[brandz-discuss] getting networking going in an lx zone
Russ Blaine
russell.blaine at sun.com
Fri Oct 6 10:13:12 PDT 2006
James C. McPherson wrote:
>> What is the problem that you're seeing? You can't ssh out of your
>> zone? Can you ping the global zone? What does ifconfig -a say in the
>> global zone?
>
> I've had this too. I can ping the global zone, and I can query the
> caching nameserver that I'm running in the global zone. I just can't
> connect to any IP outside of the ones associated with my global zone.
>
> One thing I should mention is that I'm seeing this in my office where
> I have to use dhcp. Might that make a difference, and if so, why?
dhcp vs non-dhcp shouldn't make a difference.
Can you ssh into the global zone, or just ping it? And did you follow the
ipnat setup in Ed's blog exactly?
One thing I don't see mentioned there which I remember having to do for my
own setup of ipfilter is turn on IP forwarding in the global zone. I don't
see that in Ed's blog, nor in Mike Ditto's.
bash-3.00# ndd /dev/ip ip_forwarding
0
Try turning it on:
bash-3.00# ndd -set /dev/ip ip_forwarding 1
bash-3.00# ndd /dev/ip ip_forwarding
1
See if that makes a difference.
-----------------------------------------------------
Russ Blaine | Solaris Kernel Development
More information about the brandz-discuss
mailing list