Trusted Extensions supports labeled and unlabeled hosts on a trusted network. The txzonemgr GUI and the tncfg command are used to configure the network.
Systems that run Trusted Extensions software support network communications between Trusted Extensions systems and any of the following types of hosts:
Other hosts that are running Trusted Extensions
Hosts that are running operating systems that do not recognize security attributes, but do support TCP/IP, such as Oracle Solaris systems, other UNIX systems, Microsoft Windows, and Macintosh OS systems
Hosts that are running other trusted operating systems that recognize CIPSO labels for IPv4 packets and CALIPSO labels for IPv6 packets
As in the Oracle Solaris OS, Trusted Extensions network communications and services can be managed by a naming service. Trusted Extensions adds the following interfaces to Oracle Solaris network interfaces:
Trusted Extensions adds commands and provides a GUI to administer trusted networking. Trusted Extensions also adds options to the Oracle Solaris network commands. For a description of these commands, see Network Commands in Trusted Extensions.
The interfaces manage three Trusted Extensions network configuration databases, tnzonecfg, tnrhdb, and tnrhtp. For details, see Network Configuration Databases in Trusted Extensions.
Trusted Extensions adds the tnrhtp and tnrhdb databases to the properties of the naming service switch SMF service, svc:/system/name-service/switch.
Part I, Initial Configuration of Trusted Extensions describes how to define zones and hosts when you configure the network. For additional procedures, see Chapter 16, Managing Networks in Trusted Extensions.
Trusted Extensions extends the IKE configuration file, /etc/inet/ike/config. For more information, see Administration of Labeled IPsec and the ike.config(4) man page