Unable to get Solaris 11 Zone onto the network


 
Thread Tools Search this Thread
Operating Systems Solaris Unable to get Solaris 11 Zone onto the network
# 1  
Old 12-10-2013
Unable to get Solaris 11 Zone onto the network

Hello, I followed these instructions to create a Solaris 11 zone:
Code:
http://www.oracle.com/technetwork/articles/servers-storage-admin/o11-092-s11-zones-intro-524494.html

And I am unable to ping anything from the Local Zone except for the IP address of the global zone.

My global zone has an IP address of 10.25.63.55 and my local zone has an IP address of 10.25.63.69.

Global Zone
Code:
root@sol11:~# netstat -rn

Routing Table: IPv4
  Destination           Gateway           Flags  Ref     Use     Interface
-------------------- -------------------- ----- ----- ---------- ---------
default              10.25.63.1           UG        4     451672 net0
10.25.63.0           10.25.63.55          U         4          3 net0
127.0.0.1            127.0.0.1            UH        3      18679 lo0

root@sol11:~# ifconfig -a
lo0: flags=2001000849<UP,LOOPBACK,RUNNING,MULTICAST,IPv4,VIRTUAL> mtu 8232 index 1
        inet 127.0.0.1 netmask ff000000
net0: flags=1000943<UP,BROADCAST,RUNNING,PROMISC,MULTICAST,IPv4> mtu 1500 index 2
        inet 10.25.63.55 netmask ffffff00 broadcast 10.25.63.255
        ether 0:14:4f:f9:4:2b
lo0: flags=2002000849<UP,LOOPBACK,RUNNING,MULTICAST,IPv6,VIRTUAL> mtu 8252 index 1
        inet6 ::1/128
net0: flags=20002000941<UP,RUNNING,PROMISC,MULTICAST,IPv6> mtu 1500 index 2
        inet6 fe80::214:4fff:fef9:42b/10
        ether 0:14:4f:f9:4:2b
net0:1: flags=20002080941<UP,RUNNING,PROMISC,MULTICAST,ADDRCONF,IPv6> mtu 1500 index 2
        inet6 2620:0:170:588:214:4fff:fef9:42b/64

root@sol11:~# dladm show-link
LINK                CLASS     MTU    STATE    OVER
net0                phys      1500   up       --
testzone/net0       vnic      1500   up       net0

Local Zone
Code:
root@zone:~# netstat -rn

Routing Table: IPv4
  Destination           Gateway           Flags  Ref     Use     Interface
-------------------- -------------------- ----- ----- ---------- ---------
default              10.25.63.1           UG        2       1443 net0
10.25.63.0           10.25.63.69          U         4          6 net0
127.0.0.1            127.0.0.1            UH        2         12 lo0

root@zone:~# ifconfig -a
lo0: flags=2001000849<UP,LOOPBACK,RUNNING,MULTICAST,IPv4,VIRTUAL> mtu 8232 index 1
        inet 127.0.0.1 netmask ff000000
net0: flags=1000843<UP,BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 3
        inet 10.25.63.69 netmask ffffff00 broadcast 10.25.63.255
        ether 2:8:20:47:cb:60
lo0: flags=2002000849<UP,LOOPBACK,RUNNING,MULTICAST,IPv6,VIRTUAL> mtu 8252 index 1
        inet6 ::1/128
net0: flags=20002000841<UP,RUNNING,MULTICAST,IPv6> mtu 1500 index 3
        inet6 fe80::8:20ff:fe47:cb60/10
        ether 2:8:20:47:cb:60
net0:1: flags=20002080841<UP,RUNNING,MULTICAST,ADDRCONF,IPv6> mtu 1500 index 3
        inet6 2620:0:170:588:8:20ff:fe47:cb60/64

root@zone:~# dladm show-link
LINK                CLASS     MTU    STATE    OVER
net0                vnic      1500   up       ?
root@zone:~# ipadm show-addr
ADDROBJ           TYPE     STATE        ADDR
lo0/v4            static   ok           127.0.0.1/8
net0/v4           static   ok           10.25.63.69/24
lo0/v6            static   ok           ::1/128
net0/v6           addrconf ok           fe80::8:20ff:fe47:cb60/10
net0/v6           addrconf ok           2620:0:170:588:8:20ff:fe47:cb60/64

I removed the IPv6 routing tables because they seemed irrelevant, but please let me know if they are necessary.

Any help would be appreciated.
# 2  
Old 12-11-2013
See below.

Last edited by hicksd8; 12-13-2013 at 06:19 AM..
# 3  
Old 12-11-2013
Quote:
Originally Posted by hicksd8
Is the non-global zone ip interface set to "shared"?

Both global and non-global zone look to be set to use "net0" so if the non-global zone requests "exclusive", it's not going to get it because the global zone is using it.
Thanks for your reply. How can I check to see if it is shared?

Also, the instructions I used to create a zone mention this:
Quote:
By default, all Oracle Solaris Zones are configured to have an automatic VNIC called anet, which gives us a network device automatically. We cannot see this network device yet, because it is automatically created when the zone is booted and also automatically destroyed on shutdown.
So I thought the interface should be automatically set up on the zone.

There might be some confusion because on the global zone the physical interface is also named net0, perhaps because the global zone is an LDom. So my global zone shows this:
Code:
root@sol11:~# dladm show-link
LINK                CLASS     MTU    STATE    OVER
net0                phys      1500   up       --
testzone/net0       vnic      1500   up       net0

While the aforementioned instructions show this:
Code:
root@global:~# dladm show-link
LINK                CLASS     MTU    STATE    OVER
e1000g0             phys      1500   up       --
e1000g1             phys      1500   unknown  --
testzone/net0       vnic      1500   up       e1000g0

Confusing for a network novice such as myself Smilie
# 4  
Old 12-12-2013
POST REMOVED

Reason: Relative to Solaris 10 only.

Last edited by hicksd8; 12-13-2013 at 06:18 AM..
# 5  
Old 12-12-2013
Quote:
Originally Posted by hicksd8
Your physical interfaces are e1000g0 and e1000g1. You don't say what your hardware is. You may also have e1000g2 and e1000g3 is your box has 4 Ethernet interfaces.

A non-global zone has its virtual interface mapped to a physical interface using zonecfg. (Look at the man pages for zonecfg and see the options involving <physical interface>.

The global zone may have been installed to use just one ethernet interface or more than one interface, either as separate ip addresses or teamed together (technical known as aggregation (aggr) in the Solaris world).

If your global zone only uses e1000g0 then you can configure your non-global zone to use e1000g1 exclusively (dedicated to this zone). Alternatively, you could configure it as "shared" and configure it on the same interface as the global zone. To use the same interface as the global zone, a non-global cannot be configured to use that interface "exclusive", of course!!!!
Thanks again for your reply. I apologize, I may have been unclear: e1000g0 and e1000g1 are from the instructions on the Oracle blog. My global zone is showing one interface, net0.

Quote:
How many non-global zones do you have? You don't want to run out of available interfaces by configuring them as exclusive if you haven't got enough.
I have one non-global zone, this test zone that I have created.

I think I see what you mean about shared/exclusive interface. Is it this?

Code:
root@sol11:~# zonecfg -z testzone info
zonename: testzone
zonepath: /zones/testzone
brand: solaris
autoboot: true
bootargs: -m verbose
file-mac-profile:
pool:
limitpriv:
scheduling-class:
ip-type: exclusive <--------
hostid:
fs-allowed:
anet:
        linkname: net0
        lower-link: auto
        allowed-address not specified
        configure-allowed-address: true
        defrouter not specified
        allowed-dhcp-cids not specified
        link-protection: mac-nospoof
        mac-address: random
        auto-mac-address: 2:8:20:47:cb:60
        mac-prefix not specified
        mac-slot not specified
        vlan-id not specified
        priority not specified
        rxrings not specified
        txrings not specified
        mtu not specified
        maxbw not specified
        rxfanout not specified

Would you suggest that I run the command "zonecfg set ip-type=shared" and try again?

EDIT:

I have attempted to set the ip-type to "shared" to see if that would do the trick, unfortunately it is giving me an error:
Code:
root@sol11:~# man zonecfg |grep ip-type
Reformatting page.  Please Wait... done
     global: ip-type
         zone. In the default zone template, SYSdefault,  ip-type
         shared-ip template, ip-type is set to shared.
       (global)          ip-type         simple
       zonecfg:shared> set ip-type=shared
       zonecfg:rozone> set ip-type=exclusive
root@sol11:~# zonecfg -z testzone
zonecfg:testzone> set ip-type=shared
zonecfg:testzone> verify
anet resources can only be specified if ip-type = exclusive
testzone: Incompatible settings
zonecfg:testzone>

Smilie
# 6  
Old 12-13-2013
Seems like I'm wrong and Solaris 11 has a new way of configuring zone network interfaces.

http://www.alekz.net/archives/449

http://www.censhare.com/en/overview/...vlans-in-zones

What hardware is this?

Last edited by hicksd8; 12-13-2013 at 06:26 AM..
This User Gave Thanks to hicksd8 For This Post:
# 7  
Old 12-16-2013
Quote:
Originally Posted by hicksd8
Seems like I'm wrong and Solaris 11 has a new way of configuring zone network interfaces.

Code:
http://www.alekz.net/archives/449

Code:
http://www.censhare.com/en/overview/cenblog/solaris-11-ip-multipathing-vlans-in-zones

What hardware is this?
Thank you, I will look through these links.

The hardware is a SPARC T3-1 with one ethernet cable plugged into the back. The global zone is an LDom running on the host machine. My host machine, global zone and local zone all have IPs on the same subnet.
Login or Register to Ask a Question

Previous Thread | Next Thread

10 More Discussions You Might Find Interesting

1. Solaris

Solaris 11 zone has no external network access (except to Global Zone)

Hi, hoping someone can help, its been a while since I used Solaris. After creating a NGZ (non global zone), the NGZ can access the GZ (Global Zone) and the GZ can access the NGZ (using ssh, zlogin) However, the NGZ cannot access any other netwqork devices, it can't even see the default router ... (2 Replies)
Discussion started by: GazinLincoln
2 Replies

2. Solaris

Configure Solaris zone on new network

Hi, I have a Solaris 10 zone which I need to configure on a new network. I have configured the new IP on the zone itself and I can ping the interface from a node on the same network, but not from another network. Basically I need to know how to route the traffic from the zone to it's... (3 Replies)
Discussion started by: sparcman
3 Replies

3. Solaris

Solaris 11 Global zone patching having Solaris 10 branded zone

I am planning to do solaris 11 global zone patching having solaris 10 branded zone. I have a doubts on step 8 specially Can someone clear my step 8 doubts or if anything wrong between step 1 to step 9 please correct that also as I have pretty good idea about Step 10 mean patching in solaris 10... (2 Replies)
Discussion started by: amity
2 Replies

4. Solaris

Solaris non-global zone network vlan

Have 2 nics on physical system net0 phys 1500 up -- net1 phys 1500 up -- 1. I want to create a link aggregation with LACP enabled with above 2 nics 2. Create port-group(Like we create on ESXi) with VLAN-ID 2141 3. And assign this... (0 Replies)
Discussion started by: Shirishlnx
0 Replies

5. UNIX for Advanced & Expert Users

Solaris 10: I forgot to detach a zone before zpool export. Uninstall zone?

Dear all, recently, I migrated a solaris zone from one host to another. The zone was inside of a zpool. The zpool cotains two volumes. I did the following: host1: $ zlogin zone1 shutdown -y -g0 -i0 #Zone status changes from running to installed $ zpool export zone1 host2: $ zpool... (2 Replies)
Discussion started by: custos
2 Replies

6. Solaris

Branded Solaris 10 zone no network

I am trying to create a branded 10 zone on a Solaris 11.1 control domain. I am using a flar image (cpio) from an existing LDOM. Here are the steps taken after flarcreate. #zonecfg -z <device> >create -b >set brand=solaris10 >set zonepath=/zonez/<device> >set ip-type=exclusive >add net... (1 Reply)
Discussion started by: aeroforce
1 Replies

7. Solaris

Unable to access serial port from non-global solaris zone on netra 240

I am trying to use a serial communications device that is connected to /dev/ttyb on a netra 240 server. This is a solaris zone configuration using solaris 10 0910. I am able to access /dev/ttyb from the global zone but not throught he non-global zone. I have enabled all of the tty devices in my... (0 Replies)
Discussion started by: disagreeable
0 Replies

8. Solaris

Creating A Solaris Zone - Unable to install - Are network settings required?

Hi i have created a solaris zone but have not yet connected any network cables for this new zone, can i set the zone up without running the command 'add net' and not adding an ip or physical interface? i tried to add dummy internet settings and get this zonecfg:coddr> add net... (4 Replies)
Discussion started by: newbiesolaris10
4 Replies

9. Solaris

Unable to access open solaris across the network.

Hi Everyone, I have installed open solaris 10 on one of the x86 machines available but inspite of configuring the IP i am unable to access the machine through the network. Can anyone please help me wih the settings required to access the machine across the network.Its really Urg..Any help is... (13 Replies)
Discussion started by: sankasu
13 Replies

10. Solaris

Solaris 10 network configuration problem with zone

I am seeking help from the gurus in this forum and hope that I can find answers soon. Anyone who provide the answers will be greatly appreciated. I have a sparc box with Solaris 10 on it. We install Solaris with zone structure. One global zone and two other zone. I installed Oracle DB on global... (6 Replies)
Discussion started by: duke0001
6 Replies
Login or Register to Ask a Question