[indiana-discuss] services running inside zone
Brian Ruthven - Sun UK
Brian.Ruthven at Sun.COM
Tue May 12 01:42:34 PDT 2009
What is the output from rpcinfo within the zone? What RPC services have
registered with rpcbind?
You may find things like keyserv and nlockmgr are running (which are
dependancies for nfs/client).
You may find that disabling it will break this zone's ability to be an
nfs client (not a problem if you know you don't want this). However, the
rpc/bind service does have a config/local_only setting which IIRC
restricts it to listen only on the loopback address. (See rpcbind(1M)
for the details on this), so you could consider whether enabling this is
appropriate.
Regards,
Brian
Anil wrote:
> I installed a native OpenSolaris zone and I see the following IP services running:
>
> TCP: IPv4
> Local Address Remote Address Swind Send-Q Rwind Recv-Q State
> -------------------- -------------------- ----- ------ ----- ------ -----------
> *.* *.* 0 0 49152 0 IDLE
> *.22 *.* 0 0 49152 0 LISTEN
> *.111 *.* 0 0 49152 0 LISTEN
> *.* *.* 0 0 49152 0 IDLE
> *.111 *.* 0 0 49152 0 LISTEN
> *.* *.* 0 0 49152 0 IDLE
>
> TCP: IPv6
> Local Address Remote Address Swind Send-Q Rwind Recv-Q State If
> --------------------------------- --------------------------------- ----- ------ ----- ------ ----------- -----
> *.* *.* 0 0 49152 0 IDLE
> *.22 *.* 0 0 49152 0 LISTEN
> *.111 *.* 0 0 49152 0 LISTEN
> *.* *.* 0 0 49152 0 IDLE
>
> The port 111 is clearly from rpc/bind. Any reason why that is left running? I don't see why that is needed unless there is requirement for NFS or other related service. Why not leave it disabled also? Should I file a RFE for this?
>
--
Brian Ruthven Sun Microsystems UK
Solaris Revenue Product Engineering Tel: +44 (0)1252 422 312
Sparc House, Guillemont Park, Camberley, GU17 9QG
More information about the indiana-discuss
mailing list