skipif: Managing Network Interfaces
skipif is used to add or delete SKIP from network interfaces.skipif is also used to save SKIP's ACL for a given network interface so that it is permanent across system reboots. In addition, skipif is used to list the network interfaces present in the system and optionally to print the current access control configuration for each network interface.
SKIP's ACL for each network interface is stored as a text file (as a series of skiphost commands to be executed during SKIP start-up). SKIP's ACL files are under the /etc/skip directory and the ACL file name for a given interface is acl.interface_name (for example, acl.le0, acl.hme0, and acl.qe1). If an incorrect or incomplete ACL prevents the system from operating, it may be necessary to modify the file manually or remove the appropriate file. Some non-LAN interfaces (PPP, for example) will not be configured at boot time even if an ACL exists for these interfaces. It is the responsibility of the user in the interface configuration procedure to use the SKIP configuration file for this interface.
skipif notifies the user if it is necessary to reboot the system so that any changes will take effect.
Syntax
skipif -[i ifname|all|a|d|s|l|h]
Options
|
-i [interface] |
The -i option is used to specify the name of the inter face for which the command is applicable. If this option is not specified skipif operates on the system's primary network interface. If the interface name all is used, the command will be applied to all the network interfaces present in the system. The loopback inter face "lo0" is excluded. |
|
-a |
This option is used to add SKIP to a network interface. The access control list is initialized as empty with SKIP present on the interface but disabled (off). |
|
-s |
This option is used to make the current access control list permanent across system reboots. This option must be used with care as an incorrect or incomplete access control list can stop the system from functioning correctly. |
|
-d |
Deletes SKIP from a network interface. The network interface is returned to normal non protected operation. |
|
-l |
This option lists all the network interfaces present in the system. If the interface has SKIP added it will be tagged [skip]. If the access control list for the interface has been modified but not saved, the inter face will be tagged with [ACL not saved]. Using the -v option will cause skipif to print the access control list for each interface along with its status. |
|
-h |
This option displays the skipif usage message. |
See the man pages for more detail.
- © 2010, Oracle Corporation and/or its affiliates