Christine Tran wrote:
Does this mean I can't have my global zone redirect to a non-global
zone living on the same box? Because I'm really using the loopback
interface and not leaving the system on any physical interface? This
applies whether my global and non-global zone share one interface, or
have unique interfaces? I would like some clarification if Darren is
around? Thanks!
Christine,
It should be possible to use rdr to redirect inbound traffic to another
zone (IP address) on the same machine. This isn't mentioned in the ipf
how-to because without zones, there is generally no reason to do this.
Basically, when you use rdr, the inbound packet is modified before the
IP stack sees it, so it will be correctly delivered to the modified
destination if that destination is on the local machine or reachable
through some interface other than the one on which the packet arrived.
-=] Mike [=-
_______________________________________________
zones-discuss mailing list
zones-discuss@opensolaris.org
