

      @john.c

      Hello! in this moment i'm working with XCP 8.3 in a DL360G7. Is running good, but some systems are legacy like 2008R2 o 2012R2 and cant migrate for now to new versions. Then i need xentools compatible, but i dont find any alternative download site.

      or xcp tools work fine with this old windows ? i dont test tools in this moment for many reason 😉

      Thx

      Unfortunately not for anything older than Windows Server 2016 and Windows 10. However Windows Server 2008 R2 and Windows Server 2012 R2, need the Xen Tools, but are also EOL operating systems. Additional support is completely gone for Windows Server 2008 R2 from Microsoft, still available for now for Windows Server 2012 R2, however also disappears during October 2026.

      Your legacy systems are in a potential state of increasing vulnerability and/or security risk. Someway of upgrading or migrating them needs to be found.

      posted in Off topic
      J
      john.c
    • RE: Xen 8.2 isos

      @TrapoSAMA said:

      Hi Teddy,

      I was referring to version 8.2 specifically Citrix and its patches.

      However, having the various versions of XenTools for some older Windows systems would also be useful. Would that be possible?

      thx

      Are there any reason your still on Xen Server 8.2 as it went EOL during last year, and no longer receives any updates? It may be time to upgrade to a newer version of that product, or better yet migrate to XCP-ng version 8.3.0 LTS. Which is under current support and will be that way until 2028 unless obtained with ELTS for when it goes EOL!

      If you migrate to XCP-ng 8.3.0 LTS you can also switch the agents, to the open source rust based agents which do the same job.

      posted in Off topic
      J
      john.c
    • RE: XenOrchestra not showing VM Disks on Pool (on single Server working) - XCP-ng Center is showing them

      @kagbasi-wgsdac said:

      @poddingue Bug report filed as requested — https://github.com/xcp-ng/xcp/issues/825 — and tagging @Team-Storage per your suggestion.

      Full evidence bundle is attached to the issue (versions, sweep output, vhd-util vs xe comparison, SMlog). Summary of what I found:

      One correction to the mechanism, and I think it matters. The recap describes is-a-snapshot being flipped to true. On my system that isn't what's happening — is-a-snapshot is false on every affected VDI. The field being wrongly written is snapshot-of, which is getting populated on base disks that aren't snapshots at all. XO's disappearing-disks symptom is consistent with either (it filters on a non-empty snapshot-of), but if the storage team is hunting for a bad is-a-snapshot write, that may be the wrong field. Every affected VDI here looks like:

      is-a-snapshot: false      <-- correct
      snapshot-of:   <populated with an unrelated VDI's UUID>   <-- wrong
      

      A VDI that is a snapshot of itself. The clearest single artifact:

      uuid:          806f7f42-083f-4a40-b3f1-0700d00bab5a
      name-label:    WinSrv2022SHB_Disk1_Data
      is-a-snapshot: false
      snapshot-of:   806f7f42-083f-4a40-b3f1-0700d00bab5a   <-- itself
      snapshot-time: 20260709T11:19:15Z
      sm-config:     vhd-parent: c86e3247-...   <-- bears no relation to the snapshot-of value
      

      No valid code path produces snapshot-of = self. Whatever writes this field isn't validating the target.

      It's still actively corrupting new VDIs — this is not just legacy damage. That self-referential VDI was created 2026-07-09, a week after my patch + reboot. Sweeps 9 days apart went from ~180 → 191 affected VDIs on one SR, and a fourth anchor UUID appeared that didn't exist in the first sweep. Newly created VHDs keep landing in the affected set. So "stop it happening again" is the urgent half of the two-part fix, at least in my case.

      The bogus targets cluster onto a tiny anchor set, and the anchors point at each other:

      Count Anchor
      97 937c3945 (→ a893fdb4)
      50 a893fdb4 (→ ea150883)
      37 ea150883
      7 806f7f42 (→ itself, new since Jul 9)

      That looks less like corrupted lineage and more like the field being filled from an incorrect/uninitialised source.

      On-disk VHDs are completely healthy. vhd-util check says valid, parent locators are consistent, GC reports no work. The two VDIs the DB calls parent/child are, on disk, siblings under a common parent. The corruption is purely in the XAPI database — which is good news for recoverability.

      The VDI_IN_USE is not a real lock. current-operations is empty, xe task-list is empty, no tapdisk holds it. VM.start fails because it's walking a snapshot relationship that doesn't exist on disk. Reproduces from xe on the pool master with XO entirely out of the path — which is why I filed against xcp-ng/xcp rather than the XO tracker.

      Versions: XCP-ng 8.3.0, xapi 26.1.11 (xapi-core-26.1.11-1.2), sm-3.2.12-17.9, sm-fairlock-3.2.12-17.9, blktap 3.55.5-9.1, build 20260618.

      I have not attempted to bulk-clear the fields — on-disk data is intact and I'd rather not do a mass write against the XAPI DB on a live SR without guidance. Backing store snapshotted as a safety net.

      Happy to run whatever diagnostics would help. And +1 to the hand-grenade feeling — the affected set growing on its own is the part that worries me.

      Has this issue been validated on a storage server built around Debian 13, LVM and ext4 or just TrueNAS when connected to XCP-ng version 8.3.0. As part of the XAPI DB corruption. Can anyone answer this please or give a clue?

      posted in Xen Orchestra
      J
      john.c
    • RE: 🛰️ XO 6: dedicated thread for all your feedback!

      @pdonias @julienxovates I’ve made an issue and PR to update the documentation so it’s in sync with the current status of XCP-ng release version 8.3.0. Namely that it’s now a Long Term Support (LTS) release following being a semi rolling or standard release with new features being added.

      https://github.com/vatesfr/xen-orchestra/issues/10091

      posted in Xen Orchestra
      J
      john.c
    • RE: ACL Permissions to CPU Topology on Self-Service Resource Set

      @dvdwx said:

      Hi
      Anyone already tried to review why Users with User permission cannot have the topology menu to edit on their Self-Service resource page? the have admin permission on their self service resource set but cannot edit this setting:
      620b892c-4c04-47ca-8425-064dbceee3e8-image.jpeg
      28d03549-b715-44b6-966f-5d4a5a905825-image.jpeg
      If i log with and full admin account on Xen Orchestra it can be edited:
      b4af0d96-e6c9-4aec-bd23-5b0869b9b31a-image.jpeg

      We are using an HA Pool with 2 hosts to LAB for our NOC/SOC team.

      I already tried to create an ACL with user/tag/group with advanced permission but it release a full permission on the pool and it cannot be delivered to the team.

      if anyone know a workaround to fix it.. I appreciate that.

      As RBAC ACL is implemented for Xen Orchestra 6 you’ll likely find this more possible than currently on Xen Orchestra 5.

      posted in Management
      J
      john.c
    • RE: PCIe Pass-through lanes and lane performance

      Is there anything mentioned in the motherboard or service manuals, about where if one PCIe slot is occupied another is running at reduced speed when occupied?

      Something like this is in the manual for a Gigabyte B450 Aorus Elite (Rev 1.0) motherboard, for example. Can be in yours, somewhere written on one of its pages.

      posted in Compute
      J
      john.c
    • RE: XOA Updater fails

      @andibing said:

      I'm seeing this on XOA:

      xoa@xoa:~$ sudo xoa-updater --upgrade
      ✖ { message: 'missing string at offset 151' }
      xoa@xoa:~$
      

      Unless the sun has got to me, I don't seen any other references to this error. And Gemini was confused too!

      Any thoughts?

      Can you please run “df -h” to start? If either / or /tmp/xoa-updater are low on space please increase disk space or run a clean up. The disk space on the VM and/or the SR may be too low, for the update to succeed.

      The XOA update metadata cache may have become corrupted and need to be cleared, before re-attempting the update. Checking the logs will help to determine if that’s the case.

      posted in Xen Orchestra
      J
      john.c
    • RE: PCIe Pass-through lanes and lane performance

      @JamesG said:

      @anglerfish27 Supermicro H12SSL-i

      I've dabbled with some PCIe settings, but I'm not really getting anywhere.

      Here's a link to the manual:

      https://www.supermicro.com/manuals/motherboard/EPYC7000/MNL-2314.pdf

      Thanks!

      Enable the SVM option will initialise the virtualisation settings automatically. As well as the SR-IOV settings, there’s going to other things need doing in XOA, to configure the necessary settings so that GPU can be passed through to the VM.

      posted in Compute
      J
      john.c
    • RE: 14 VMs Running: After Pool patch update - message states I need to restart to take effect?

      Those without Autostart enabled will after host restart, if not migrated, be in a shutdown state requiring manual startup again.

      posted in XCP-ng
      J
      john.c
    • RE: Tesco and XCP-ng

      @olivierlambert said:

      I'm not sure it's a great idea, because even 64 hosts is huge in terms of VMs and fallout if you have a problem on your pool DB. Even if you drastically improve the current mechanism, the impact of a problem pool wide is far bigger with 64 hosts than 24 for example.

      It's more than purely tech, it's also a tech design/choice.

      We can stick with the 64 hosts per pool, was just wondering how far it could stretch!

      posted in News
      J
      john.c
    • RE: Tesco and XCP-ng

      @DustinB said:

      @olivierlambert said:

      Even with existing customer with that many VMs or host, absolutely nobody will do a giant pool. And in the ROBO/edge world, it's mostly 2 or 3 machines per shop.

      Even large DC deployments tend to use around 10 hosts per pool (a good sweetspot between convenience and fallout protection in case you have a problem on a pool).

      Yeah, having 40K VMs or enough hosts to support that many VMs in a single pool would be career suicide to have a single giant pool. Especially since you can just setup cross pool replication.

      Though the article doesn’t make clear whether it’s 40K hosts, of virtualisation software stacks or like said 40K VMs. Either way with the growing size of infrastructure, being able to support more than the 64 hosts per pool, would be something good to aim for with XCP-ng between 9.0 and 10.0.

      posted in News
      J
      john.c
    • RE: Tesco and XCP-ng

      @Pilow said:

      @olivierlambert just for fun of thought.
      How could Vates stack handle 40K servers farm ?

      I suppose TESCO have multiple in house datacenters, and not 40K servers in one place but anyway...
      Can this tech handle 40K servers in one XOA with attached sites by XO Proxies ?

      way above recommend limits isnt it ?
      don't remember the max number of servers per pool

      If it’s the same as the Xen Server limit, then hosts 64 per pool.

      So would need to split the 40K servers over multiple pools, if all identical each with 64 hosts until reach that number. The number of pools would still be very high, at least until the per pool limit can be raised to 1,000 to 2,000 per pool, or around that amount!

      posted in News
      J
      john.c
    • RE: CPU pegged at 100% in several Rocky Linux 8 VMs without workload in guest

      @DustinB said:

      @laszlobortel While I can understand "Upgrading not being an option" you're lift and shifting the workload (or at least have been attempting to do this to date).

      Are you unable to build new and migrate data over to XCP-ng, while I could see this causing more work, lift and shifting is almost always a guaranteed way to cause headaches - like the ones you're experiencing.

      That is why each service provider recommends building new if you can. At the same time that you're building new, you're updating which of course can cause issues - but continuing to run Rocky8 is only receiving security updates until 2029. Sure it has a few years left, but why not take the opportunity to upgrade?

      They can possibly go up to Rocky 9 but Rocky 10 later may be harder, as it requires a higher baseline on the CPU. Also they may have legacy software that only works on Rocky 8.

      posted in Compute
      J
      john.c
    • RE: XO Lite - network management "coming soon"

      @unreal-shizzle said:

      @olivierlambert said:

      Hi,

      Somewhere between Q1 and Q2 next year, hard to be more precise 🙂

      My company is desperately looking to get away from VMware because of the predatory pricing. I showed my boss XCP-ng because it looks a lot like ESXi. He looked into the software and asked why XO lite has been "coming soon" for 5 years now.

      What should I tell him?

      It may be help to actually look at Xen Orchestra as XO Lite is targeted at basic functions. Anyway network creation is present in Xen Orchestra 5 and/or 6. Maybe more extensive, but will allow for better ACL (via RBAC) capabilities.

      https://docs.xen-orchestra.com/xo5/sdn_controller#network-creation

      The pieces are coming together it’s a new software XO Lite, the teams at Vates are growing more of XO Lite is being developed and tested. Though Xen Orchestra is a more suitable base for a business environment, with multiple departments and teams, due to XO Lite only using and allowing the use of root account authentication. The root account of XO Lite refers to the XCP-ng host server administrator account - full access!

      posted in XO Lite
      J
      john.c
    • RE: Tag-Based Automation: Manage VM CPU Priority via assigned tag.

      @tjkreidl said:

      @john.c @johnnezero Well, the Github reporsitory is in place already! Access it at:
      https://github.com/tobiaskreidl/Citrix-Tobias-Kreidl-Collection
      Feel free to find more material to add, as will I, and thank you kindly for the suggestions and support.

      Is the repository supposed to just have the readme, or are there supposed to be other files (e.g. MDs, pics or the PDFs? Or is it in the releases section - which is currently empty?

      posted in Management
      J
      john.c
    • RE: Tag-Based Automation: Manage VM CPU Priority via assigned tag.

      @tjkreidl said:

      @john.c Wow, that was amazing -- not sure why my searches were unsuccessful, but many thanks! I think Github might be a good option for putting these on-line as a more reliable spot. And, yes, preserving images is always a challenge.
      I do hope some of that information may be useful to you and thanks much again for all your efforts, John!

      A bit of AI archeology combined with Internet Archive Wayback Machine helped. The AI helped to surface the exact URL of the blog posts and these were fed into Wayback Machine. Used the snapshot from 2022 anything newer and they weren’t there anymore. By the way it may be worth sending a donation Internet Archive’s way (if not done so already), as without this your blog posts would be truly gone for good!!

      Oh forgot to add GitHub and GitLab follows digital wills, so you can pass this off to another in a will, or generally be made read only while being kept up, when the time comes. So this hard work will be preserved even in the face of the end.

      Just please let me and the rest of us know where it’s at when done!

      posted in Management
      J
      john.c