Trusted Solaris Administrator's Procedures

To Set Up Static Routes with Emetrics

Assume the System Administrator role and go to an ADMIN_LOW workspace.

Double-click the Set TSOL Gateways action in the System_Admin folder to open the /etc/tsolgateways file for editing.

See the tsolgateways(4) man page for more about the syntax and use of /etc/tsolgateways. The syntax of the emetric in tsolgateways is the same as for the route command.

Set up one or more default entries, if desired.

The first entry sets up a default route, using a specific gateway's address 192.168.113.36 and a metric of 1 to be used when there is no specific route defined for either the host or destination of a packet.
default 192.168.113.36 1

Set up one or more network entries, if desired.

The second line below shows a network entry set up with a standard metric. The third line shows a network entry set up with an emetric, setting a label range of PUBLIC to INTERNAL.
default 192.168.113.36 1 net 192.168.102.0 gateway-101 1 net 192.168.101.0 gateway-102 -m metric=2,min_sl="PUBLIC", max_sl="INTERNAL"

Set up one or more host entries, if desired.

The new fourth line shows a host entry set up for a gateway host named trusted with an emetric setting a label range of PUBLIC to PUBLIC.

default 192.168.113.36  1
net 192.168.102.0 gateway-101 1
net 192.168.101.0 gateway-102 -m metric=2,min_sl="PUBLIC",
max_sl="INTERNAL"
host 192.168.101.3 trusted -m metric=2,min_sl="PUBLIC",
max_sl="PUBLIC"

Make sure there is an entry for any destination host(s) and gateway(s) in the local /etc/hosts file, or NIS+ hosts.org_dir table.
192.168.113.36 mynah

Make sure there is an entry for all destination hosts, network(s) and gateway(s) in the local /etc/security/tsol/tnrhdb file.
192.168.113.36:tsol1

Write and quit the file.
:wq

© 2010, Oracle Corporation and/or its affiliates