Hiya, On 26 Jun 2008, at 15:58, Darren J Moffat wrote:
> Eric Smith wrote: >> Is it possible to print from an unlabeled host to a printer setup >> in the global zone? If so, how? > > The simple answer is that it is possible only if the unlabled host > is at > admin_low. However I doubt that is the case. Indeed; if it was, you could run lpd at Trusted Path and print pretty much as though your TX system wasn't running labelled. > > I believe the way you need to do this, I haven't personally set it up > but I know of someone who has, is setup a print queue in the zone that > matches the label of the unlabled host. Have that print queue forward > all jobs to the global zone print queue. ...and to do this, you need to set up your lp port as a multilevel port in /etc/security/tsol/txzonecfg. Then have the lpd running in the labelled zone, forward lp traffic through your all-zones interace (usually vni0). Cheers, -- Dave Walker Client Solutions, Sun Microsystems UK Tel: +44 780 3079264 http://blogs.sun.com/davew/
