Re: [zones-discuss] Interfaces to automate zone system

2007-11-20 Thread Zoram Thanga 
Hi Tomas,

Tomas Heran wrote:
 Hi Zoram,
 
 you might want to take a look at Project Duckwater - Simplified name
 services management: http://www.opensolaris.org/os/project/duckwater/.
 
 Now, Duckwater's command for creating and managing name services
 configuration - nscfg(1M) - doesn't know anything about zones, but I can
 add an RFE for us to be able to export a name service profile (the set
 of all name service configuration) into a file which you can later
 import somewhere else - e.g. you would configure name services in global
 zone, then exported this configuration (using nscfg) into a file and
 later imported this file (again, using nscfg) into your non-global
 zone(s).
 
 Would that work for you?

This sounds promising. My basic requirement is that I should be able to 
non-interactively install and boot a zone (why? because interactive 
install/boot is too tedious in a multi-node environment like Sun Cluster).

The user, if he wishes to, can explicitly enter the sysidcfg(4) 
parameters for the zone. But we expect that in most cases the only thing 
that would be different would be the root password (it would be unwise 
to have the same root password for global and non-global zones), and for 
the rest of the parameters use either

a. global zone settings (name service, nfsv4 domain, security policy, 
timezone,...)

or

b. reasonable defaults (e.g., terminal)

Stable interfaces to query name service configuration of the global zone 
(or any zone for that matter) will be a great help.

Thanks,
Zoram

 
 Regards,
 Tomas
  
  
 This message posted from opensolaris.org
 ___
 zones-discuss mailing list
 zones-discuss@opensolaris.org


-- 
Zoram Thanga::Sun Cluster Development::http://blogs.sun.com/zoram
___
zones-discuss mailing list
zones-discuss@opensolaris.org

Re: [zones-discuss] Interfaces to automate zone system

2007-11-20 Thread Michael Barto 




Actually it is kind of there already. Put a command in /usr/bin in the
global zone that displays the Global zone name. This shared file system
it is available to the local zones. When you build a full zone, this
command goes with it. The only issue is if you change the Global zone
name on a system, the full zone will need to be updated. Very rare.

See:
http://www.logiqwest.com/dataCenter/Demos/RunBooks/Zones/listingGlobal.html

My concern is this functionality is actually a security violation.

Konstantin Gremliza wrote:

  
  
Hi there,
  
I have a question regarding zonemgr.
  
We would like to use lofs to mount (ro) a file /etc/GLOBAL into the
zones. It should contain the name of the global zone so anyone can
easily find out, what system he is really on.
  
Zonemgr 1.8 only supports directories for readonly lofs mounts: option
-r
  
Can it be changed to support files ?
  
Thanks and regards,
  
Konstantin
  

___
zones-discuss mailing list
zones-discuss@opensolaris.org


-- 





  

  
  


  Michael Barto
  Software Architect
  
  
  
  


   LogiQwest
Inc.
16458 Bolsa Chica Street, # 15
Huntington Beach, CA92649
  http://www.logiqwest.com/
  
  
  
  [EMAIL PROTECTED]
Tel:714 377 3705
Fax:714 840 3937
Cell: 714 883 1949
  
  


  'tis a gift to be
simple
   


   This e-mail may contain
LogiQwest
proprietary information and should be treated as confidential. 

  






___
zones-discuss mailing list
zones-discuss@opensolaris.org