On Sat, Sep 13, 2008 at 7:55 PM, Devin Ceartas <nacredata at gmail.com> wrote:
> Thanks for the tip. It doesn't work, see the output reproduced below. > > # zonecfg -z citylife > zonecfg:citylife> select net physical=e1000g2 > zonecfg:citylife:net> set address=192.168.0.129 > zonecfg:citylife:net> end > zonecfg:citylife> verify > net: address cannot be specified for an exclusive IP type > > > Rather than assign the IP for an exclusive iP zone, the documentation says > you should set up the networking as normal, and it claims that DHCP should > work, which is why I don't understand the error: "Unable to find an address > entry for my_new_domain with the specified DNS configuration" > Indeed - I was under the impression that you "tried" exclusive-IP in an attempt to solve the problem. I should have been more specific. > > Here's what is says on > http://docs.sun.com/app/docs/doc/817-1592/z.config.ov-1?a=view > > Solaris 10 8/07: Exclusive-IP Non-Global Zones > > Full IP-level functionality is available in an exclusive-IP zone. > > An exclusive-IP zone has its own IP-related state. > > This includes the ability to use the following features in an exclusive-IP > zone: > > * DHCPv4 and IPv6 stateless address autoconfiguration > * P Filter, including network address translation (NAT) functionality > * IP Network Multipathing (IPMP) > * IP routing > * ndd for setting TCP/UDP/SCTP as well as IP/ARP-level knobs > * IP security (IPsec) and IKE, which automates the provision of > authenticated keying material for IPsec security association > > An exclusive-IP zone is assigned its own set of data-links using the > zonecfg command. The zone is given a data-link name such as xge0, e1000g1, > or bge32001, using the physical property of the net resource. The address > property of the net resource is not set. > Do you specifically want DHCP to assign the zone IP address? The above mentioned paragraph goes on to say: *The dladm command can be used with the show-linkprop subcommand to show the assignment of data-links to running exclusive-IP zones. The dladm set-linkprop subcommand to assign additional data-links to running zones. See Solaris 10 8/07: Administering Data-Links in Exclusive-IP Non-Global Zones <http://docs.sun.com/app/docs/doc/817-1592/geohb?a=view> for usage examples.* command can be used with the *Inside a running exclusive-IP zone, the ifconfig command can be used to configure IP, which includes the ability to add or remove logical interfaces. The IP configuration in a zone can be set up in the same way as for the global zone, by using the sysidtools described in sysidcfg(4)<http://docs.sun.com/app/docs/doc/816-5174/sysidcfg-4?a=view> .* So use ifconfig in the zone. If you want to use DHCP to assign details you may have some limitations. Nr 1: Does this zone share the physical interface with other zones (including the global zone) If so, you need to probably look at virtual NICs. I don't know much about this topic but I understand that you can set up a virtual "switch" in the system. This can have virtual network interfaces connected, each with a different MAC address. These can then be routed to an external network or you can have a DHCP server running someone on this virtual network. I have a document on this topic somewhere, which I will read some time, this is item nr 9945002 on my to-do list nr 445X12B-K If the zone is the only one using the specific physical interface you can use an existing DHCP server/DNS server pair to configure the zone. Interesting find by google - (quick intro to all the different bits involved) [PDF] *IP* Instances ? Network Isolation meets Zones<http://www.google.co.za/url?sa=t&source=web&ct=res&cd=2&url=http%3A%2F%2Fopensolaris.org%2Fos%2Fproject%2Fcrossbow%2FDocs%2Fipinstances-sug1.pdf&ei=Ht3MSKGQN4-EggKd3enwAw&usg=AFQjCNG3Yzu-Am8_WYJNzd-GbdA5Wwj4xw&sig2=oR8D-1UK8Z3RkgBiZn7Evw>File Format: PDF/Adobe Acrobat - View as HTML<http://72.14.205.104/search?q=cache:E5pJi-9l_U8J:opensolaris.org/os/project/crossbow/Docs/ipinstances-sug1.pdf+dhcp+assign+ip+address+exclusive+IP+zone&hl=en&ct=clnk&cd=2&gl=za&client=firefox-a> 26 Oct 2006 *...* Network security and *exclusive*-*IP* zones. ? The *zone*is given a datalink name ( e.g., bge1000). > Compared to an *IP address* for a shared-*IP* *...* opensolaris.org/os/project/crossbow/Docs/*ip*instances-sug1.pdf - Similar pages<http://www.google.co.za/search?hl=en&safe=off&client=firefox-a&rls=org.mozilla:en-US:official&hs=EKo&pwst=1&q=related:opensolaris.org/os/project/crossbow/Docs/ipinstances-sug1.pdf>- Note this<http://www.google.co.za/search?hl=en&safe=off&client=firefox-a&rls=org.mozilla:en-US:official&hs=AKo&pwst=1&sa=X&oi=spell&resnum=0&ct=result&cd=1&q=dhcp+assign+ip+address+exclusive+IP+zone&spell=1#> -- Any sufficiently advanced technology is indistinguishable from magic. Arthur C. Clarke Afrikaanse Stap Website: http://www.bloukous.co.za My blog: http://initialprogramload.blogspot.com ICQ = 193944626, YahooIM = johan_hartzenberg, GoogleTalk = jhartzen at gmail.com, AIM = JohanHartzenberg -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://mail.opensolaris.org/pipermail/opensolaris-help/attachments/20080914/a891a207/attachment.html>
