Yes, I assumed that was necessary, however I’ve confirmed that the interface is running without protections (as shown below). The vpn server logs indicate that it’s trying to fetch an address using DHCP, but I don’t see any DHCP packets going out the interface. Is there something special about VNICs that I’m missing?
dladm show-linkprop net0 LINK PROPERTY PERM VALUE DEFAULT POSSIBLE net0 state r- ? up up,down net0 secondary-macs ? ? -- -- net0 maxbw ? ? -- -- net0 cpus ? ? -- -- net0 cpus-effective r- ? -- -- net0 pool ? ? -- -- net0 pool-effective r- ? -- -- net0 priority ? ? high low,medium,high net0 tagmode ? ? vlanonly normal,vlanonly net0 protection ? ? -- mac-nospoof, restricted, ip-nospoof, dhcp-nospoof net0 promisc-filtered ? ? on off,on net0 allowed-ips ? ? -- -- net0 allowed-dhcp-cids ? ? -- -- net0 rxrings ? ? -- ? net0 rxrings-effective r- ? -- -- net0 txrings ? ? -- ? net0 txrings-effective r- ? -- -- > On Jan 27, 2018, at 10:24 PM, Daniel Carosone <daniel.caros...@gmail.com> > wrote: > > You probably need to allow IP or Mac spoofing by the zone in question. See > the relevant properties in vmadm manpage > > On 28 Jan. 2018 12:26, "H. William Welliver III" <will...@welliver.org > <mailto:will...@welliver.org>> wrote: > Just a further clarification: things work against physical nics in the global > zone but not against a vnic; I’ve verified that all of the protections are > disabled on the vnic but to no avail. > ------------------------------------------- smartos-discuss Archives: https://www.listbox.com/member/archive/184463/=now RSS Feed: https://www.listbox.com/member/archive/rss/184463/25769125-55cfbc00 Modify Your Subscription: https://www.listbox.com/member/?member_id=25769125&id_secret=25769125-7688e9fb Powered by Listbox: http://www.listbox.com