You can definitely have the global zone on one physical interface and the
non-global zone facing the internet on another physical interface. With proper
firewalls, RBAC setup, and lock down of your zone, you can have a very secure
configuration. Take a look at JASS/SST toolkit and the CIS
FYI, sparse zones are dead in S11. This is due to the fact that S11 uses IPS
and
that removes the old SYSV packages and patching mechanisms. I agree that sparse
zones should still be around using IPS somehow, but it's not in the cards.
Speaking from experience, there are some big deployments of Solaris 9 on x86
out there in the e-commerce and telco industries. But many have moved onto
Solaris 10 thankfully. So I can understand the thinking here. But I'm sure
there may be some good business cases where S8/9 branded zones on
Hi,
This should work fine for zones, but I would recommend installing a full oem
build on the global zone to be sure. However, with LDoms it's a little harder
as the platform differences matter between T1, T2, and T2+ matters.
Hi,
Take a look at the LDoms community page:
http://opensolaris.org/os/community/ldoms/
Take a look at the An Introduction to Logical Domains part 1-3 and the Sun
BluePrints doc on LDoms. That should give you a good foundation.
*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*
Octave J.
Hi,
LDOM's should work with this type of migration since each guest domain
has its own virtual memory map, kernel, etc. It'll be a matter of
insuring that the destination machine has the available resources to
migrate to. Of course, this would still require some mechanism to do
the migration
Hi,
Read below..
--- Calum Mackay [EMAIL PROTECTED] wrote:
hi Octave, thanks much for the comments.
However, I think there's a need to take a few steps back...
The requirements you list are things that seems to me to be: once we
have decided that we want an NFS server in a zone, these
Hi,
--- [EMAIL PROTECTED] wrote:
1) I think there are a variety of use cases that may have disjoint
requirements from consolidation, and I want to hear about them, too.
One example we had awhile back - SAS shares some of its data via NFS,
and loses this ability in a zone. Do they need
Hi Robert,
Excellent point! I think this is a good example of why the same
physical path can't be shared from a zone and the global zone at the
same time. Perhaps excluding any zonepaths from being shared at the
global zone is desirable if the nfs switch for that zone is turned on?
Octave
---
Hi,
This has been a major complaint for many sysadmins and beta testers. I
know one of my first bugs filed against the betas of Solaris 10 was the
lack of NFS server functionality within zones. I've even been in the
situation at work where this has been a requirement, only to have to
scrap
for this. I'd even be willing to help out, just have to keep
in mind my programming is a little rusty:)
Octave
--- Tom Haynes [EMAIL PROTECTED] wrote:
Octave Orgeron wrote:
Hi,
This has been a major complaint for many sysadmins and beta
testers. I
know one of my first bugs filed
11 matches
Mail list logo
