The UNIX and Linux Forums  

Go Back   The UNIX and Linux Forums > Operating Systems > SUN Solaris
building solaris-based enterprise router-firewall project building solaris-based enterprise router-firewall project
.
google unix.com

Forums Register Forum RulesLinksAlbums FAQ Members List Calendar Search Today's Posts Mark Forums Read


SUN Solaris The Solaris Operating System, usually known simply as Solaris, is a free Unix-based operating system introduced by Sun Microsystems .

More UNIX and Linux Forum Topics You Might Find Helpful
Thread Thread Starter Forum Replies Last Post
Help needed in IPTables firewall/router setup - Linux chandan_m Security 1 11-06-2008 10:56 PM
Using iChat with a firewall or NAT router iBot OS X Support RSS 0 10-13-2008 11:20 PM
Protect your network with pfSense firewall/router iBot UNIX and Linux RSS News 0 10-03-2008 05:30 AM
Building project using MAKE abhinavsinha UNIX for Dummies Questions & Answers 0 05-28-2008 03:38 AM
Building Event-Driven Architecture with an Enterprise Service Bus iBot Oracle Updates (RSS) 0 04-06-2008 06:10 AM

 
English Japanese Spanish French German Portuguese Italian Dutch Swedish Russian Norwegian Hungarian Hebrew Danish Bulgarian Greek Powered by Powered by Google
 
LinkBack Thread Tools Search this Thread Rate Thread Display Modes
Prev Previous Post   Next Post Next
  #1 (permalink)  
Old 06-10-2009
stdout stdout is offline
Registered User
  
 

Join Date: Feb 2006
Posts: 103
building solaris-based router-firewall project
hi guys,

its been a while since my last visit here,
could not keep up the pace on this ever changing industry

i'd just doing my home research under vmware to make a solaris-based router-firewall using zones - doing a lot of reading about zones & review solaris zone functionality.

and now, i'm a bit stuck interpreting these ip-type=shared and ip-type=exclusive under the non-global zone. i mean, cant i just have that NIC belongs to a non-global zone without being plumbed under the global-zone?

i'm sorry for this long question, but i'll make it short - does anyone has done this before?

my scenario is :
a stripped down SXCE using 3-NICs - so that it will be a 3-legs firewall :
global-zone=LAN interface, NIC#1,
WAN, NIC#2
DMZ, NIC#3
and, i also like to have somekind of tunnel interface between zones - so that the traffic entering WAN from LAN doesnt have to go out from the NIC?

so, is there any possibilities to do this setup?

any constructive input would be very appreciated.

thank you.

-----Post Update-----

addition :

on my current setup - under the global zone, i have 3 NICs - and each one having subinterface for the non-global zone, so

lo0 127/8
lo0.1 WAN 127/8
lo0.2 DMZ 127/8
pcn0 global 192.168.10.1/24
pcn1.0 global 0/8
pcn1.1 WAN 10.0.0.1/24
pcn2.0 global 0/8
pcn2.1 DMZ 172.16.0.1/24

so, all this interface are ip shared.

what i mean is that : can i just have that pcn1 belongs to WAN, pcn2 to DMZ without using the global zone as host?

thanks
Last edited by stdout; 08-02-2009 at 03:44 AM..
 

Bookmarks

« Solaris-RHEL5 Dual boot issue | Install Solaris pkg via web »
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes Rate This Thread
Threaded Mode Threaded Mode
Rate This Thread:

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT -4. The time now is 02:33 AM.

The UNIX and Linux Forums - Learn UNIX and UNIX Commands RSS Feeds - Contact Us - The UNIX and Linux Forums - Learn UNIX and UNIX Commands - Archive - Top

Powered by: vBulletin, Copyright ©2000 - 2006, Jelsoft Enterprises Limited. Language Translations Powered by .
vBCredits v1.4 Copyright ©2007 - 2008, PixelFX Studios
The UNIX and Linux Forums Content Copyright ©1993-2009. All Rights Reserved.Ad Management by RedTyger

Content Relevant URLs by vBSEO 3.2.0