I am interested in the possibility to get a VM memory dump for further analysis (list of processes, sockets, other artifacts). How to do it if using the KVM hypervisor (Acropolis).
I need to create a dump on a running VM for analysis. A detailed description of the procedure is required. If I understand correctly, all VMs in Nutanix are kept in the form of files, which files are VM dump files? Оr does Nutanix have a special procedure for creating and downloading a complete dummy file(s) of a virtual machine?
OS doesn't matter, it can be anything.
Please tell me the information to understand this issue.
Best answer by Sergei Ivanov
In AHV another concept is used for storing data and it doesn’t store it in files like ESXi does.
To create a memory dump you will need to force a VM to crash. There is no such feature to suspend a VM, so you will need to crash it and then reboot it. For Windows VM that can be done by doing an NMI dump (VM will go to blue screen, then write a dump, then will reboot) and on Linux by running the “send-key” command. In both situations VM will be crashed and the memory dump will be generated. The dumps will then be available in the guest VM. Both procedures are described in details in the KBs that i linked above.