NTP client should not be configured in zones. One kernel, one clock.
This is also from the FAQ:
Q: Can some non-global zones have different date and/or time
settings (i.e. different clocks)?
A: Although different zones can have 'be' in different time zones, each
zone gets its date and time
What is best practice here?
Do not run {x}ntpd in the zones.
Actually there is a use-case for doing so - given that it's a
network-facing appliction, one might want to run xntpd in a non-global
zone for isolation reasons.
___
zones-discuss mailing
Le 19 févr. 09 à 09:13, david.co...@sun.com a écrit :
What is best practice here?
Do not run {x}ntpd in the zones.
Actually there is a use-case for doing so - given that it's a
network-facing appliction, one might want to run xntpd in a non-global
zone for isolation reasons.
+1
It would
Le 19 févr. 09 à 14:02, James Carlson a écrit :
Nicolas Dorfsman writes:
Le 19 févr. 09 à 09:13, david.co...@sun.com a écrit :
What is best practice here?
Do not run {x}ntpd in the zones.
Actually there is a use-case for doing so - given that it's a
network-facing appliction, one might
Nicolas Dorfsman writes:
Le 19 févr. 09 à 14:02, James Carlson a écrit :
To expound on that a bit: non-global zones can have access to networks
that the global zone cannot talk to. In these cases, it's possible
for NTP to be configured to serve out time even if it can't manage the
time
Nicolas Dorfsman wrote:
It would be a great idea to have a easy solution to give these
privileges to a zone.
in zonecfg for a given zone,
set limitpriv=default,proc_lock_memory,proc_priocntl,sys_time
David Comay has an interesting blog post on this that can be found
here:
On Thu, Feb 19, 2009 at 9:54 AM, Timothy Kennedy
timothy.kenn...@sun.com wrote:
Nicolas Dorfsman wrote:
It would be a great idea to have a easy solution to give these privileges
to a zone.
in zonecfg for a given zone,
set limitpriv=default,proc_lock_memory,proc_priocntl,sys_time
David
Jeff Victor writes:
On Thu, Feb 19, 2009 at 9:54 AM, Timothy Kennedy
timothy.kenn...@sun.com wrote:
Nicolas Dorfsman wrote:
It would be a great idea to have a easy solution to give these privileges
to a zone.
in zonecfg for a given zone,
set
Just had a look at the FAQ and found this:
Q: Can a zone be an NTP server?
A: Because the NTP server software also sets the time clock, which a
non-global zone cannot be allowed to do, a zone cannot be an NTP server.
(June 2005)
What about client? If I don't enable ntp in a non-global zone,
Charles Meo skrev:
Just had a look at the FAQ and found this:
Q: Can a zone be an NTP server?
A: Because the NTP server software also sets the time clock, which a
non-global zone cannot be allowed to do, a zone cannot be an NTP server.
(June 2005)
What about client? If I don't enable ntp in
10 matches
Mail list logo