Using VLANs With Zones

Language:

You can configure multiple virtual networks within a single network unit such as a switch by combining VLANs and Oracle Solaris zones. Consider the following figure, which illustrates a system with three physical network cards: net0, net1, and net2.

Figure 3-3 System With Multiple VLANs

image:This figure shows using VLANs with zones.

Without VLANs, you would configure different systems to perform specific functions and connect these systems to separate networks. For example, web servers would be connected to one LAN, authentication servers to another LAN, and application servers to a third LAN. With VLANs and zones, you can combine all eight systems and configure them as zones in a single system. Then you can use VLAN IDs to assign a VLAN to each set of zones that perform the same functions. The following table lists the information provided in the figure.

Function	Zone Name	VLAN Name	VLAN ID	IP Address	NIC
Web server	`webzone1`	`web1`	`111`	`10.1.111.0`	`net0`
Authentication server	`authzone1`	`auth1`	`112`	`10.1.112.0`	`net0`
Application server	`appzone1`	`app1`	`113`	`10.1.113.0`	`net0`
Web server	`webzone2`	`web2`	`111`	`10.1.111.1`	`net1`
Authentication server	`authzone2`	`auth2`	`112`	`10.1.112.1`	`net1`
Application server	`appzone2`	`app2`	`113`	`10.1.113.1`	`net1`
Web server	`webzone3`	`web3`	`111`	`10.1.111.2`	`net2`
Authentication server	`authzone3`	`auth3`	`112`	`10.1.112.2`	`net2`

To create the configuration shown in the figure, refer to Example 3–2.