Robert Milkowski writes:
> If I have two different networks - A and B, with two default
> routers, Solaris by default will round-robin between them, which
> is bad...
It's not clear to me why that's "bad," as it's exactly what you've
asked the system to do and what a reader of RFC 791 would expect, but
I'll take it as a given.
> Is there a tunable (ndd?) to tell a global zone to use default
> router for a given packet from a network a packet came in?
No, because in general there's just no relationship at all between a
packet coming in and one going out. If there *is* a relationship,
it's something that may be known only to the application involved.
Even when the stack knows about it the relationship -- as with TCP,
but not with UDP or ICMP -- it's merely temporal; if the system can
get better bandwidth or reliability by using an equivalent or better
route, it can and should do so.
It's just not that simple.
All that said, see CRs 4777670 and 4173841. The source-affinity
problem is a well-known request, just something we've never had
resources to work on. It greatly predates Zones, as it's a big
problem with multi-homed systems that lack decent peering
relationships.
> (I
> know there still could be a problem with connections initiated
> by a global zone) Or maybe to tell that a given default gateway
> should be preferred (so local zones will use a proper one as
> they are only in one network at a time) but global zone will
> used the preferred one?
No. All that you can do is make sure that the subnets of interest are
usable only in the zones where you want to the routes to work.
Robert Milkowski writes:
> Now after all zones are up, manually set status to down
> on interfaces: ce10000 ce11000 ce12000
Yes, that'll do the trick.
A cheesier way of doing the same thing is to plumb up temporary
interfaces in your own private rc script dependent on zone start-up.
Something like this:
my_route() {
ifconfig ip.tun0 plumb 10.0.0.1 $1 up
route add default $1
ifconfig ip.tun0 unplumb
}
my_route 1.2.3.4
my_route 5.6.7.8
...
The system doesn't care if the interfaces disappear after they're used
for inserting the routes.
--
James Carlson, Solaris Networking <[EMAIL PROTECTED]>
Sun Microsystems / 35 Network Drive 71.232W Vox +1 781 442 2084
MS UBUR02-212 / Burlington MA 01803-2757 42.496N Fax +1 781 442 1677
_______________________________________________
networking-discuss mailing list
[email protected]
