Re: [zones-discuss] Re: re: Re: dladm create-vnic not available in build 63?

Sun, 20 May 2007 22:01:46 -0700 

Manish Agrawal wrote:

Thanks, if that is the case, what do I need to do to make
ip-type=exclusive work in a non-global zone? What I mean is, my
interface name in the global zone is e1000g0:



Since VLAN/VNIC isn't yet available, you'd need to allocate an entire 
physical NIC to the non-global zone. Does e1000g1 exist in your system 
(ifconfig -a doesn't show it, so I'm assuming it doesn't exist)? If not, 
what you are trying won't work.



You'll need to have another physical interface besides e1000g0 to 
allocate to the non-global zone.


Zoram



-bash-3.00 (global zone)# ifconfig -a lo0:
flags=2001000849<UP,LOOPBACK,RUNNING,MULTICAST,IPv4,VIRTUAL> mtu 8232
index 1 inet 127.0.0.1 netmask ff000000 e1000g0:
flags=201004843<UP,BROADCAST,RUNNING,MULTICAST,DHCP,IPv4, CoS> mtu
1500 index 2 inet 192.168.16.147 netmask ffffff80 broadcast
192.168.16.255 ether 0:6:5b:cf:6b:3c lo0:
flags=2002000849<UP,LOOPBACK,RUNNING,MULTICAST,IPv6,VIRTUAL> mtu 8252
index 1 inet6 ::1/128

Say I use a zonecfg that looks like this:

-bash-3.00# more exclusivezonecfg create -b set

zonepath=/export/zone/excl1 set autoboot=true set ip-type=exclusive 
add inherit-pkg-dir set dir=/lib end add inherit-pkg-dir set

dir=/platform end add inherit-pkg-dir set dir=/sbin end add
inherit-pkg-dir set dir=/usr end add net set physical=e1000g1 end add
attr set name=comment set type=string set value="Zone exc1l" end

(I am trying to use e1000g1 in the non-global zone). When I install:

-bash-3.00# zoneadm -z excl1 install WARNING: skipping network
interface 'e1000g1' which cannot be opened. Preparing to install zone
<excl1>. ...

-bash-3.00# zoneadm -z excl1 boot WARNING: skipping network interface
'e1000g1' which cannot be opened. zoneadm: zone 'excl1': WARNING:
unable to hold network interface 'e1000g1'.: Invalid argument

When I login to the zone (zlogin -C excl1), I am not asked for
network configuration.

Bottomline, what do I need to do so that I can configure
ip-type=exclusive in the non-global zone? My requirement is that I
want to run ipfilter in the non-global zone. I really hope it is
still possible, I had given up yesterday when vnics didn't work.

(non-global zone)# ifconfig -a lo0:
flags=2001000849<UP,LOOPBACK,RUNNING,MULTICAST,IPv4,VIRTUAL> mtu 8232
index 1 inet 127.0.0.1 netmask ff000000 lo0:
flags=2002000849<UP,LOOPBACK,RUNNING,MULTICAST,IPv6,VIRTUAL> mtu 8252
index 1 inet6 ::1/128



This message posted from opensolaris.org 
_______________________________________________ zones-discuss mailing

list zones-discuss@opensolaris.org



--
Zoram Thanga::Sun Cluster Development::http://blogs.sun.com/zoram
_______________________________________________
zones-discuss mailing list
zones-discuss@opensolaris.org






















					Reply via email to