-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hello,
Just an update on my "Regional Hot Desking (AMGH)" question back
Nov. 6th. Thanks to Bob Doolittle for getting me looking into the right
direction. Have some more questions below:
I was setting up a test sunray server running in kiosk mode with a
VLAN that my sunray thin client was sitting on. I wanted to be able to
insert my ID card and have it find my saved session on our main sunray
FOG group on our main network. So the setup is our main FOG with each
server having two NICs, one for the VLAN for the sunray thins; second
NIC for our regular network. My test sunray server running in kiosk
mode with two NIC's, one for my test VLAN and second on the regular
network (same as the FOG).
So what I had to do was first turn my test sunray server into a
router. To do this I did the following:
Enable ipv4 forwarding:
svcadm enable svc:/network/ipv4-forwarding:default
Enable routing:
svcadm enable svc:/network/routing/route:default
Next I disabled my sunray interconnect to my test VLAN.
/opt/SUNWut/sbin/utadm -d ce0
Then turned on LAN connection support
/opt/SUNWut/sbin/utadm -L on
Question: Is there way to turn on LAN support to just one NIC interface?
To make sure none of my other Sunray thin clients tried connecting to my
test server I setup IPfilter and put in the following in /etc/ipf/ipf.conf:
block in on eri0 proto tcp from xxx.xx.xxx.0/21 to any port = 7007
block in on eri0 proto tcp from xxx.xx.xxx.0/21 to any port = 7009
block in on eri0 proto udp from xxx.xx.xxx.0/21 to any port = 7009
xxx is my regular network. I assume the above is adequate to block any
thin client connecting to my server?
Then you need to setup DHCP server to serve out ip addresses to my test
VLAN. Key thing here is to make sure and change the default macro to not
deal out DNS info. I don't want my thin client being able to find my
sunray servers in my main FOG group.
Then I had to put in NAT config to get my network packets forwarding out
from my test VLAN, so in /etc/ipf/ipnat.conf I have:
map eri0 192.168.128.0/24 -> xxx.xx.xxx.54/32
xxx.xx.xxx.54 is IP of my test sunray server.
So now AMGH is working, inserting my ID card in my test sunray it does
query my master sunray server in our main FOG and then finds my saved
session! But one problem remains. When I pull my card out my test
sunray connects to a login screen of one of my main sunray servers
instead of falling back to my test sunray kiosk server!?!? How do I get
my test sunray to fall back to it's sunray kiosk server?
Thanks...
- --
C. J. Keist Email: [EMAIL PROTECTED]
UNIX/Network Manager Phone: 970-491-0630
Engineering Network Services Fax: 970-491-5569
College of Engineering, CSU
Ft. Collins, CO 80523-1301
All I want is a chance to prove 'Money can't buy happiness'
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFJJYfGA29OFr7C6jcRAgIwAJ4rUltPbf+dOnyhQZy661ivE8pVcACdFa1p
Yf9uAMZYKNbiceB2aVNUafk=
=D0gC
-----END PGP SIGNATURE-----
_______________________________________________
SunRay-Users mailing list
[email protected]
http://www.filibeto.org/mailman/listinfo/sunray-users
