2 yum install kvm qemu-kvm python-virtinst libvirt libvirt-python virt-manager libguestfs-tools virt-viewer

3 modprobe -a kvm kvm_intel （BIOS裏面先開啟虛擬化）

4 yum -y upgrade device-mapper-libs

5 service libvirtd start

6 chkconfig libvirtd on

7 新建虛擬機，磁盤方面設置：

然後進入桌面使用圖形化操作，新建虛擬機的時候。

存儲：配置存儲的時候選擇大的分區（編輯---鏈接詳細---存儲---添加池---新建卷---選擇qcow2格式，只有這個格式才能做快照），默認是選擇根分區的存儲池的。

設置存儲池參考：http://www.3566t.com/news/nosb/1493020.html http://xiangcun168.blog.51cto.com/4788340/1680498

8 網絡方面設置

網絡：默認是NAT模式，物理機會有一個virbr0網卡192.168.122.1，虛擬機也是這個網段的192.168.122.133。

需要給虛擬機配置NAT上網。

需要給虛擬機配置iptables端口轉發。

物理機防火墻配置文件如下：

# Generated by iptables-save v1.4.7 on Thu Mar 23 18:07:55 2017

*filter

:INPUT ACCEPT [1224:109875]

:FORWARD ACCEPT [1125:176375]

:OUTPUT ACCEPT [415:56424]

-A INPUT -m state --state NEW -m tcp -p tcp --dport 22 -j ACCEPT

-A INPUT -m state --state NEW -m tcp -p tcp --dport 80 -j ACCEPT

-A INPUT -m state --state NEW -m tcp -p tcp --dport 8732 -j ACCEPT

-A INPUT -m state --state NEW -m tcp -p tcp --dport 25 -j ACCEPT

-A INPUT -m state --state NEW -m tcp -p tcp --dport 110 -j ACCEPT

-A INPUT -m state --state NEW -m tcp -p tcp --dport 143 -j ACCEPT

-A INPUT -m state --state NEW -m tcp -p tcp --dport 443 -j ACCEPT

-A INPUT -m state --state NEW -m tcp -p tcp --dport 465 -j ACCEPT

-A INPUT -m state --state NEW -m tcp -p tcp --dport 993 -j ACCEPT

-A INPUT -m state --state NEW -m tcp -p tcp --dport 995 -j ACCEPT

-A INPUT -m state --state NEW -m tcp -p tcp --dport 99 -j ACCEPT

COMMIT

# Completed on Thu Mar 23 18:07:55 2017

# Generated by iptables-save v1.4.7 on Thu Mar 23 18:07:55 2017

*mangle

:PREROUTING ACCEPT [3600:428906]

:INPUT ACCEPT [1376:127143]

:FORWARD ACCEPT [1448:225520]

:OUTPUT ACCEPT [463:60779]

:POSTROUTING ACCEPT [1902:285843]

-A POSTROUTING -o virbr0 -p udp -m udp --dport 68 -j CHECKSUM --checksum-fill

COMMIT

# Completed on Thu Mar 23 18:07:55 2017

# Generated by iptables-save v1.4.7 on Thu Mar 23 18:07:55 2017

*nat

:PREROUTING ACCEPT [1239:116781]

:POSTROUTING ACCEPT [6:484]

:OUTPUT ACCEPT [6:484]

-A PREROUTING -d 192.168.1.107/32 -p tcp -m tcp --dport 80 -j DNAT --to-destination 192.168.122.133:80

-A POSTROUTING -o eth0 -j MASQUERADE

-A PREROUTING -d 192.168.1.107/32 -p tcp -m tcp --dport 8732 -j DNAT --to-destination 192.168.122.133:8732

-A POSTROUTING -o eth0 -j MASQUERADE

-A PREROUTING -d 192.168.1.107/32 -p tcp -m tcp --dport 25 -j DNAT --to-destination 192.168.122.133:25

-A POSTROUTING -o eth0 -j MASQUERADE

-A PREROUTING -d 192.168.1.107/32 -p tcp -m tcp --dport 110 -j DNAT --to-destination 192.168.122.133:110

-A POSTROUTING -o eth0 -j MASQUERADE

-A PREROUTING -d 192.168.1.107/32 -p tcp -m tcp --dport 143 -j DNAT --to-destination 192.168.122.133:143

-A POSTROUTING -o eth0 -j MASQUERADE

-A PREROUTING -d 192.168.1.107/32 -p tcp -m tcp --dport 443 -j DNAT --to-destination 192.168.122.133:443

-A POSTROUTING -o eth0 -j MASQUERADE

-A PREROUTING -d 192.168.1.107/32 -p tcp -m tcp --dport 465 -j DNAT --to-destination 192.168.122.133:465

-A POSTROUTING -o eth0 -j MASQUERADE

-A PREROUTING -d 192.168.1.107/32 -p tcp -m tcp --dport 993 -j DNAT --to-destination 192.168.122.133:993

-A POSTROUTING -o eth0 -j MASQUERADE

-A PREROUTING -d 192.168.1.107/32 -p tcp -m tcp --dport 995 -j DNAT --to-destination 192.168.122.133:995

-A POSTROUTING -o eth0 -j MASQUERADE

-A PREROUTING -d 192.168.1.107/32 -p tcp -m tcp --dport 99 -j DNAT --to-destination 192.168.122.133:99

-A POSTROUTING -o eth0 -j MASQUERADE

-A POSTROUTING -s 192.168.122.0/24 ! -d 192.168.122.0/24 -p tcp -j MASQUERADE --to-ports 1024-65535

-A POSTROUTING -s 192.168.122.0/24 ! -d 192.168.122.0/24 -p udp -j MASQUERADE --to-ports 1024-65535

-A POSTROUTING -s 192.168.122.0/24 ! -d 192.168.122.0/24 -j MASQUERADE

-A POSTROUTING -s 192.168.122.0/24 -d 192.168.122.133/32 -p tcp -m tcp --dport 80 -j SNAT --to-source 192.168.122.1

-A POSTROUTING -s 192.168.122.0/24 -d 192.168.122.133/32 -p tcp -m tcp --dport 8732 -j SNAT --to-source 192.168.122.1

-A POSTROUTING -s 192.168.122.0/24 -d 192.168.122.133/32 -p tcp -m tcp --dport 25 -j SNAT --to-source 192.168.122.1

-A POSTROUTING -s 192.168.122.0/24 -d 192.168.122.133/32 -p tcp -m tcp --dport 110 -j SNAT --to-source 192.168.122.1

-A POSTROUTING -s 192.168.122.0/24 -d 192.168.122.133/32 -p tcp -m tcp --dport 143 -j SNAT --to-source 192.168.122.1

-A POSTROUTING -s 192.168.122.0/24 -d 192.168.122.133/32 -p tcp -m tcp --dport 443 -j SNAT --to-source 192.168.122.1

-A POSTROUTING -s 192.168.122.0/24 -d 192.168.122.133/32 -p tcp -m tcp --dport 465 -j SNAT --to-source 192.168.122.1

-A POSTROUTING -s 192.168.122.0/24 -d 192.168.122.133/32 -p tcp -m tcp --dport 993 -j SNAT --to-source 192.168.122.1

-A POSTROUTING -s 192.168.122.0/24 -d 192.168.122.133/32 -p tcp -m tcp --dport 995 -j SNAT --to-source 192.168.122.1

-A POSTROUTING -s 192.168.122.0/24 -d 192.168.122.133/32 -p tcp -m tcp --dport 99 -j SNAT --to-source 192.168.122.1

COMMIT

# Completed on Thu Mar 23 18:07:55 2017

/etc/init.d/iptables restart

重啟服務器，測試虛擬機能否上網，其他電腦能否用物理機的IP地址訪問虛擬機的web服務。

設置NAT網絡參考：http://blog.chinaunix.net/uid-21710354-id-4467679.html

9、查看虛擬機

查看虛擬機：virsh list

查看umail虛擬機的快照：virsh snapshot-list umail

創建umail虛擬機的快照：virsh snapshot-create-as umail umail_webmail-1.6.41-1.el6.x86_64_umail_app-2.2.25-1.el6.x86_64

Centos 6.5安裝配置KVM