James Carlson wrote:
Darren Reed writes:
I should have included that my observations with dtrace indicate
that looking at db_credp->cr_zoneid (using dtrace) is quite reliable
for packets going out of the system as a means to determine the
zone that "owns" a packet.
It works only when the buffer allocation itself has process context.
So, for instance, you won't see the right result on outbound packets
that are generated by the kernel itself (e.g., ECHO-REPLY). Try
running a script like this:
...
Depending on your point of view, this is arguably a bug with how credentials
are assigned to mblks.
Darren
_______________________________________________
networking-discuss mailing list
[email protected]
