Yes, I assumed that was necessary, however I’ve confirmed that the interface is
running without protections (as shown below). The vpn server logs indicate that
it’s trying to fetch an address using DHCP, but I don’t see any DHCP packets
going out the interface. Is there something special about VNICs that I’m
missing?
dladm show-linkprop net0
LINK PROPERTY PERM VALUE DEFAULT POSSIBLE
net0 state r- ? up up,down
net0 secondary-macs ? ? -- --
net0 maxbw ? ? -- --
net0 cpus ? ? -- --
net0 cpus-effective r- ? -- --
net0 pool ? ? -- --
net0 pool-effective r- ? -- --
net0 priority ? ? high low,medium,high
net0 tagmode ? ? vlanonly normal,vlanonly
net0 protection ? ? -- mac-nospoof,
restricted,
ip-nospoof,
dhcp-nospoof
net0 promisc-filtered ? ? on off,on
net0 allowed-ips ? ? -- --
net0 allowed-dhcp-cids ? ? -- --
net0 rxrings ? ? -- ?
net0 rxrings-effective r- ? -- --
net0 txrings ? ? -- ?
net0 txrings-effective r- ? -- --
> On Jan 27, 2018, at 10:24 PM, Daniel Carosone <[email protected]>
> wrote:
>
> You probably need to allow IP or Mac spoofing by the zone in question. See
> the relevant properties in vmadm manpage
>
> On 28 Jan. 2018 12:26, "H. William Welliver III" <[email protected]
> <mailto:[email protected]>> wrote:
> Just a further clarification: things work against physical nics in the global
> zone but not against a vnic; I’ve verified that all of the protections are
> disabled on the vnic but to no avail.
>
-------------------------------------------
smartos-discuss
Archives: https://www.listbox.com/member/archive/184463/=now
RSS Feed: https://www.listbox.com/member/archive/rss/184463/25769125-55cfbc00
Modify Your Subscription:
https://www.listbox.com/member/?member_id=25769125&id_secret=25769125-7688e9fb
Powered by Listbox: http://www.listbox.com
