Re: [zones-discuss] Routing issue with zones installed
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Thanks Christine. Multi homing the router is an option we are considering and I'm waiting for it to be assessed but unfortunately is not that obvious for us to get it. server0 is the global zone, indeed, and I thought I could use somehow its packet-forwarding and routing services from the 192.168.0.0/19 zone: but, as you explained, it's not a viable option. Thanks for the info, Enrico. Christine Tran wrote: >> The problem I have is when creating shared IP zones on another subnet, >> such as the 192.168.0.0/19: subnet 192.168.96.0/19 is unreachable and >> they cannot connet to the outside world through 192.168.96.1. > > It can't work this way. Your zone on 192.168.0.0/19 will never see > 192.168.96.1 because that gateway is not local to it. Your > defaultrouter has to be on same segment. You can get around this if > you set 192.168.96.1 up with another interface local to > 192.168.0.0/19, multi-home your router. Then you'll have to add > another default route on your global zone. If you're doing this on > nge0, you'll also have to zone your switch. > >> Is there any way to use server0 as a router from inside the shared IP >> zone so that the global zone forwards packets from one subnet to the >> other and be able to reach 192.168.96.1? > > Yes, you can do it as described above. I assume you mean server0 is > your global zone. > > CT > > -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkn3KwgACgkQW8+x8v0iKa8M1wCg3mdya3gjeTRWWZmLUDlmFKkk I1EAniwAAt+xVI4wFxYQ4LGvnZ5XEYN6 =Vtki -END PGP SIGNATURE- ___ zones-discuss mailing list zones-discuss@opensolaris.org
Re: [zones-discuss] Routing issue with zones installed
> The problem I have is when creating shared IP zones on another subnet, > such as the 192.168.0.0/19: subnet 192.168.96.0/19 is unreachable and > they cannot connet to the outside world through 192.168.96.1. It can't work this way. Your zone on 192.168.0.0/19 will never see 192.168.96.1 because that gateway is not local to it. Your defaultrouter has to be on same segment. You can get around this if you set 192.168.96.1 up with another interface local to 192.168.0.0/19, multi-home your router. Then you'll have to add another default route on your global zone. If you're doing this on nge0, you'll also have to zone your switch. > Is there any way to use server0 as a router from inside the shared IP > zone so that the global zone forwards packets from one subnet to the > other and be able to reach 192.168.96.1? Yes, you can do it as described above. I assume you mean server0 is your global zone. CT -- http://www.apress.com/book/view/1430218916 --- Pro OpenSolaris - Finger lickin' good. ___ zones-discuss mailing list zones-discuss@opensolaris.org
Re: [zones-discuss] routing issue
Hi Ramesh, Ramesh Mudradi wrote On 05/11/07 02:54,: I am facing some routing issue with the local zone talking to outside network. Here is the setup that I have: Configured global zone (bge0) to 10.x.180.0 network Configured local zone (bge1:1) to 10.x.230.0 network local zone can talk to the systems in 10.x.230.0 network, but it cannot talk to any other network. I cannot add the default route for 10.x.230.0 network in global zone as it doesnt have any network interface plumbe up in that network. Is there any way I configure the default route for local zones so that they can talk to other networks too. The only (*unsupported*) way I know of getting this to work is to ifconfig an address for subnet 230 on bge1 (probably any interface in the GZ) and set up your default routes, and then to remove the IP address. This will set up the routing without leaving the subnet's IP address in the GZ. This will be addressed with IP Instances, already in NV and due in Solaris 10 7/07. You will need at least one interface (physical, VLAN, or aggregation) per zone until VNICs come out. See Network Virtualization and Flow Management at http://www.opensolaris.org/os/project/crossbow/ Steffen reply-to set to alias Thanks ramesh This message posted from opensolaris.org ___ zones-discuss mailing list zones-discuss@opensolaris.org ___ zones-discuss mailing list zones-discuss@opensolaris.org
