> ## Documentation Index > Fetch the complete documentation index at: https://docs.xloud.tech/llms.txt > Use this file to discover all available pages before exploring further. # Modify Images > Customize existing cloud images offline using virt-customize, guestfish, and guestmount before uploading to Xloud. ## Overview Modifying a cloud image offline — before uploading — allows you to install packages, configure software, inject files, and set system parameters without needing to launch an instance. This approach produces consistent, repeatable golden images for deployment. All modifications are performed on a copy of the image using libguestfs tools. **Prerequisites** * A Linux workstation or build server with `libguestfs-tools` installed * A base cloud image in QCOW2 or RAW format (see [Get Cloud Images](/services/images/get-images)) * Root or `sudo` access on the build host * Sufficient disk space: at least 3x the image size for safe modification Always work on a copy of the image, not the original. If a modification fails or produces an unusable image, the original remains intact. *** ## Tools Reference | Tool | Purpose | Best For | | ------------------ | ---------------------------------------------- | ------------------------------------------------------ | | **virt-customize** | Apply changes to an image non-interactively | Installing packages, running scripts, injecting files | | **guestfish** | Interactive filesystem shell for an image | Manual file edits, inspecting content, complex changes | | **guestmount** | Mount an image as a local directory | Interactive editing with standard filesystem tools | | **virt-sysprep** | Reset and generalize an image for distribution | Removing machine-specific data before capturing | *** ## Modify with virt-customize `virt-customize` applies changes to an image from the command line without mounting it. It is the fastest method for automatable, scripted modifications. ```bash title="Install on Ubuntu / Debian" theme={null} apt-get update && apt-get install -y libguestfs-tools ``` ```bash title="Install on CentOS / AlmaLinux / Rocky Linux" theme={null} dnf install -y libguestfs-tools ``` ```bash title="Create a working copy of the image" theme={null} cp ubuntu-24.04-lts.qcow2 ubuntu-24.04-lts-custom.qcow2 ``` Install software into the image using the native package manager: ```bash title="Install packages with virt-customize" theme={null} virt-customize \ -a ubuntu-24.04-lts-custom.qcow2 \ --install nginx,curl,htop \ --update ``` The `--update` flag runs a full package upgrade before installing the specified packages. Pre-authorize an SSH public key for the default user: ```bash title="Inject SSH public key" theme={null} virt-customize \ -a ubuntu-24.04-lts-custom.qcow2 \ --ssh-inject ubuntu:file:/home/user/.ssh/id_ed25519.pub ``` Execute a shell script inside the image to perform complex configuration: ```bash title="Run a script inside the image" theme={null} virt-customize \ -a ubuntu-24.04-lts-custom.qcow2 \ --run-command 'systemctl enable nginx' \ --run-command 'echo "CUSTOM_IMAGE=true" >> /etc/environment' ``` Setting a root password is only appropriate for testing or emergency access images. Production images should rely on SSH key injection via cloud-init. ```bash title="Set a root password" theme={null} virt-customize \ -a ubuntu-24.04-lts-custom.qcow2 \ --root-password password:YourSecurePassword123 ``` *** ## Modify with guestfish `guestfish` provides an interactive shell for directly editing files inside an image. Use it for one-off edits, configuration file changes, or inspecting image contents. ```bash title="Open image in interactive mode" theme={null} guestfish --rw -a ubuntu-24.04-lts-custom.qcow2 ``` At the `>` prompt, run: ```text title="Mount the root filesystem" theme={null} > run > list-filesystems > mount /dev/sda1 / ``` Use the `edit` command to open a file in your default editor: ```text title="Edit a file inside the image" theme={null} > edit /etc/cloud/cloud.cfg ``` Or write content directly with `write`: ```text title="Write content to a file" theme={null} > write /etc/motd "Xloud Custom Image - $(date +%Y-%m)\n" ``` Upload a local file into the image: ```text title="Copy local file into the image" theme={null} > upload /local/path/custom-config.conf /etc/app/custom-config.conf ``` ```text title="Exit guestfish" theme={null} > umount / > exit ``` Changes are written to the image file when guestfish exits. *** ## Mount with guestmount `guestmount` mounts the image filesystem as a local directory, enabling standard filesystem tools (`cp`, `vim`, `chmod`) to operate on image contents. ```bash title="Create a temporary mount directory" theme={null} mkdir -p /mnt/image ``` ```bash title="Mount the image read-write" theme={null} guestmount -a ubuntu-24.04-lts-custom.qcow2 -i --rw /mnt/image ``` The `-i` flag auto-detects the root filesystem. The image contents are accessible as a regular directory: ```bash title="Edit a file in the mounted image" theme={null} echo "net.ipv4.tcp_tw_reuse = 1" >> /mnt/image/etc/sysctl.d/99-custom.conf cp /local/app/configs/* /mnt/image/etc/app/ chmod 640 /mnt/image/etc/app/*.conf ``` ```bash title="Unmount the image" theme={null} guestunmount /mnt/image ``` All changes are written to the image file. Verify with `guestfish` if needed. *** ## Generalize with virt-sysprep Before distributing or uploading an image as a golden template, use `virt-sysprep` to remove machine-specific identifiers. This ensures each launched instance is treated as a fresh system rather than a clone of the build host. ```bash title="Generalize the image for distribution" theme={null} virt-sysprep \ -a ubuntu-24.04-lts-custom.qcow2 \ --operations defaults,-ssh-hostkeys \ --selinux-relabel ``` `virt-sysprep` removes: * Machine ID (`/etc/machine-id`) * Shell history files * Temporary files and package caches * Log files * NetworkManager connection caches Use `--operations defaults,-ssh-hostkeys` to keep cloud-init's SSH key regeneration intact. The `-ssh-hostkeys` exclusion prevents virt-sysprep from removing keys that cloud-init would regenerate anyway. *** ## Next Steps Verify your modified image meets all Xloud Compute compatibility requirements. Convert VMDK, VHD, or RAW images to QCOW2 after modification. Upload the customized image to the Xloud Image Service. Tag uploaded images with OS metadata and hardware requirements.