Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Default route issue in share local zone in Solaris 11
Operating Systems Solaris Default route issue in share local zone in Solaris 11 Post 303024222 by sb200 on Wednesday 3rd of October 2018 11:03:10 AM
Old 10-03-2018
Thanks jlliagre / Hicksd8/ Jim McNamara

I resolve this issue temporary after finding out local zone interface in "tentative" state from "ipadm show-addr" command.
I down that interface and add the one more virtual interface in local zone by running " ifconfig <virtual interface> plumb <IP address> Netmask 255.255.255.0 zone <zone name > up. Yes that true that I had one more virtual interface on same interface with same address which I unplumb it two days back due to which actual zone interface goes into tentative state.

Now I have two queries. First query is that is there any way to get rid of zone actual virtual interface's tentative state other reboot of global or local zone as I am not able to find anything related to tentative state much on google search.

Second query is how can we add the IP/interface on the fly to running solaris 11 local zone on the fly other than ifconfig command.

Further if I add the IP on the local zone on the fly by above mention ifconfig command on the first column of "ipaddm show-addr'' command output it show v4a instead of zoneadm something against the virtual interface which I added to resolve the issue. Why it show like that


Note : I am not in a position to share the output of above command
 

9 More Discussions You Might Find Interesting

1. Solaris

Not able to ping global zone from local zone

Hi Gurus I am not able to ping the local zone from global zone when i am trying to ping i am getting below ICMP Host Unreachable from gateway zone ( 192.268.35.210) for icmp from zone ( 192.168.35.210) to sun1 ( 192.168.35.210) However i can ping local zone from global please... (12 Replies)
Discussion started by: kumarmani
12 Replies

2. Solaris

Global zone name from local zone

How to check the global zone name from local zone. (6 Replies)
Discussion started by: fugitive
6 Replies

3. Solaris

Postprocess issue installing Solaris 9 Branded Zone

Hello, I am attempting to install a newly configured Solaris 9 zone using the flash archive image provided on the sun website. Each time I run the install I get a failure during the Postprocess: Creating mount points. Following is the log: Log File: /var/tmp/s9-zone.install.25457.log... (0 Replies)
Discussion started by: brialt1
0 Replies

4. Solaris

Solaris 10 11/06 Zone creation issue

Hi, I am new to zone creations in solaris 10. When I try to create a zone with "set ip-type=exclusive" it gives the usage. OS == Solaris 10 11/06 s10s_u3wos_10 SPARC Copyright 2006 Sun Microsystems, Inc. All Rights Reserved. Use is subject to license... (17 Replies)
Discussion started by: niman
17 Replies

5. Solaris

Covert Global zone to local zone

Dears, I would like to convert solaris 10 x86 and solaris 10 sparc (Global Zones) physical servers into Local zones. i found a document which seems to be helpful but i'm stuck @ the 1st step. to test this i want to do it 1st on x86 system running under vmware ESXi and if it succeeds i will... (1 Reply)
Discussion started by: mduweik
1 Replies

6. Solaris

Backup / Clone Solaris Zone Issue

Hi, I'd like to discuss the subject of backing up / cloning Solaris zone. I was trying to clone zone A to zone B (Solaris 10 11/06: Cloning a Non-Global Zone on the Same System (System Administration Guide: Oracle Solaris Containers-Resource Management and Oracle Solaris Zones)). The first test... (7 Replies)
Discussion started by: aixlover
7 Replies

7. Solaris

Solaris 10 local zone on Solaris 11 global zone

Hi, A quick question: Can Solaris 10 local zones be moved to a Solaris 11 global zone and work well? Thank you in advance! (5 Replies)
Discussion started by: aixlover
5 Replies

8. Solaris

Solaris 10 NFS Share Issue

Hello all, I am having an issue with an NFS share I have created between two Solaris 10 boxes. I want the share to have read/write permissions, but for some reason it is coming up as read-only on the client side mount despite "rw" being specified in the mount options. Here is what I have... (6 Replies)
Discussion started by: fallersaur
6 Replies

9. UNIX for Beginners Questions & Answers

How to create a Solaris local zone with an exclusive NIC?

I'm trying to migrate a Solaris 10 flar archive from a Sun M3000 to a T4-1. When I first created the zone I followed the Oracle instructions here: Transitioning an Oracle Solaris 10 Instance to an Oracle Solaris 11 System - Transitioning From Oracle Solaris 10 to Oracle Solaris 11 That worked... (6 Replies)
Discussion started by: Michele31416
6 Replies

LEARN ABOUT OPENSOLARIS

tnctl

tnctl(1M)						  System Administration Commands						 tnctl(1M)

NAME

       tnctl - configure Trusted Extensions network parameters

SYNOPSIS

       /usr/sbin/tnctl [-dfv] [-h host [/prefix] [:template]]
	    [-m zone:mlp:shared-mlp][-t template [:key=val [;key=val]]]
	    [-HTz] file]

DESCRIPTION

       tnctl provides an interface to manipulate trusted network parameters in the Solaris kernel.

       As  part  of  Solaris  Trusted Extensions initialization, tnctl is run in the global zone by an smf(5) script during system boot. The tnctl
       command is not intended to be used during normal system administration. Instead, if a local trusted networking database	file  is  modified
       without using the Solaris Management Console, the administrator first issues tnchkdb(1M) to check the syntax, and then refreshes the kernel
       copy with this command:

	 # svcadm restart svc:/network/tnctl

       See WARNINGS about the risks of changing remote host and template information on a running system.

OPTIONS

       -d

	   Delete matching entries from the kernel. The default is to add new entries.

	   When deleting MLPs, the MLP range must match exactly. MLPs are specified in the form:

	     port[-port]/protocol

	   Where port can be a number in the range 1 to 65535. or any known service (see services(4)), and protocol can be a number in the range 1
	   to 255, or any known protocol (see protocols(4)).

       -f

	   Flush  all  kernel  entries	before loading the entries that are specified on the command line. The flush does not take place unless at
	   least one entry parsed successfully.

       -v

	   Turn on verbose mode.

       -h host[/prefix][:template]

	   Update the kernel remote-host cache on the local host for  the specified host or, if a template name  is  given,  change  the  kernel's
	   cache  to  use  the	specified template. If prefix is not specified, then an implied prefix length is determined according to the rules
	   used for interpreting the tnrhdb. If -d is specified, then a template name cannot be specified.

       -m zone:mlp:shared-mlp

	   Modify the kernel's multilevel port (MLP) configuration cache for the specified zone. zone specifies the zone to be	updated.  mlp  and
	   shared-mlp specify the MLPs for the zone-specific and shared IP addresses. The shared-mlp field is effective in the global zone only.

       -t template[key=val[;key=val]]

	   Update  the	kernel template cache for template or, if a list of key=val pairs is given, change the kernel's cache to use the specified
	   entry. If -d is specified, then key=val pairs cannot be specified.

       -T file

	   Load all template entries in file into the kernel cache.

       -H file

	   Load all remote host entries in file into the kernel cache.

       -z file

	   Load just the global zone's MLPs from file into the kernel cache. To reload MLPs for a non-global zone, reboot the zone:

	     # zoneadm -z non-global zone reboot

ATTRIBUTES

       See attributes(5) for descriptions of the following attributes:

       +-----------------------------+-----------------------------+
       |      ATTRIBUTE TYPE	     |	    ATTRIBUTE VALUE	   |
       +-----------------------------+-----------------------------+
       |Availability		     |SUNWtsu			   |
       +-----------------------------+-----------------------------+
       |Interface Stability	     |Uncommitted		   |
       +-----------------------------+-----------------------------+

FILES

       /etc/security/tsol/tnrhdb

	   Trusted network remote-host database

       /etc/security/tsol/tnrhtp

	   Trusted network remote-host templates

       /etc/security/tsol/tnzonecfg

	   Trusted zone configuration database

       /etc/nsswitch.conf

	   Configuration file for the name service switch

SEE ALSO

       svcs(1), svcadm(1M), tninfo(1M), tnd(1M), tnchkdb(1M), zoneadm(1M), nsswitch.conf(4), protocols(4), services(4), attributes(5), smf(5)

       How to Synchronize Kernel Cache With Network Databases in Solaris Trusted Extensions Administrator's Procedures

WARNINGS

       Changing a template while the network is up can change the security view of an undetermined number of hosts.

NOTES

       The functionality described on this manual page is available only if the system is configured with Trusted Extensions.

       The tnctl service is managed by the service management facility, smf(5), under the service identifier:

	 svc:/network/tnctl

       The service's status can be queried by using svcs(1). Administrative actions on this service, such as refreshing the kernel cache,  can	be
       performed using svcadm(1M), as in:

	 svcadm restart svc:/network/tnctl

SunOS 5.11							    6 Mar 2008								 tnctl(1M)
All times are GMT -4. The time now is 02:04 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy