Solaris IP Filter in Shared-IP Zones (System Administration Guide: Virtualization Using the Solaris Operating System)

System Administration Guide: Virtualization Using the Solaris Operating System

Previous: IP Traffic Between Shared-IP Zones on the Same Machine
Next: IP Network Multipathing in Shared-IP Zones

Solaris IP Filter in Shared-IP Zones

Solaris IP Filter provides stateful packet filtering and network address translation (NAT). A stateful packet filter can monitor the state of active connections and use the information obtained to determine which network packets to allow through the firewall. Solaris IP Filter also includes stateless packet filtering and the ability to create and manage address pools. See Chapter 25, Solaris IP Filter (Overview), in System Administration Guide: IP Services for additional information.

Solaris IP Filter can be enabled in non-global zones by turning on loopback filtering as described in Chapter 26, Solaris IP Filter (Tasks), in System Administration Guide: IP Services.

Solaris IP Filter is derived from open source IP Filter software.

Previous: IP Traffic Between Shared-IP Zones on the Same Machine
Next: IP Network Multipathing in Shared-IP Zones