On 08/16/2014 09:39 AM, G B via smartos-discuss wrote: > I'm stumped for the moment, so maybe somebody can alleviate my block. > > Currently I have a firewall with dmz and internal interfaces each going to a > physical switch. What I'd like to do is removed the dmz physical switch and > have my dmz servers go through a virtual switch, but that is what has me > stumped. > > I created an etherstub: # dladm create-etherstub vswitch0 > > Then I created a vnic: # dladm create-vnic -l vswitch0 vnic0 > > Next I intended to plug the CAT6 cable into vnic0, then I would create > another vnic and put that in a zone. But: > > 1) I'm not sure if that is correct > 2) I'm unsure what the syntax is for the json file for the vnic > > Another thing is presently the physical nic on the server goes to the > physical dmz switch. Not sure what I'd change to eliminate the dmz physical > switch for the dmz server's physical nic.
So, I think it's worth clarifying a few things. While an etherstub is a virtual switch, it's a virtual switch that only exists on the host, a single vnic can only be created over a single device and therefore there's no notion of plugging in a physical cable to a virtual nic. It's also the case that every physical device has an implicit virtual switch. Would it be possible to draw a small network diagram of how you want everything to look? It's not really that clear from the mail how you want this to look. Robert ------------------------------------------- smartos-discuss Archives: https://www.listbox.com/member/archive/184463/=now RSS Feed: https://www.listbox.com/member/archive/rss/184463/25769125-55cfbc00 Modify Your Subscription: https://www.listbox.com/member/?member_id=25769125&id_secret=25769125-7688e9fb Powered by Listbox: http://www.listbox.com
