Can anyone let me know if this is possible yet...
Or only from global zone..


Jason Bradfield wrote:

I'm trying to get ipfilters working within a local zone on build snv_62.

I'm getting the following when trying to start the ipfilter service

bash-3.00# cat /var/svc/log/network-ipfilter:default.log
[ Jun  5 15:33:08 Enabled. ]
[ Jun 5 15:33:09 Executing start method ("/lib/svc/method/ipfilter start") ]
open device: No such file or directory
SIOCFRENB: Bad file number
open device: No such file or directory
User/kernel version check failed
/lib/svc/method/ipfilter: load of /etc/ipf/ipf.conf into alternate set failed
Not switching config due to load error.
[ Jun  5 15:33:09 Method "start" exited with status 96 ]

Also I get the following:
bash-3.00# ifconfig -a
lo0:3: flags=2001000849<UP,LOOPBACK,RUNNING,MULTICAST,IPv4,VIRTUAL> mtu 8232 index 1
       inet netmask ff000000
e1000g0:3: flags=201000843<UP,BROADCAST,RUNNING,MULTICAST,IPv4,CoS> mtu 1500 index 2
       inet netmask ffffff00 broadcast

bash-3.00# ifconfig e1000g0:3 modlist
ifconfig: open: /dev/ip: No such file or directory

bash-3.00# ifconfig e1000g0 modlist
ifconfig: status: SIOCGLIFFLAGS: e1000g0: no such interface

I have also added the follwing to the global zones /etc/ipf.conf
set intercept_loopback true;

Has this been implemented yet??
Any ideas on how to get this to work??

Jason Bradfield.

zones-discuss mailing list

zones-discuss mailing list

Reply via email to