Unable to get Solaris 11 Zone onto the network | Unix Linux Forums | Solaris

  Go Back    


Solaris The Solaris Operating System, usually known simply as Solaris, is a Unix-based operating system introduced by Sun Microsystems. The Solaris OS is now owned by Oracle.

Unable to get Solaris 11 Zone onto the network

Solaris


Closed Thread    
 
Thread Tools Search this Thread Display Modes
    #1  
Old 12-10-2013
unblockable unblockable is offline
Registered User
 
Join Date: Dec 2013
Last Activity: 23 October 2014, 4:10 PM EDT
Posts: 16
Thanks: 7
Thanked 0 Times in 0 Posts
Unable to get Solaris 11 Zone onto the network

Hello, I followed these instructions to create a Solaris 11 zone:

Code:
http://www.oracle.com/technetwork/articles/servers-storage-admin/o11-092-s11-zones-intro-524494.html

And I am unable to ping anything from the Local Zone except for the IP address of the global zone.

My global zone has an IP address of 10.25.63.55 and my local zone has an IP address of 10.25.63.69.

Global Zone

Code:
root@sol11:~# netstat -rn

Routing Table: IPv4
  Destination           Gateway           Flags  Ref     Use     Interface
-------------------- -------------------- ----- ----- ---------- ---------
default              10.25.63.1           UG        4     451672 net0
10.25.63.0           10.25.63.55          U         4          3 net0
127.0.0.1            127.0.0.1            UH        3      18679 lo0

root@sol11:~# ifconfig -a
lo0: flags=2001000849<UP,LOOPBACK,RUNNING,MULTICAST,IPv4,VIRTUAL> mtu 8232 index 1
        inet 127.0.0.1 netmask ff000000
net0: flags=1000943<UP,BROADCAST,RUNNING,PROMISC,MULTICAST,IPv4> mtu 1500 index 2
        inet 10.25.63.55 netmask ffffff00 broadcast 10.25.63.255
        ether 0:14:4f:f9:4:2b
lo0: flags=2002000849<UP,LOOPBACK,RUNNING,MULTICAST,IPv6,VIRTUAL> mtu 8252 index 1
        inet6 ::1/128
net0: flags=20002000941<UP,RUNNING,PROMISC,MULTICAST,IPv6> mtu 1500 index 2
        inet6 fe80::214:4fff:fef9:42b/10
        ether 0:14:4f:f9:4:2b
net0:1: flags=20002080941<UP,RUNNING,PROMISC,MULTICAST,ADDRCONF,IPv6> mtu 1500 index 2
        inet6 2620:0:170:588:214:4fff:fef9:42b/64

root@sol11:~# dladm show-link
LINK                CLASS     MTU    STATE    OVER
net0                phys      1500   up       --
testzone/net0       vnic      1500   up       net0

Local Zone

Code:
root@zone:~# netstat -rn

Routing Table: IPv4
  Destination           Gateway           Flags  Ref     Use     Interface
-------------------- -------------------- ----- ----- ---------- ---------
default              10.25.63.1           UG        2       1443 net0
10.25.63.0           10.25.63.69          U         4          6 net0
127.0.0.1            127.0.0.1            UH        2         12 lo0

root@zone:~# ifconfig -a
lo0: flags=2001000849<UP,LOOPBACK,RUNNING,MULTICAST,IPv4,VIRTUAL> mtu 8232 index 1
        inet 127.0.0.1 netmask ff000000
net0: flags=1000843<UP,BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 3
        inet 10.25.63.69 netmask ffffff00 broadcast 10.25.63.255
        ether 2:8:20:47:cb:60
lo0: flags=2002000849<UP,LOOPBACK,RUNNING,MULTICAST,IPv6,VIRTUAL> mtu 8252 index 1
        inet6 ::1/128
net0: flags=20002000841<UP,RUNNING,MULTICAST,IPv6> mtu 1500 index 3
        inet6 fe80::8:20ff:fe47:cb60/10
        ether 2:8:20:47:cb:60
net0:1: flags=20002080841<UP,RUNNING,MULTICAST,ADDRCONF,IPv6> mtu 1500 index 3
        inet6 2620:0:170:588:8:20ff:fe47:cb60/64

root@zone:~# dladm show-link
LINK                CLASS     MTU    STATE    OVER
net0                vnic      1500   up       ?
root@zone:~# ipadm show-addr
ADDROBJ           TYPE     STATE        ADDR
lo0/v4            static   ok           127.0.0.1/8
net0/v4           static   ok           10.25.63.69/24
lo0/v6            static   ok           ::1/128
net0/v6           addrconf ok           fe80::8:20ff:fe47:cb60/10
net0/v6           addrconf ok           2620:0:170:588:8:20ff:fe47:cb60/64

I removed the IPv6 routing tables because they seemed irrelevant, but please let me know if they are necessary.

Any help would be appreciated.
Sponsored Links
    #2  
Old 12-11-2013
hicksd8 hicksd8 is offline Forum Advisor  
Registered User
 
Join Date: Feb 2012
Last Activity: 25 November 2014, 7:47 AM EST
Location: Cornwall, UK
Posts: 854
Thanks: 46
Thanked 159 Times in 144 Posts
See below.

Last edited by hicksd8; 12-13-2013 at 06:19 AM..
Sponsored Links
    #3  
Old 12-11-2013
unblockable unblockable is offline
Registered User
 
Join Date: Dec 2013
Last Activity: 23 October 2014, 4:10 PM EDT
Posts: 16
Thanks: 7
Thanked 0 Times in 0 Posts
Quote:
Originally Posted by hicksd8 View Post
Is the non-global zone ip interface set to "shared"?

Both global and non-global zone look to be set to use "net0" so if the non-global zone requests "exclusive", it's not going to get it because the global zone is using it.
Thanks for your reply. How can I check to see if it is shared?

Also, the instructions I used to create a zone mention this:
Quote:
By default, all Oracle Solaris Zones are configured to have an automatic VNIC called anet, which gives us a network device automatically. We cannot see this network device yet, because it is automatically created when the zone is booted and also automatically destroyed on shutdown.
So I thought the interface should be automatically set up on the zone.

There might be some confusion because on the global zone the physical interface is also named net0, perhaps because the global zone is an LDom. So my global zone shows this:

Code:
root@sol11:~# dladm show-link
LINK                CLASS     MTU    STATE    OVER
net0                phys      1500   up       --
testzone/net0       vnic      1500   up       net0

While the aforementioned instructions show this:

Code:
root@global:~# dladm show-link
LINK                CLASS     MTU    STATE    OVER
e1000g0             phys      1500   up       --
e1000g1             phys      1500   unknown  --
testzone/net0       vnic      1500   up       e1000g0

Confusing for a network novice such as myself
    #4  
Old 12-12-2013
hicksd8 hicksd8 is offline Forum Advisor  
Registered User
 
Join Date: Feb 2012
Last Activity: 25 November 2014, 7:47 AM EST
Location: Cornwall, UK
Posts: 854
Thanks: 46
Thanked 159 Times in 144 Posts
POST REMOVED

Reason: Relative to Solaris 10 only.

Last edited by hicksd8; 12-13-2013 at 06:18 AM..
Sponsored Links
    #5  
Old 12-12-2013
unblockable unblockable is offline
Registered User
 
Join Date: Dec 2013
Last Activity: 23 October 2014, 4:10 PM EDT
Posts: 16
Thanks: 7
Thanked 0 Times in 0 Posts
Quote:
Originally Posted by hicksd8 View Post
Your physical interfaces are e1000g0 and e1000g1. You don't say what your hardware is. You may also have e1000g2 and e1000g3 is your box has 4 Ethernet interfaces.

A non-global zone has its virtual interface mapped to a physical interface using zonecfg. (Look at the man pages for zonecfg and see the options involving <physical interface>.

The global zone may have been installed to use just one ethernet interface or more than one interface, either as separate ip addresses or teamed together (technical known as aggregation (aggr) in the Solaris world).

If your global zone only uses e1000g0 then you can configure your non-global zone to use e1000g1 exclusively (dedicated to this zone). Alternatively, you could configure it as "shared" and configure it on the same interface as the global zone. To use the same interface as the global zone, a non-global cannot be configured to use that interface "exclusive", of course!!!!
Thanks again for your reply. I apologize, I may have been unclear: e1000g0 and e1000g1 are from the instructions on the Oracle blog. My global zone is showing one interface, net0.

Quote:
How many non-global zones do you have? You don't want to run out of available interfaces by configuring them as exclusive if you haven't got enough.
I have one non-global zone, this test zone that I have created.

I think I see what you mean about shared/exclusive interface. Is it this?


Code:
root@sol11:~# zonecfg -z testzone info
zonename: testzone
zonepath: /zones/testzone
brand: solaris
autoboot: true
bootargs: -m verbose
file-mac-profile:
pool:
limitpriv:
scheduling-class:
ip-type: exclusive <--------
hostid:
fs-allowed:
anet:
        linkname: net0
        lower-link: auto
        allowed-address not specified
        configure-allowed-address: true
        defrouter not specified
        allowed-dhcp-cids not specified
        link-protection: mac-nospoof
        mac-address: random
        auto-mac-address: 2:8:20:47:cb:60
        mac-prefix not specified
        mac-slot not specified
        vlan-id not specified
        priority not specified
        rxrings not specified
        txrings not specified
        mtu not specified
        maxbw not specified
        rxfanout not specified

Would you suggest that I run the command "zonecfg set ip-type=shared" and try again?

EDIT:

I have attempted to set the ip-type to "shared" to see if that would do the trick, unfortunately it is giving me an error:

Code:
root@sol11:~# man zonecfg |grep ip-type
Reformatting page.  Please Wait... done
     global: ip-type
         zone. In the default zone template, SYSdefault,  ip-type
         shared-ip template, ip-type is set to shared.
       (global)          ip-type         simple
       zonecfg:shared> set ip-type=shared
       zonecfg:rozone> set ip-type=exclusive
root@sol11:~# zonecfg -z testzone
zonecfg:testzone> set ip-type=shared
zonecfg:testzone> verify
anet resources can only be specified if ip-type = exclusive
testzone: Incompatible settings
zonecfg:testzone>

Sponsored Links
    #6  
Old 12-13-2013
hicksd8 hicksd8 is offline Forum Advisor  
Registered User
 
Join Date: Feb 2012
Last Activity: 25 November 2014, 7:47 AM EST
Location: Cornwall, UK
Posts: 854
Thanks: 46
Thanked 159 Times in 144 Posts
Seems like I'm wrong and Solaris 11 has a new way of configuring zone network interfaces.

http://www.alekz.net/archives/449

http://www.censhare.com/en/overview/...vlans-in-zones

What hardware is this?

Last edited by hicksd8; 12-13-2013 at 06:26 AM..
The Following User Says Thank You to hicksd8 For This Useful Post:
unblockable (12-16-2013)
Sponsored Links
    #7  
Old 12-16-2013
unblockable unblockable is offline
Registered User
 
Join Date: Dec 2013
Last Activity: 23 October 2014, 4:10 PM EDT
Posts: 16
Thanks: 7
Thanked 0 Times in 0 Posts
Quote:
Originally Posted by hicksd8 View Post
Seems like I'm wrong and Solaris 11 has a new way of configuring zone network interfaces.


Code:
http://www.alekz.net/archives/449


Code:
http://www.censhare.com/en/overview/cenblog/solaris-11-ip-multipathing-vlans-in-zones

What hardware is this?
Thank you, I will look through these links.

The hardware is a SPARC T3-1 with one ethernet cable plugged into the back. The global zone is an LDom running on the host machine. My host machine, global zone and local zone all have IPs on the same subnet.
Sponsored Links
Closed Thread

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

More UNIX and Linux Forum Topics You Might Find Helpful
Thread Thread Starter Forum Replies Last Post
Branded Solaris 10 zone no network aeroforce Solaris 1 09-26-2013 12:03 PM
Unable to access serial port from non-global solaris zone on netra 240 disagreeable Solaris 0 11-20-2010 10:57 AM
Creating A Solaris Zone - Unable to install - Are network settings required? newbiesolaris10 Solaris 4 04-13-2010 05:50 PM
Unable to access open solaris across the network. sankasu Solaris 13 09-26-2009 08:44 AM
Solaris 10 network configuration problem with zone duke0001 Solaris 6 10-12-2007 11:02 AM



All times are GMT -4. The time now is 10:53 PM.