> is there a way to make the CIFS service to explicitly listen to a specific > address, instead > of *:445/139?
As Afshin says, no. > I'm running into difficulties here, because I run the CIFS service in the > global zone, and > want to additionally run Samba in a Zone. > It seems the CIFS service in the global zone also binds to the bge1:1 > interface, so that > samba cannot bind to that address from inside the zone. The global zone and local zone should be independant - it's not supposed to matter that you're running the CIFS server in the global zone. What might be thwarting you is that by default, processes in a zone cannot be given the SYS_SMB privilege to permit them to bind to 445/139. You have to use the 'limitpriv' subcommand of 'zonecfg' to grant that ability to each zone that needs it, e.g. # zonecfg -z internal zonecfg:internal> info limitpriv limitpriv: default,file_downgrade_sl,file_upgrade_sl,sys_trans_label,win_colorma p,win_config,win_dac_read,win_dac_write,win_devices,win_fontpath,win_mac_read,wi n_mac_write,win_selection zonecfg:internal> set limitpriv=default,file_downgrade_sl,file_upgrade_sl,sys_tr ans_label,win_colormap,win_config,win_dac_read,win_dac_write,win_devices,win_fon tpath,win_mac_read,win_mac_write,win_selection,sys_smb zonecfg:internal> info limitpriv limitpriv: default,file_downgrade_sl,file_upgrade_sl,sys_trans_label,win_colorma p,win_config,win_dac_read,win_dac_write,win_devices,win_fontpath,win_mac_read,wi n_mac_write,win_selection,sys_smb Give this a try; I hope it helps. Rob T _______________________________________________ cifs-discuss mailing list [email protected] http://mail.opensolaris.org/mailman/listinfo/cifs-discuss
