Index (System Administration Guide: IP Services)

System Administration Guide: IP Services


Numbers and Symbols

	* (asterisk), wildcard in `bootparams` database ( )

	`>` prompt, `ipseckey` interactive mode ( )

	`-a` option
		`ikecert certdb` command ( ) ( )
		`ikecert certrldb` command ( )
		`ikecert` command ( )

	`-c` option
		`in.iked` daemon ( )
		`ipsecconf` command ( ) ( )
		`ipseckey` command ( ) ( )

	`-D` option
		`ikecert certlocal` command ( )
		`ikecert` command ( )

	`-F` option, `ikecert certlocal` command ( )

	`-f` option, `in.iked` daemon ( )

	`-kc` option
		`ikecert certlocal` command ( ) ( ) ( )

	`-ks` option
		`ikecert certlocal` command ( ) ( )

	`-L` option, `ipsecconf` command ( )

	`-l` option
		`ikecert certdb` command ( )
		`ipsecconf` command ( )

	`-m` option, `ikecert certlocal` command ( )

	`-q` option, `in.routed` daemon ( )

	“r” commands, in UNIX ( )

	`-S` option
		`ikecert certlocal` command ( )
		`in.routed` daemon ( )

	`-s` option, `ping` command ( )

	`-T` option
		`ikecert certlocal` command ( )

	`-t` option
		`ikecert certlocal` command ( )
		`ikecert` command ( )
		`inetd` daemon ( )

	3DES encryption algorithm, IPsec and ( )

	6to4 address
		format ( )
		host address ( )

	6to4 advertisement ( )

	6to4 prefix
		`/etc/inet/ndpd.conf` advertisement ( )
		explanation of parts ( )

	6to4 pseudo-interface configuration ( )

	6to4 relay router
		in a 6to4 tunnel ( )
		security issues ( ) ( )
		tunnel configuration tasks ( ) ( )
		tunnel topology ( )

	6to4 router configuration
		examples ( )
		tasks ( )

	6to4 tunnels
		6to4 relay router ( )
		definition ( )
		known problems ( )
		packet flow ( ) ( )
		sample topology ( )

	`6to4relay` command ( )
		definition ( )
		examples ( )
		syntax ( )
		tunnel configuration tasks ( )


A

	`-A` option
		`ikecert certlocal` command ( )
		`ikecert` command ( )

	AAAA records ( ) ( )

	accelerating
		IKE computations ( ) ( )

	`acctadm` command, for flow accounting ( ) ( ) ( )

	ACK segment ( )

	`action` statement ( )

	active rule sets, See Solaris IP Filter

	adding
		CA certificates (IKE) ( )
		IPsec SAs ( ) ( )
		keys manually (IPsec) ( )
		preshared keys (IKE) ( )
		public key certificates (IKE) ( )
		self-signed certificates (IKE) ( )

	address autoconfiguration
		definition ( ) ( )
		enabling, on an IPv6 node ( ) ( ) ( )
		IPv6 ( ) ( )

	address pools
		appending ( )
		configuring ( )
		overview ( )
		removing ( )
		viewing ( )
		viewing statistics ( )

	address resolution, in IPv6 ( )

	Address Resolution Protocol (ARP)
		comparison to Neighbor Discovery protocol ( )
		definition ( )

	addresses
		6to4 format ( )
		CIDR format ( )
		default address selection ( )
		displaying addresses of all interfaces ( )
		Ethernet addresses
			`ethers` database ( ) ( )
		IPv4 format ( )
		IPv4 netmask ( )
		IPv6, 6to4 format ( )
		IPv6 global unicast ( )
		IPv6 link-local ( )
		loopback address ( )
		multicast, in IPv6 ( )
		temporary, in IPv6 ( )

	administrative model ( )

	administrative subdivisions ( )

	AES encryption algorithm, IPsec and ( )

	AH, See authentication header (AH)

	anonymous FTP program, description ( )

	anonymous login name ( )

	anycast addresses ( )
		definition ( )

	anycast groups, 6to4 relay router ( )

	application layer
		OSI ( )
		packet life cycle
			receiving host ( )
			sending host ( )
		TCP/IP ( ) ( )
			description ( ) ( ) ( )
			file services ( )
			name services ( )
			network administration ( )
			routing protocols ( )
			standard TCP/IP services ( ) ( )
			UNIX “r” commands ( )

	application server, configuring for IPQoS ( )

	assured forwarding (AF) ( ) ( )
		AF codepoints table ( )
		for a marker `action` statement ( )

	asterisk (*), wildcard in `bootparams` database ( )

	ATM support, IPv6 over ( )

	authentication algorithms, IKE ( )

	authentication header (AH)
		IPsec protection mechanism ( )
		protecting IP datagram ( )
		protecting IP packets ( )
		security considerations ( )

	automatic tunnels, transition to IPv6 ( )

	autonomous system (AS), See network topology


B

	bandwidth regulation ( )
		planning, in the QoS policy ( )

	BGP, See routing protocols

	binary to decimal conversion ( )

	Blowfish encryption algorithm, IPsec and ( )

	booting, network configuration server booting protocols ( )

	BOOTP protocol
		and DHCP ( )
		supporting clients with DHCP service ( )

	BOOTP relay agent
		configuring
			with DHCP Manager ( )
			with `dhcpconfig -R` ( )
		hops ( )

	`bootparams` database
		corresponding name service files ( )
		overview ( )
		wildcard entry ( )

	Bootparams protocol ( )

	border router ( )

	boundary router, in 6to4 site ( )

	BSD-based operating systems
		`/etc/inet/hosts` file link ( )
		`/etc/inet/netmasks` file link ( )

	bypassing
		IPsec on LAN ( ) ( )
		IPsec policy ( )


C

	`cert_root` keyword
		IKE configuration file ( ) ( )

	`cert_trust` keyword
		IKE configuration file ( ) ( )
		`ikecert` command and ( )

	certificate requests
		from CA ( )
		on hardware ( )
		use ( )

	certificate revocation lists, See CRLs

	certificates
		adding to database ( )
		creating self-signed (IKE) ( )
		description ( )
		from CA ( )
		from CA on hardware ( )
		ignoring CRLs ( )
		IKE ( )
		in `ike/config` file ( )
		listing ( )
		requesting
			from CA ( )
			on hardware ( )
		storing
			IKE ( )
			on computer ( )
			on hardware ( ) ( )

	Changing IKE Transmission Parameters (Task Map) ( )

	ciphers, See encryption algorithms

	class A, B, and C network numbers ( ) ( )

	class A network numbers
		description ( )
		IPv4 address space division ( )
		range of numbers available ( )

	class B network numbers
		description ( ) ( )
		IPv4 address space division ( )
		range of numbers available ( )

	class C network numbers
		description ( )
		IPv4 address space division ( )
		range of numbers available ( )

	class clause, in the IPQoS configuration file ( )

	`class` clause, in the IPQoS configuration file ( )

	class of service (CoS) mark ( )

	classes ( )
		defining, in the IPQoS configuration file ( ) ( )
		selectors, list of ( )
		syntax of `class` clause ( )

	classes of service, See classes

	classifier module ( )
		`action` statement ( )
		functions of the classifier ( )

	client configuration ( )

	client ID ( )

	color awareness ( ) ( )

	commands
		IKE ( )
			`ikeadm` command ( ) ( ) ( )
			`ikecert` command ( ) ( ) ( )
			`in.iked` daemon ( )
		IPsec
			`in.iked` command ( )
			`ipsecalgs` command ( ) ( )
			`ipsecconf` command ( ) ( )
			`ipseckey` command ( ) ( ) ( )
			list of ( )
			security considerations ( )
			`snoop` command ( )

	computations
		accelerating IKE in hardware ( ) ( ) ( )

	configuration files
		creating for Solaris IP Filter ( )
		IPv6
			`/etc/inet/hostname6.interface` file ( )
			`/etc/inet/ipaddrsel.conf` file ( )
			`/etc/inet/ndpd.conf` file ( ) ( ) ( )
		Solaris IP Filter examples ( )
		TCP/IP networks
			`/etc/defaultdomain` file ( )
			`/etc/defaultrouter` file ( )
			`/etc/hostname.interface` file ( )
			`/etc/nodename` file ( ) ( )
			`hosts` database ( ) ( )
			`netmasks` database ( )

	configuring
		address pools ( )
		DHCP client ( )
		DHCP service ( )
		IKE ( )
		`ike/config` file ( )
		IKE with CA certificates ( )
		IKE with certificates on hardware ( )
		IKE with mobile systems ( )
		IKE with public key certificates ( ) ( )
		IKE with self-signed certificates ( )
		interfaces manually, for IPv6 ( )
		IPsec ( )
		IPsec on LAN ( ) ( )
		`ipsecinit.conf` file ( )
		IPv6-enabled routers ( )
		NAT rules ( )
		network configuration server ( )
		network security with a role ( )
		packet filtering rules ( )
		routers ( )
			network interfaces ( ) ( )
			overview ( ) ( )
		TCP/IP configuration files ( )
			`/etc/defaultdomain` file ( )
			`/etc/defaultrouter` file ( )
			`/etc/hostname.interface` file ( )
			`/etc/nodename` file ( ) ( )
			`hosts` database ( ) ( )
			`netmasks` database ( )
		TCP/IP configuration modes
			local files mode ( ) ( )
			mixed configurations ( )
			network client mode ( )
			sample network ( )
		TCP/IP networks
			configuration files ( )
			local files mode ( )
			network clients ( )
			network databases ( ) ( ) ( )
			`nsswitch.conf` file ( ) ( )
			prerequisites ( )
			standard TCP/IP services ( )
		VPN in transport mode with IPsec ( )
		VPN in tunnel mode with IPsec ( ) ( )
		VPN protected by IPsec ( )

	Configuring IKE (Task Map) ( )

	Configuring IKE for Mobile Systems (Task Map) ( )

	Configuring IKE to Find Attached Hardware (Task Map) ( )

	Configuring IKE With Preshared Keys (Task Map) ( )

	Configuring IKE With Public Key Certificates (Task Map) ( )

	connectivity, ICMP protocol reports of failures ( )

	converting DHCP data store ( )

	CRC (cyclical redundancy check) field ( )

	creating
		certificate requests ( )
		DHCP macros ( )
		DHCP options ( )
		IPsec SAs ( ) ( )
		`ipsecinit.conf` file ( )
		security parameter index (SPI) ( )
		security-related role ( )
		self-signed certificates (IKE) ( )
		site-specific SMF manifest ( )

	CRLs
		accessing from central location ( )
		ignoring ( )
		`ike/crls` database ( )
		`ikecert certrldb` command ( )
		listing ( )

	cyclical redundancy check (CRC) field ( )


D

	daemons
		`in.iked` daemon ( ) ( ) ( )
		`in.ndpd` daemons ( )
		`in.ripngd` daemon ( ) ( )
		`in.routed` routing daemon ( )
		`in.tftpd` daemon ( )
		`inetd` Internet services ( )
		network configuration server booting protocols ( )

	data communications ( ) ( )
		packet life cycle ( ) ( )

	data encapsulation
		definition ( )
		TCP/IP protocol stack and ( ) ( )

	data-link layer
		framing ( )
		OSI ( )
		packet life cycle
			receiving host ( )
			sending host ( )
		TCP/IP ( ) ( )

	databases
		IKE ( )
		`ike/crls` database ( ) ( )
		`ike.privatekeys` database ( ) ( )
		`ike/publickeys` database ( ) ( )
		security associations database (SADB) ( )
		security policy database (SPD) ( )

	datagrams
		IP ( )
		IP header ( )
		IP protocol formatting ( )
		packet process ( )
		UDP protocol functions ( )

	deactivating Solaris IP Filter ( )

	decimal to binary conversion ( )

	default address selection ( )
		definition ( )
		IPv6 address selection policy table ( )

	default router
		configuration example ( )
		definition ( )

	`defaultdomain` file
		deleting for network client mode ( )
		description ( )
		local files mode configuration ( )

	`defaultrouter` file
		automatic router protocol selection and ( )
		description ( )
		local files mode configuration ( )

	deleting
		DHCP options ( )
		IPsec SAs ( ) ( )

	DES encryption algorithm, IPsec and ( )

	designing the network
		domain name selection ( )
		IP addressing scheme ( ) ( )
		naming hosts ( )
		overview ( ) ( )
		subnetting ( )

	DHCP client
		administration ( )
		client ID ( )
		definition ( )
		disabling ( )
		displaying interface status ( )
		dropping IP address ( )
		enabling ( )
		event scripts ( )
		extending lease ( )
		host name
			specifying ( )
		host name generation ( )
		incorrect configuration ( )
		logical interfaces ( )
		multiple network interfaces ( )
		name services ( )
		network information without lease ( ) ( )
		on diskless client systems ( )
		option information ( )
		parameters ( )
		releasing IP address ( )
		running in debugging mode
			sample output ( )
		running programs with ( )
		shutdown ( )
		starting ( )
		startup ( )
		testing interface ( )
		troubleshooting ( )
		unconfiguring ( )

	DHCP command-line utilities ( )
		privileges ( )

	DHCP Configuration Wizard
		description ( )
		for BOOTP relay agent ( )

	DHCP data store
		choosing ( )
		converting ( )
		exporting data ( ) ( )
		importing data ( ) ( )
		modifying imported data ( ) ( )
		moving data between servers ( )
		overview ( )

	DHCP events ( )

	DHCP lease
		and reserved IP addresses ( )
		dynamic and permanent ( )
		expiration date ( )
		negotiation ( )
		policy ( )
		reserved IP addresses ( )
		time ( )
		type ( )

	DHCP macros
		automatic processing ( )
		categories ( )
		client class macros ( )
		client ID macros ( )
		configuration ( )
		creating ( )
		default ( )
		deleting ( )
		Locale macro ( )
		modifying ( )
		network address macro ( ) ( )
		network booting ( )
		order processed ( )
		overview ( )
		server macro ( )
		size limit ( )
		working with ( )

	DHCP Manager
		description ( )
		features ( )
		menus ( )
		starting ( )
		stopping ( )
		window and tabs ( )

	DHCP network tables
		created during server configuration ( )
		description ( )
		removing when unconfiguring ( )

	DHCP Network Wizard ( )

	DHCP networks
		adding to DHCP service ( )
		modifying ( )
		removing from DHCP service ( )
		working with ( )

	DHCP options
		creating ( )
		deleting ( )
		modifying ( )
		overview ( )
		properties ( )
		working with ( )

	DHCP protocol
		advantages in Solaris implementation ( )
		overview ( )
		sequence of events ( )

	DHCP server
		configuration
			information gathered ( )
			overview ( )
		configuring
			`dhcpconfig` command ( )
			with DHCP Manager ( )
		data store ( )
		enabling to update DNS ( )
		functions ( )
		how many to configure ( )
		management ( )
		options ( )
			DHCP Manager ( )
			`dhcpconfig` command ( )
		planning for multiple servers ( )
		running in debugging mode ( )
			sample output ( )
		selecting ( )
		troubleshooting ( )

	DHCP service
		adding networks to ( )
		cache offer time ( )
		enabling and disabling
			DHCP Manager ( )
			`dhcpconfig` command ( )
			effects of ( )
		error messages ( ) ( )
		IP address allocation ( )
		IP addresses
			adding ( )
			modifying properties ( )
			removing ( )
			reserving for client ( )
			unusable ( )
		logging
			overview ( )
			transactions ( )
		modifying service options ( )
		network configuration overview ( )
		network interface monitoring ( )
		network topology ( )
		planning ( )
		Service Management Facility ( )
		Solaris network boot and install ( )
		starting and stopping
			DHCP Manager ( )
			effects of ( )
		supporting BOOTP clients ( )
		unconfiguring ( )
			with DHCP Manager ( )
		WAN boot installation support ( )

	`dhcpagent` daemon ( )
		debugging mode ( )
		parameter file ( )

	`dhcpconfig` command
		description ( ) ( )

	`dhcpinfo` command, description ( )

	`dhcpmgr` command, description ( )

	`dhcpsvc.conf` file ( )

	`dhcptab` table ( )
		description ( )
		overview ( )
		reading automatically ( )
		removing when unconfiguring ( )

	`dhcptags` file ( )

	DHCPv4 client, management of network interface ( )

	DHCPv4 versus DHCPv6 ( )

	DHCPv6, client name ( )

	DHCPv6 administrative model ( )

	DHCPv6 client, management of network interface ( )

	DHCPv6 versus DHCPv4 ( )

	`dhtadm` command
		creating macros with ( )
		creating options with ( )
		deleting macros with ( )
		deleting options with ( )
		description ( ) ( )
		modifying macros with ( )
		modifying options with ( )

	differentiated services ( )
		differentiated services model ( )
		network topologies ( )
		providing different classes of service ( )

	Diffserv-aware router
		evaluating DS codepoints ( )
		planning ( )

	Diffserv model
		classifier module ( )
		flow example ( )
		IPQoS implementation ( ) ( ) ( ) ( )
		marker modules ( )
		meter modules ( )

	digital signatures
		DSA ( )
		RSA ( )

	directories
		certificates (IKE) ( )
		`/etc/inet` ( )
		`/etc/inet/ike` ( )
		`/etc/inet/publickeys` ( )
		`/etc/inet/secret` ( )
		`/etc/inet/secret/ike.privatekeys` ( )
		preshared keys (IKE) ( )
		private keys (IKE) ( )
		public keys (IKE) ( )

	directory name (DN), for accessing CRLs ( )

	diskless clients, DHCP support of ( )

	displaying, IPsec policy ( )

	`dlcosmk` marker ( )
		planning datagram forwarding ( )
		user priority values, table of ( )
		VLAN tags ( )

	domain name system (DNS)
		description ( )
		domain name registration ( )
		enabling dynamic updates by DHCP server ( )
		extensions for IPv6 ( )
		network databases ( ) ( )
		preparing, for IPv6 support ( )
		reverse zone file ( )
		selecting as name service ( )
		zone file ( )

	domain names
		`/etc/defaultdomain` file ( ) ( ) ( )
		registering ( )
		selecting ( )
		top-level domains ( )

	dotted-decimal format ( )

	dropped or lost packets ( ) ( )

	DS codepoint (DSCP) ( ) ( )
		AF forwarding codepoint ( ) ( )
		color-awareness configuration ( )
		configuring, on a diffserv router ( ) ( )
		defining, in the IPQoS configuration file ( )
		`dscp_map` parameter ( )
		EF forwarding codepoint ( ) ( )
		PHBs and the DSCP ( )
		planning, in the QoS policy ( )

	`dscpmk` marker ( )
		invoking, in a marker `action` statement ( ) ( ) ( ) ( )
		PHBs for packet forwarding ( )
		planning packet forwarding ( )

	DSS authentication algorithm ( )

	dual-stack protocols ( ) ( )

	duplicate address detection
		algorithm ( )
		DHCP service ( )
		IPv6 ( )

	Dynamic Host Configuration Protocol, See DHCP protocol

	dynamic routing ( )
		best uses ( )
		configuring on a single-interface host ( )
		host configuration example ( )


E

	EGP, See routing protocols

	encapsulating security payload (ESP)
		description ( )
		IPsec protection mechanism ( )
		protecting IP packets ( )
		security considerations ( )

	encryption algorithms
		IPsec
			3DES ( )
			AES ( )
			Blowfish ( )
			DES ( )

	error messages for IPQoS ( )

	ESP, See encapsulating security payload (ESP)

	`/etc/bootparams` file ( )

	`/etc/default/dhcpagent` file ( )

	`/etc/default/dhcpagent` file, description ( )

	`/etc/default/inet_type` file ( )
		`DEFAULT_IP` value ( )

	`/etc/defaultdomain` file
		deleting for network client mode ( )
		description ( )
		local files mode configuration ( )

	`/etc/defaultrouter` file
		description ( )
		local files mode configuration ( )

	`/etc/dhcp/dhcptags` file
		converting entries ( )
		description ( )

	`/etc/dhcp/eventhook` file ( )

	`/etc/dhcp/inittab` file
		description ( )
		modifying ( )

	`/etc/dhcp/interface.dhc` file, description ( )

	`/etc/dhcp.interface` file ( ) ( )

	`/etc/dhcp.interface` file, description ( )

	`/etc/ethers` file ( )

	`/etc/hostname.interface` file
		description ( )
		local files mode configuration ( )

	`/etc/hostname.interface` file, network client mode configuration ( )

	`/etc/hostname.interface` file
		router configuration ( )

	`/etc/hostname6.interface` file, IPv6 tunneling ( )

	`/etc/hostname6.interface` file, manually configuring interfaces ( )

	`/etc/hostname6.interface` file, syntax ( )

	`/etc/hostname6.ip.6to4tun0` file ( )

	`/etc/hostname6.ip.tun` file ( ) ( ) ( )

	`/etc/hosts` file, See `/etc/inet/hosts` file

	`/etc/inet/dhcpsvc.conf` file ( )

	`/etc/inet/hosts` file ( )
		adding subnets ( )
		format ( )
		host name ( )
		initial file ( ) ( )
		local files mode configuration ( )
		loopback address ( )
		multiple network interfaces ( ) ( )
		network client mode configuration ( ) ( )

	`/etc/inet/ike/config` file
		`cert_root` keyword ( ) ( )
		`cert_trust` keyword ( ) ( )
		description ( ) ( )
		`ignore_crls` keyword ( )
		`ikecert` command and ( )
		`ldap-list` keyword ( )
		PKCS #11 library entry ( )
		`pkcs11_path` keyword ( ) ( )
		preshared keys ( )
		`proxy` keyword ( )
		public key certificates ( ) ( )
		putting certificates on hardware ( )
		sample ( )
		security considerations ( )
		self-signed certificates ( )
		summary ( )
		transmission parameters ( )
		`use_http` keyword ( )

	`/etc/inet/ike/crls` directory ( )

	`/etc/inet/ike/publickeys` directory ( )

	`/etc/inet/ipaddrsel.conf` file ( ) ( )

	`/etc/inet/ipsecinit.conf` file ( )

	`/etc/inet/ndpd.conf` file ( ) ( )
		6to4 advertisement ( )
		6to4 router advertisement ( )
		creating ( )
		interface configuration variables ( )
		keywords ( ) ( )
		prefix configuration variables ( )
		temporary address configuration ( )

	`/etc/inet/netmasks` file
		adding subnets ( )
		editing ( ) ( )
		router configuration ( )

	`/etc/inet/networks` file, overview ( )

	`/etc/inet/protocols` file ( )

	`/etc/inet/secret/ike.privatekeys` directory ( )

	`/etc/inet/services` file, sample ( )

	`/etc/ipf/ipf.conf` file, See Solaris IP Filter

	`/etc/ipf/ipnat.conf` file, See Solaris IP Filter

	`/etc/ipf/ippool.conf` file, See Solaris IP Filter

	`/etc/ipnodes` file removed ( )

	`/etc/netmasks` file ( )

	`/etc/nodename` file
		deleting for network client mode ( )
		description ( )

	`/etc/nsswitch.conf` file ( ) ( )
		changing ( ) ( )
		examples ( )
		modifications, for IPv6 support ( )
		name service templates ( )
		network client mode configuration ( )
		syntax ( ) ( )
		use by DHCP ( )

	`/etc/resolv.conf` file, use by DHCP ( )

	Ethernet addresses
		See `ethers` database
		See MAC address

	`ethers` database
		checking entries ( )
		corresponding name service files ( )
		overview ( )

	`eventhook` file ( )

	example IPQoS configuration files
		application server ( )
		best-effort web server ( )
		color-awareness segment ( )
		premium web server ( )
		VLAN device configuration ( )

	expedited forwarding (EF) ( ) ( )
		defining, in the IPQoS configuration file ( )

	`expire_timer` keyword, IKE configuration file ( )

	extending DHCP lease ( )


F

	file services ( )

	files
		IKE
			`crls` directory ( ) ( )
			`ike/config` file ( ) ( ) ( ) ( )
			`ike.preshared` file ( ) ( )
			`ike.privatekeys` directory ( ) ( )
			`publickeys` directory ( ) ( )
		IPsec
			`ipsecinit.conf` file ( ) ( ) ( )
			`ipseckeys` file ( )

	`filter` clause, in the IPQoS configuration file ( ) ( )

	filters ( )
		creating, in the IPQoS configuration file ( ) ( )
		`filter` clause syntax ( )
		planning, in the QoS policy ( )
		selectors, list of ( )

	flow accounting ( ) ( )
		flow record table ( )

	flow control, through the metering modules ( )

	`flowacct` module ( ) ( )
		`acctadm` command, for creating a flow accounting file ( )
		`action` statement for `flowacct` ( )
		attributes of flow records ( )
		flow record table ( )
		flow records ( )
		parameters ( )

	flushing, See deleting

	forwarding traffic
		datagram forwarding ( )
		effect of PHBs on packet forwarding ( )
		IP packet forwarding, with DSCP ( )
		planning, in the QoS policy ( )
		traffic flow through Diffserv networks ( )

	fragmented packets ( )

	framing
		data-link layer ( ) ( )
		description ( )

	`ftp` program ( )
		anonymous FTP program
			description ( )


G

	gateway, in a network topology ( )

	generating, random numbers ( )

	`gethostbyname` command ( )

	`getipnodebyname` command ( )

	global zone, IKE ( )


H

	handshake, three-way ( )

	hardware
		accelerating IKE computations ( ) ( )
		physical layer (OSI) ( )
		physical network layer (TCP/IP) ( ) ( )
		storing IKE keys ( ) ( )

	hardware for IPQoS-enabled networks ( )

	header fields, IPv6 ( )

	header of packets
		IP header ( )
		TCP protocol functions ( )

	hop, in packet forwarding ( )

	hops, relay agent ( )

	host, configuring a 6to4 address ( )

	host configuration modes (TCP/IP) ( ) ( )
		IPv4 network topology ( )
		local files mode ( ) ( )
		mixed configurations ( )
		network client mode ( ) ( )
		network configuration servers ( )
		sample network ( )

	host name, enabling client request of ( )

	host-to-host communications ( )

	`hostconfig` program ( )

	`hostname.interface` file
		description ( )
		router configuration ( )

	`hostname6.interface file`, manually configuring interfaces ( )

	`hostname6.interface` file, syntax ( )

	`hostname6.ip.tun` file ( ) ( ) ( )

	hosts
		checking host connectivity with `ping` ( )
		checking IP connectivity ( )
		configuring for IPv6 ( )
		host name
			administering ( )
			`/etc/inet/hosts` file ( )
		in an IPv4 network topology ( )
		in an IPv4 routing topology ( )
		multihomed
			configuring ( )
			definition ( )
		receiving
			packet travel through ( ) ( )
		routing protocol selection ( )
		sample network ( )
		sending
			packet travel through ( ) ( )
		TCP/IP configuration modes ( )
			configuration information ( ) ( )
			local files mode ( ) ( ) ( )
			mixed configurations ( )
			network client mode ( ) ( ) ( )
			network configuration servers ( )
			sample network ( )
		temporary IPv6 addresses ( )
		troubleshooting general problems ( )

	`hosts` database ( ) ( )
		checking entries ( )
		corresponding name service files ( )
		`/etc/inet/hosts` file
			adding subnets ( )
			format ( )
			host name ( )
			initial file ( ) ( )
			local files mode configuration ( )
			loopback address ( )
			multiple network interfaces ( ) ( )
			network client mode configuration ( )
			router configuration ( )
		name service
			affect on ( )
			forms of ( )
		name services' affect ( )

	`hosts` file ( )

	http access to CRLs, `use_http` keyword ( )


I

	ICMP protocol
		description ( )
		displaying statistics ( )
		invoking, with `ping` ( )
		messages, for Neighbor Discovery protocol ( )

	ICMP Router Discovery (RDISC) protocol ( )

	identity association ( )

	`ifconfig` command ( ) ( )
		6to4 extensions ( )
		configuring
			IPv6 tunnels ( )
		controlling DHCP client ( )
		DHCP and ( )
		displaying interface status ( ) ( )
		information in output ( )
		IPv6 extensions to ( )
		output format ( )
		plumbing an interface ( )
		syntax ( )
		use as troubleshooting tool ( )

	`ignore_crls` keyword, IKE configuration file ( )

	IGP, See routing protocols

	IKE
		adding self-signed certificates ( )
		certificates ( )
		changing
			privilege level ( ) ( )
		checking if valid policy ( )
		command descriptions ( )
		configuration files ( )
		configuring
			for mobile systems ( )
			with CA certificates ( )
			with preshared keys ( )
			with public key certificates ( )
		creating self-signed certificates ( )
		`crls` database ( )
		daemon ( )
		databases ( )
		finding attached hardware ( )
		generating certificate requests ( )
		global zone ( )
		hardware acceleration ( )
		hardware storage of keys ( )
		`ike.preshared` file ( )
		`ike.privatekeys` database ( )
		`ikeadm` command ( )
		`ikecert certdb` command ( )
		`ikecert certrldb` command ( )
		`ikecert` command ( )
		`ikecert tokens` command ( )
		implementing ( )
		`in.iked` daemon ( )
		ISAKMP SAs ( ) ( )
		key management ( )
		managing using SMF ( )
		mobile systems and ( )
		NAT and ( ) ( )
		overview ( )
		perfect forward secrecy (PFS) ( )
		Phase 1 exchange ( )
		Phase 1 key negotiation ( )
		Phase 2 exchange ( )
		PKCS #11 library ( )
		preshared keys ( )
			viewing ( )
		privilege level
			changing ( ) ( )
			checking ( )
			description ( )
		`publickeys` database ( )
		reference ( )
		RFCs ( )
		security associations ( )
		service from SMF ( )
		SMF service description ( )
		storage locations for keys ( )
		troubleshooting transmission timing ( )
		using Sun Crypto Accelerator 1000 board ( )
		using Sun Crypto Accelerator 4000 board ( )
		viewing
			preshared keys ( )

	`ike/config` file, See `/etc/inet/ike/config` file

	`ike.preshared` file ( ) ( )
		sample ( )

	`ike.privatekeys` database ( )

	`ike` service
		description ( ) ( )
		use ( )

	`ikeadm` command
		description ( ) ( )
		privilege level
			checking ( )

	`ikecert certdb` command
		`-a` option ( ) ( )

	`ikecert certlocal` command
		`-kc` option ( )
		`-ks` option ( )

	`ikecert certrldb` command, `-a` option ( )

	`ikecert` command
		`-A` option ( )
		`-a` option ( )
		`-T` option ( ) ( )
		`-t` option ( )
		description ( ) ( )

	`ikecert tokens` command ( )

	`in.dhcpd` daemon ( )
		debugging mode ( )
		description ( )

	`in.iked` daemon
		`-c` option ( )
		`-f` option ( )
		activating ( )
		description ( )
		privilege level
			checking ( )

	`in.ndpd` daemon
		checking the status ( )
		creating a log ( )
		options ( )

	`in.rarpd` daemon ( )

	`in.rdisc` program, description ( )

	`in.ripngd` daemon ( ) ( )

	`in.routed` daemon ( )
		creating a log ( )
		description ( )
		space-saving mode ( )

	`in.telnet` daemon ( )

	`in.tftpd` daemon
		description ( )
		turning on ( )

	inactive rule sets, See Solaris IP Filter

	inbound load balancing ( )

	`inet_type` file ( )

	`inetd` daemon
		administering services ( )

	`inetd` daemon, checking the status ( )

	`inetd` daemon
		IPv6 services and ( )
		services started by ( )

	interactive mode, `ipseckey` command ( )

	interface ID
		definition ( )
		format, in an IPv6 address ( )
		using a manually-configured token ( )

	interfaces
		checking packets ( )
		configuring
			IPv6 logical interfaces ( )
			manually, for IPv6 ( )
			temporary addresses ( )
		displaying status ( ) ( )
		multihomed hosts ( ) ( )
		pseudo-interface, for 6to4 tunnels ( )
		router configuration ( ) ( )

	Internet, domain name registration ( )

	Internet Assigned Numbers Authority (IANA), registration services ( )

	Internet drafts
		definition ( )
		SCTP with IPsec ( )

	Internet layer (TCP/IP)
		ARP protocol ( )
		description ( ) ( )
		ICMP protocol ( )
		IP protocol ( )
		packet life cycle
			receiving host ( )
			sending host ( )

	Internet Security Association and Key Management Protocol (ISAKMP) SAs
		description ( )
		storage location ( )

	internetworks
		definition ( )
		packet transfer by routers ( ) ( )
		redundancy and reliability ( )
		topology ( ) ( )

	InterNIC
		registration services
			domain name registration ( )

	interoperability
		IPsec with other platforms in tunnel mode ( )
		IPsec with other platforms using preshared keys ( )

	IP addresses
		allocation with DHCP ( )
		designing an address scheme ( ) ( )
		DHCP
			adding ( )
			errors ( )
			modifying properties ( )
			properties ( )
			removing ( )
			reserving for client ( )
			tasks ( )
			unusable ( )
		displaying addresses of all interfaces ( )
		IP protocol functions ( )
		network classes
			network number administration ( )
		network interfaces and ( )
		subnet issues ( )

	IP datagrams
		IP header ( )
		IP protocol formatting ( )
		packet process ( )
		protecting with IPsec ( )
		UDP protocol functions ( )

	IP Filter, See Solaris IP Filter

	IP forwarding
		in IPv4 VPNs ( ) ( ) ( ) ( )
		in IPv6 VPNs ( ) ( ) ( ) ( )
		in VPNs ( )

	IP protocol
		checking host connectivity ( ) ( )
		description ( )
		displaying statistics ( )

	IP security architecture, See IPsec

	`ip_strict_dst_multihoming`, preventing IP spoofing ( )

	`ipaddrsel` command ( ) ( )

	`ipaddrsel.conf` file ( ) ( )

	`ipf` command
		See also Solaris IP Filter
		`-6` option ( )
		`-a` option ( )
		`-D` option ( )
		`-E` option ( )
		`-F` option ( ) ( ) ( ) ( )
		`-f` option ( ) ( ) ( ) ( )
		`-I` option ( ) ( )
		`-s` option ( )
		append rules from command line ( )

	`ipf.conf` file ( )
		See Solaris IP Filter

	`ipfstat` command ( )
		See also Solaris IP Filter
		`-6` option ( )
		`-I` option ( )
		`-i` option ( ) ( )
		`-o` option ( ) ( )
		`-s` option ( )
		`-t` option ( )

	`ipgpc` classifier, See classifier module

	`ipmon` command
		See also Solaris IP Filter
		`-a` option ( )
		`-F` option ( )
		`-o` option ( )
		IPv6 and ( )

	`ipnat` command
		See also Solaris IP Filter
		`-C` option ( )
		`-F` option ( ) ( )
		`-f` option ( ) ( )
		`-l` option ( )
		`-s` option ( )
		append rules from command line ( )

	`ipnat.conf` file ( )
		See Solaris IP Filter

	`ippool` command
		See also Solaris IP Filter
		`-F` option ( )
		`-f` option ( )
		`-l` option ( )
		`-s` option ( )
		append rules from command line ( )
		IPv6 and ( )

	`ippool.conf` file ( )
		See Solaris IP Filter

	IPQoS ( )
		configuration example ( ) ( )
		configuration file ( ) ( )
			`action` statement syntax ( )
			`class` clause ( )
			`filter` clause ( )
			initial action statement ( )
			initial `action` statement ( )
			list of IPQoS modules ( )
			marker `action` statement ( )
			syntax ( )
		configuration planning ( )
		Diffserv model implementation ( )
		error messages ( )
		features ( )
		man pages ( )
		message logging ( )
		network example ( )
		network topologies supported ( ) ( ) ( ) ( )
		policies for IPv6-enabled networks ( )
		QoS policy planning ( )
		related RFCs ( )
		routers on an IPQoS network ( )
		statistics generation ( )
		traffic management capabilities ( ) ( )
		VLAN device support ( )

	`ipqosconf` ( )

	`ipqosconf` command
		applying a configuration ( ) ( )
		command options ( )
		listing the current configuration ( )

	IPsec
		activating ( )
		adding security associations (SAs) ( )
		algorithm source ( )
		authentication algorithms ( )
		bypassing ( ) ( )
		commands, list of ( )
		components ( )
		configuration files ( )
		configuring ( ) ( )
		creating SAs manually ( )
		displaying policies ( )
		encapsulating data ( )
		encapsulating security payload (ESP) ( ) ( )
		encryption algorithms ( )
		`/etc/hostname.ip6.tun0` file
			configuring VPN ( ) ( )
		`/etc/hosts` file ( )
		extensions to utilities
			`snoop` command ( )
		getting random numbers for keys ( )
		`hostname.ip.tun0` file
			configuring VPN ( )
		`ifconfig` command
			configuring VPN ( )
		implementing ( )
		`in.iked` daemon ( )
		inbound packet process ( )
		interoperating with other platforms
			IP-in-IP tunnels ( )
			preshared keys ( ) ( )
		`ipsecalgs` command ( ) ( )
		`ipsecconf` command ( ) ( )
		`ipsecinit.conf` file
			bypassing LAN ( ) ( )
			configuring ( )
			description ( )
			policy file ( )
			protecting web server ( )
			removing IPsec bypass of LAN ( ) ( )
		`ipseckey` command ( ) ( )
		IPv4 VPN in tunnel transport mode, and ( )
		IPv4 VPNs, and ( )
		IPv6 VPN in tunnel transport mode, and ( )
		IPv6 VPNs, and ( )
		key management ( )
		keying utilities
			IKE ( )
			`ipseckey` command ( )
		managing using SMF ( )
		NAT and ( )
		outbound packet process ( )
		overview ( )
		policy command
			`ipsecconf` ( )
		policy files ( )
		protecting
			mobile systems ( )
			packets ( )
			VPNs ( )
			web servers ( )
		protecting a VPN ( ) ( )
		protection mechanisms ( )
		protection policy ( )
		RBAC and ( )
		RFCs ( )
		`route` command ( ) ( ) ( ) ( )
		SCTP protocol and ( ) ( )
		securing remote login ( )
		securing traffic ( )
		security associations (SAs) ( )
		security associations database (SADB) ( ) ( )
		security mechanisms ( )
		security parameter index (SPI) ( )
		security policy database (SPD) ( ) ( ) ( )
		security protocols ( ) ( )
		security roles ( )
		services
			`ipsecalgs` ( )
			`manual-key` ( )
			`policy` ( )
		services, list of ( )
		services from SMF ( ) ( )
		setting policy
			permanently ( )
			temporarily ( )
		`snoop` command ( )
		Solaris cryptographic framework and ( )
		terminology ( )
		transport mode ( )
		tunnel mode ( )
		tunnels ( )
		using `ssh` for secure remote login ( )
		verifying packet protection ( )
		virtual private networks (VPNs) ( ) ( )
		zones and ( ) ( )

	IPsec policy
		example of tunnels in transport mode ( )
		examples of tunnel syntax ( )
		IP-in-IP datagrams ( )
		LAN example ( )
		specifying ( ) ( )

	IPsec tunnels, simplified syntax ( )

	`ipsecalgs` service, description ( )

	`ipsecconf` command
		configuring IPsec policy ( )
		description ( )
		displaying IPsec policy ( ) ( )
		purpose ( )
		security considerations ( )
		setting tunnels ( )
		viewing IPsec policy ( )

	`ipsecinit.conf` file
		bypassing LAN ( ) ( )
		description ( )
		location and scope ( )
		protecting web server ( )
		purpose ( )
		removing IPsec bypass of LAN ( ) ( )
		sample ( )
		security considerations ( )
		verifying syntax ( )

	`ipseckey` command
		description ( ) ( )
		interactive mode ( )
		purpose ( )
		security considerations ( )
		using for temporary keys ( )

	`ipseckeys` file
		storing IPsec keys ( )
		verifying syntax ( )

	IPv4 addresses
		applying netmasks ( ) ( )
		dotted-decimal format ( )
		format ( )
		IANA network number assignment ( )
		network classes ( )
			addressing scheme ( ) ( )
			class A ( )
			class B ( ) ( )
			class C ( )
		parts ( )
		range of numbers available ( )
		subnet issues ( )
		subnet number ( )
		symbolic names for network numbers ( )

	IPv6
		6to4 address ( )
		adding
			DNS support ( )
		address autoconfiguration ( ) ( )
		addressing plan ( )
		and Solaris IP Filter ( )
		ATM support ( )
		automatic tunnels ( )
		checking the status of `in.ndpd` ( )
		comparison with IPv4 ( ) ( )
		configuring tunnels ( )
		default address selection policy table ( )
		DNS AAAA records ( )
		DNS support preparation ( )
		dual-stack protocols ( )
		duplicate address detection ( )
		enabling, on a server ( )
		extension header fields ( )
		extensions to `ifconfig` command ( )
		`in.ndpd` daemon ( )
		`in.ripngd` daemon ( )
		known issues with 6to4 router ( )
		link-local addresses ( ) ( )
		monitoring traffic ( )
		multicast addresses ( ) ( )
		Neighbor Discovery protocol ( )
		neighbor solicitation ( )
		neighbor solicitation and unreachability ( )
		neighbor unreachability detection ( ) ( )
		next-hop determination ( )
		`nslookup` command ( )
		packet header format ( )
		protocol overview ( )
		redirect ( ) ( ) ( )
		router advertisement ( ) ( ) ( ) ( )
		router discovery ( ) ( )
		router solicitation ( ) ( )
		routing ( )
		security considerations ( )
		site-local addresses ( )
		stateless address autoconfiguration ( ) ( )
		subnets ( )
		temporary address configuration ( )
		troubleshooting common IPv6 problems ( ) ( )
		tunnels ( )

	IPv6 addresses
		address autoconfiguration ( ) ( )
		address resolution ( )
		anycast ( )
		interface ID ( )
		link-local ( )
		multicast ( )
		unicast ( )
		uniqueness ( )
		VPN example of use with IPsec ( )

	IPv6 features, Neighbor Discovery functionality ( )


K

	key management
		automatic ( ) ( )
		IKE ( )
		`ike` service ( )
		IPsec ( )
		manual ( )
		`manual-key` service ( )
		zones and ( )

	key negotiation, IKE ( )

	key storage
		IPsec SAs ( )
		ISAKMP SAs ( )
		softtoken ( )
		softtoken keystore ( ) ( )
		token IDs from metaslot ( )

	keying utilities
		IKE protocol ( )
		`ike` service ( )
		`ipseckey` command ( )
		`manual-key` service ( )

	keys
		automatic management ( )
		creating for IPsec SAs ( )
		generating random numbers for ( )
		`ike.privatekeys` database ( )
		`ike/publickeys` database ( )
		managing IPsec ( )
		manual management ( )
		preshared (IKE) ( )
		storing (IKE)
			certificates ( )
			private ( )
			public keys ( )
		storing on hardware ( )

	keystore name, See token ID

	`kstat` command, use with IPQoS ( )


L

	`ldap-list` keyword, IKE configuration file ( )

	libraries, PKCS #11 ( )

	link, IPv6 ( )

	link-layer address change ( )

	link-local address
		format ( )
		manually configuring, with a token ( )

	link-local addresses
		IPv6 ( ) ( ) ( )

	listing
		algorithms (IPsec) ( )
		certificates (IPsec) ( ) ( )
		CRL (IPsec) ( )
		hardware (IPsec) ( )
		token IDs (IPsec) ( )
		token IDs from metaslot ( )

	load balancing
		in an IPQoS-enabled network ( )
		on an IPv6-enabled network ( )

	local files mode
		definition ( )
		host configuration ( )
		network configuration servers ( )
		systems requiring ( ) ( )

	local files name service
		description ( )
		`/etc/inet/hosts` file ( )
			example ( ) ( )
			format ( )
			initial file ( ) ( )
			requirements ( )
		local files mode ( ) ( )
		network databases ( )

	log file, flushing in Solaris IP Filter ( )

	log files
		creating for Solaris IP Filter ( )
		viewing for Solaris IP Filter ( )

	logged packets, saving to a file ( )

	logical interface ( ) ( )

	logical interfaces
		DHCP client systems ( )
		for IPv6 address ( )
		for IPv6 tunnels ( ) ( ) ( )

	loopback address ( ) ( )

	lost or dropped packets ( ) ( )


M

	MAC address ( )
		IPv6 interface ID ( )
		mapping to IP in `ethers` database ( )
		used in DHCP client ID ( )

	machines, protecting communication ( )

	macros
		DHCP
			See DHCP macros

	`manual-key` service
		description ( ) ( )
		use ( )

	marker modules ( )
		See also `dlcosmk` marker
		See also `dscpmk` marker
		PHBs, for IP packet forwarding ( )
		specifying a DS codepoint ( )
		support for VLAN devices ( )

	maximum transmission unit (MTU) ( )

	media access control (MAC) address, See MAC address

	messages, router advertisement ( )

	metaslot
		key storage ( ) ( ) ( )

	metering modules
		See also `tokenmt` meter
		See also `tswtclmt` meter
		introduction ( )
		invoking, in the IPQoS configuration file ( )
		outcomes of metering ( ) ( )

	modifying
		DHCP macros ( )
		DHCP options ( )

	multicast addresses, IPv6
		compared to broadcast addresses ( )
		format ( )
		overview ( )

	multihomed hosts
		configuration example ( )
		configuring ( )
		configuring during installation ( )
		definition ( ) ( )
		enabling for IPv6 ( )
		on firewalled networks ( )

	multiple network interfaces
		DHCP client systems ( )
		`/etc/inet/hosts` file ( ) ( )
		router configuration ( ) ( )


N

	name services
		administrative subdivisions ( )
		database search order specification ( ) ( )
		domain name registration ( )
		domain name system (DNS) ( ) ( )
		files corresponding to network databases ( )
		`hosts` database and ( ) ( )
		local files
			description ( )
			`/etc/inet/hosts` file ( ) ( )
			local files mode ( ) ( )
		network databases and ( ) ( )
		NIS ( )
		NIS+ ( )
		`nsswitch.conf` file templates ( )
		registration of DHCP clients ( )
		selecting a service ( ) ( )
		supported services ( )

	names/naming
		domain names
			registration ( )
			selecting ( )
			top-level domains ( )
		host name
			administering ( )
			`/etc/inet/hosts` file ( )
		naming network entities ( ) ( )
		node name
			local host ( ) ( )

	NAT
		compliant with RFCs ( )
		configuring rules for ( )
		deactivating ( )
		IPsec supports multiple clients ( )
		limitations with IPsec ( )
		NAT rules
			appending ( )
			viewing ( )
		overview ( )
		removing NAT rules ( )
		using IPsec and IKE ( ) ( )
		viewing statistics ( )

	`ndpd.conf` file
		6to4 advertisement ( )
		creating, on an IPv6 router ( )

	`ndpd.conf` file
		interface configuration variables ( )
		keyword list ( )
		prefix configuration variables ( )

	`ndpd.conf` file
		temporary address configuration ( )

	Neighbor Discovery protocol
		address autoconfiguration ( ) ( )
		address resolution ( )
		capabilities ( )
		comparison to ARP ( )
		duplicate address detection algorithm ( )
		major features ( )
		neighbor solicitation ( )
		prefix discovery ( ) ( )
		router discovery ( ) ( )

	neighbor solicitation, IPv6 ( )

	neighbor unreachability detection
		IPv6 ( ) ( ) ( )

	`netmasks` database ( )
		adding subnets ( ) ( )
		corresponding name service files ( )
		`/etc/inet/netmasks` file
			adding subnets ( )
			editing ( ) ( )
			router configuration ( )
		network masks
			applying to IPv4 address ( ) ( )
			creating ( ) ( )
			description ( )
		subnetting ( )

	`netstat` command
		`-a` option ( )
		`-f` option ( )
		`-r` option ( )
		description ( )
		displaying status of known routes ( )
		`inet` option ( )
		`inet6` option ( )
		IPv6 extensions ( )
		per-protocol statistics display ( )
		running software checks ( )
		syntax ( )

	Network Address Translation (NAT), See NAT

	network administration
		designing the network ( )
		host names ( )
		network numbers ( )
		Simple Network Management Protocol (SNMP) ( )

	network classes ( )
		addressing scheme ( ) ( )
		class A ( )
		class B ( ) ( )
		class C ( )
		IANA network number assignment ( )
		network number administration ( )
		range of numbers available ( )

	network client mode
		definition ( )
		host configuration ( )
		overview ( ) ( )

	network clients
		`ethers` database ( )
		host configuration ( )
		network configuration server for ( ) ( )
		systems operating as ( ) ( )

	network configuration
		configuring
			network clients ( )
			services ( )
		configuring security ( )
		enabling IPv6 on a host ( )
		hop, description ( )
		host configuration modes ( )
		IPv4 network configuration tasks ( )
		IPv4 network topology ( )
		IPv6-enabled multihomed hosts ( )
		IPv6 router ( )
		network configuration server setup ( )
		router ( )
		TCP/IP configuration modes ( )
			configuration information ( )
			local files mode ( )
			network client mode ( ) ( )
			network configuration servers ( )

	network configuration servers
		booting protocols ( )
		definition ( )
		setting up ( )

	network databases ( ) ( )
		`bootparams` database ( )
		corresponding name service files ( )
		DNS boot and data files and ( )
		`ethers` database
			checking entries ( )
			overview ( )
		`hosts` database
			checking entries ( )
			name services, affect on ( )
			name services, forms of ( )
			name services affect on ( )
			overview ( ) ( )
		name services' affect ( ) ( )
		`netmasks` database ( ) ( )
		`networks` database ( )
		`nsswitch.conf` file and ( ) ( ) ( )
		`protocols` database ( )
		`services` database ( )

	network example for IPQoS ( )

	network interfaces
		displaying DHCP status ( )
		IP addresses and ( )
		monitoring by DHCP service ( )
		multiple network interfaces
			`/etc/inet/hosts` file ( ) ( )

	Network IPsec Management rights profile ( )

	network layer (OSI) ( )

	Network Management rights profile ( )

	network numbers ( )

	network planning ( ) ( )
		adding routers ( ) ( )
		design decisions ( ) ( )
		IP addressing scheme ( ) ( )
		name assignments ( ) ( )
		registering your network ( )

	network prefix, IPv4 ( )

	network security, configuring ( )

	Network Security rights profile ( )

	network topologies for IPQoS ( )
		configuration example ( )
		LAN with IPQoS-enabled firewall ( )
		LAN with IPQoS-enabled hosts ( )
		LAN with IPQoS-enabled server farms ( )

	network topology ( ) ( )
		autonomous system ( )
		DHCP and ( )

	`networks` database
		corresponding name service files ( )
		overview ( )

	new features
		default address selection ( )
		DHCP event scripts ( )
		DHCP on logical interfaces ( )
		IKE enhancements ( )
		`inetconv` command ( )
		IPsec enhancements ( )
		manually configuring a link-local address ( )
		`routeadm` command ( )
		SCTP protocol ( )
		Service Management Facility (SMF) ( )
		site prefix, in IPv6 ( ) ( )
		temporary addresses in IPv6 ( )

	next-hop ( ) ( )

	next-hop determination, IPv6 ( )

	NFS services ( )

	NIS
		domain name registration ( )
		network databases ( ) ( )
		selecting as name service ( )

	NIS+
		and DHCP data store ( )
		selecting as name service ( )

	`nisaddcred` command, and DHCP ( )

	`nischmod` command, and DHCP ( )

	`nisls` command, and DHCP ( )

	`nisstat` command, and DHCP ( )

	node, IPv6 ( )

	node name
		local host ( ) ( )

	`nodename` file
		deleting for network client mode ( )
		description ( )

	`nslookup` command ( )
		IPv6 ( )

	`nsswitch.conf` file ( ) ( )
		changing ( ) ( )
		examples ( )
		modifications, for IPv6 support ( )
		name service templates ( )
		network client mode configuration ( )
		syntax ( ) ( )


O

	`od` command ( )

	Open Systems Interconnect (OSI) Reference Model ( ) ( )

	`/opt/SUNWconn/lib/libpkcs11.so` entry, in `ike/config` file ( )

	option requests ( )


P

	packet filter hooks ( )

	packet filtering
		activating a different rule set ( )
		appending
			rules to active set ( )
			rules to inactive set ( )
		configuring ( )
		deactivating ( )
		managing rule sets ( )
		reloading after updating current rule set ( )
		removing
			active rule set ( )
			inactive rule set ( )
		switching between rule sets ( )

	packet flow
		relay router ( )
		through tunnel ( )

	packet flow, IPv6
		6to4 and native IPv6 ( )
		through 6to4 tunnel ( )

	packet forwarding router ( )

	packets
		checking flow ( )
		data encapsulation ( ) ( )
		description ( )
		displaying contents ( )
		dropped or lost ( ) ( )
		forwarding ( )
		fragmentation ( )
		header
			IP header ( )
			TCP protocol functions ( )
		IP protocol functions ( )
		IPv6 header format ( )
		life cycle ( ) ( )
			application layer ( )
			data-link layer ( ) ( )
			Internet layer ( )
			physical network layer ( ) ( )
			receiving host process ( ) ( )
			transport layer ( ) ( )
		observing on the IP layer ( )
		protecting
			inbound packets ( )
			outbound packets ( )
			with IKE ( )
			with IPsec ( ) ( )
		transfer
			router ( ) ( )
			TCP/IP stack ( ) ( )
		UDP ( )
		verifying protection ( )

	`params` clause
		defining global statistics ( ) ( )
		for a `flowacct` `action` ( )
		for a marker `action` ( )
		for a metering `action` ( )
		syntax ( )

	per-hop behavior (PHB) ( )
		AF forwarding ( )
		defining, in the IPQoS configuration file ( )
		EF forwarding ( )
		using, with `dscpmk` marker ( )

	perfect forward secrecy (PFS)
		description ( )
		IKE ( )

	`PF_KEY` socket interface
		IPsec ( ) ( )

	PFS, See perfect forward secrecy (PFS)

	physical layer (OSI) ( )

	physical network layer (TCP/IP) ( ) ( ) ( )

	`ping` command ( )
		`-s` option ( )
		description ( )
		extensions for IPv6 ( )
		running ( )
		syntax ( ) ( )

	PKCS #11 library
		in `ike/config` file ( )
		specifying path to ( )

	`pkcs11_path` keyword
		description ( )
		`ikecert` command and ( )
		using ( )

	plumbing an interface ( )

	`pntadm` command
		description ( ) ( )
		examples ( )
		using in scripts ( )

	policies, IPsec ( )

	policy files
		`ike/config` file ( ) ( ) ( )
		`ipsecinit.conf` file ( )
		security considerations ( )

	`policy` service
		description ( )
		use ( )

	ports, TCP, UDP, and SCTP port numbers ( )

	PPP links
		troubleshooting
			packet flow ( )

	prefix
		network, IPv4 ( )
		site prefix, IPv6 ( )
		subnet prefix, IPv6 ( )

	prefix discovery, in IPv6 ( )

	prefixes
		router advertisement ( ) ( ) ( )

	presentation layer (OSI) ( )

	preshared keys, viewing in IKE ( )

	preshared keys (IKE)
		description ( )
		replacing ( )
		shared with other platforms ( )
		storing ( )
		task map ( )

	preshared keys (IPsec), creating ( )

	preventing IP spoofing, SMF manifest ( )

	private keys, storing (IKE) ( )

	privilege level
		changing in IKE ( )
		checking in IKE ( )
		setting in IKE ( )

	protecting
		IPsec traffic ( )
		keys in hardware ( )
		mobile systems with IPsec ( )
		packets between two systems ( )
		VPN with IPsec tunnel in transport mode ( )
		VPN with IPsec tunnel in tunnel mode ( )
		web server with IPsec ( )

	Protecting a VPN With IPsec (Task Map) ( )

	Protecting Traffic With IPsec (Task Map) ( )

	protection mechanisms, IPsec ( )

	protocol layers
		OSI Reference Model ( ) ( )
		packet life cycle ( ) ( )
		TCP/IP protocol architecture model ( ) ( )
			application layer ( ) ( ) ( )
			data-link layer ( ) ( )
			Internet layer ( ) ( )
			physical network layer ( ) ( )
			transport layer ( ) ( )

	protocol statistics display ( )

	`protocols` database
		corresponding name service files ( )
		overview ( )

	`proxy` keyword, IKE configuration file ( )

	public key certificates, See certificates

	public keys, storing (IKE) ( )

	public topology, IPv6 ( )

	`publickeys` database ( )


Q

	QoS policy ( )
		creating filters ( )
		implementing, in the IPQoS configuration file ( )
		planning task map ( )
		template for policy organization ( )

	quality of service (QoS)
		QoS policy ( )
		tasks ( )


R

	random numbers, generating with `od` command ( )

	RARP protocol
		checking Ethernet addresses ( )
		description ( )
		Ethernet address mapping ( )
		RARP server configuration ( )

	RBAC
		and DHCP commands ( )
		IPsec and ( )

	RDISC
		description ( ) ( )

	receiving hosts
		packet travel through ( ) ( )

	redirect
		IPv6 ( ) ( ) ( )

	refreshing, preshared keys (IKE) ( )

	registering
		autonomous systems ( )
		domain names ( )
		networks ( )

	relay router, 6to4 tunnel configuration ( ) ( )

	replacing, preshared keys (IKE) ( )

	Requests for Comments (RFCs) ( )
		definition ( )
		IKE ( )
		IPQoS ( )
		IPsec ( )
		IPv6 ( )

	`retry_limit` keyword, IKE configuration file ( )

	`retry_timer_init` keyword, IKE configuration file ( )

	`retry_timer_max` keyword, IKE configuration file ( )

	reverse zone file ( )

	rights profiles
		Network IPsec Management ( )
		Network Management ( )

	`rlogin` command, packet process ( )

	roles, creating network security role ( )

	`route` command
		`inet6` option ( )
		IPsec ( ) ( ) ( ) ( )

	`routeadm` command
		configuring VPN with IPsec ( )
		enabling dynamic routing ( )
		IP forwarding ( )
		IPv6 router configuration ( )
		multihomed hosts ( )
		turning on dynamic routing ( )

	router advertisement ( )
		IPv6 ( ) ( ) ( ) ( )
		prefix ( )

	router discovery, in IPv6 ( ) ( ) ( ) ( )

	router solicitation
		IPv6 ( ) ( )

	routers
		adding ( ) ( )
		addresses for DHCP clients ( )
		border ( )
		configuring ( )
			for IPv4 networks ( )
			IPv6 ( )
			network interfaces ( )
		default address ( )
		default routers ( )
		definition ( ) ( ) ( )
		dynamic routing ( )
		`/etc/defaultrouter` file ( )
		example, configuring a default router ( )
		local files mode configuration ( )
		network topology ( ) ( )
		packet forwarding router ( )
		packet transfer ( ) ( )
		problems upgrading for IPv6 ( )
		role, in 6to4 topology ( )
		routing protocols
			automatic selection ( )
			description ( ) ( ) ( )
		static routing ( )

	routing
		configuring static ( )
		definition ( )
		direct route ( )
		dynamic routing ( )
		gateway ( )
		indirect route ( )
		IPv6 ( )
		manually configuring a routing table ( )
		on multihomed hosts ( )
		on single-interface hosts ( )
		routing table configuration ( )
		static routing ( )

	routing information protocol (RIP)
		description ( ) ( )

	routing protocols
		associated routing daemons ( )
		automatic selection ( )
		Border Gateway Protocol (BGP) ( )
		description ( ) ( ) ( ) ( )
		exterior gateway protocol (EGP) ( )
		in the Solaris OS ( )
		interior gateway protocol (IGP) ( )
		RDISC
			description ( ) ( )
		RIP
			description ( ) ( )

	routing tables
		definition ( )
		description ( )
		displaying ( )
		`in.routed` daemon creation of ( )
		manually configuring ( ) ( )
		packet transfer example ( ) ( )
		space-saving mode ( )
		subnetting and ( )
		tracing all routes ( )

	`rpc.bootparamd` daemon ( )

	RSA encryption algorithm ( )

	rule sets
		See See Solaris IP Filter
		inactive
			See also Solaris IP Filter
		NAT ( )
		packet filtering ( )


S

	SCTP protocol
		adding SCTP-enabled services ( )
		description ( )
		displaying statistics ( )
		displaying status ( )
		IPsec and ( )
		limitations with IPsec ( )
		service in `/etc/inet/services` file ( )

	security
		IKE ( )
		IPsec ( )

	security associations (SAs)
		adding IPsec ( )
		creating manually ( )
		flushing IPsec SAs ( ) ( )
		getting keys for ( )
		IKE ( )
		IPsec ( ) ( )
		IPsec database ( )
		ISAKMP ( )
		random number generation ( )

	security associations database (SADB) ( )

	security considerations
		6to4 relay router issues ( )
		authentication header (AH) ( )
		configuring
			IKE to find hardware ( )
			IKE transmission parameters ( )
			IKE with certificates ( )
			IKE with preshared keys ( )
			IPsec ( )
		encapsulating security payload (ESP) ( )
		`ike/config` file ( )
		`ipsecconf` command ( )
		`ipsecinit.conf` file ( )
		`ipseckey` command ( )
		`ipseckeys` file ( )
		IPv6-enabled networks ( )
		latched sockets ( )
		preshared keys ( )
		security protocols ( )

	security parameter index (SPI)
		constructing ( )
		description ( )
		key size ( )

	security policy
		`ike/config` file (IKE) ( )
		IPsec ( )
		`ipsecinit.conf` file (IPsec) ( )

	security policy database (SPD)
		configuring ( )
		IPsec ( ) ( )

	security protocols
		authentication header (AH) ( )
		encapsulating security payload (ESP) ( )
		IPsec protection mechanisms ( )
		overview ( )
		security considerations ( )

	selectors ( )
		IPQoS 5-tuple ( )
		planning, in the QoS policy ( )
		selectors, list of ( )

	sending hosts
		packet travel through ( ) ( )

	server, DHCPv6 ( )

	servers, IPv6
		enabling IPv6 ( )
		planning tasks ( )

	service-level agreement (SLA) ( )
		billing clients, based on flow accounting ( )
		classes of services ( )
		providing different classes of service ( )

	service management facility (SMF)
		IKE service
			changing `admin_privilege` service property ( )
			configurable properties ( )
			description ( ) ( )
			enabling ( ) ( ) ( )
			`ike` service ( ) ( )
			refreshing ( ) ( ) ( )
			restarting ( )
		IPsec services ( )
			description ( )
			`ipsecalgs` service ( )
			list of ( )
			`manual-key` description ( )
			`manual-key` service ( )
			`manual-key` use ( )
			`policy` service ( )
		using to manage IKE ( )
		using to manage IPsec ( )

	`services` database
		corresponding name service files ( )
		overview ( )
		updating, for SCTP ( )

	session layer (OSI) ( )

	Simple Network Management Protocol (SNMP) ( )

	site-local addresses, IPv6 ( )

	site prefix, IPv6
		advertising, on the router ( )
		definition ( ) ( )
		how to obtain ( )

	site topology, IPv6 ( )

	slots, in hardware ( )

	SNMP (Simple Network Management Protocol) ( )

	`snoop` command
		checking packet flow ( )
		checking packets between server and client ( )
		checking packets on the IP layer ( )
		displaying packet contents ( )
		extensions for IPv6 ( )
		`ip6` protocol keyword ( )
		monitoring DHCP traffic ( )
			sample output ( )
		monitoring IPv6 traffic ( )
		verifying packet protection ( )
		viewing protected packets ( )

	sockets
		displaying socket status with `netstat` ( )
		IPsec security ( )

	softtoken keystore
		key storage with metaslot ( ) ( ) ( ) ( )

	Solaris cryptographic framework, IPsec, and ( )

	Solaris IP Filter
		address pools
			appending ( )
			removing ( )
			viewing ( )
		address pools and ( )
		configuration file examples ( )
		creating
			log files ( )
		creating configuration files ( )
		deactivating ( )
			NAT ( )
		`/etc/ipf/ipf.conf` file ( )
		`/etc/ipf/ipf6.conf` file ( )
		`/etc/ipf/ipnat.conf` file ( )
		`/etc/ipf/ippool.conf` file ( )
		flush log file ( )
		guidelines for using ( )
		`ifconfig` command ( )
		`ipf` command ( )
			`-6` option ( )
		`ipf.conf` file ( )
		`ipf6.conf` file ( )
		`ipfstat` command
			`-6` option ( )
		`ipmon` command
			IPv6 and ( )
		`ipnat` command ( )
		`ipnat.conf` file ( )
		`ippool` command ( )
			IPv6 and ( )
		`ippool.conf` file ( )
		IPv6 ( )
		loopback filtering ( )
		managing packet filtering rule sets ( )
		NAT and ( )
		NAT rules
			appending ( )
			viewing ( )
		open source information ( )
		overview ( )
		packet filter hooks ( ) ( )
		packet filtering overview ( )
		re-enabling ( )
		removing
			NAT rules ( )
		rule set
			activating different ( )
		rule sets
			active ( )
			appending to active ( )
			appending to inactive ( )
			inactive ( )
			removing ( )
			removing inactive ( )
			switching between ( )
		rule sets and ( )
		saving logged packets to a file ( )
		viewing
			address pool statistics ( )
			log files ( )
			NAT statistics ( )
			state statistics ( )
			state tables ( )

	space-saving mode, `in.routed` daemon option ( )

	state statistics, viewing ( )

	state tables, viewing ( )

	stateless address autoconfiguration ( )

	static routing ( ) ( )
		adding a static route ( ) ( )
		best uses ( )
		configuration example ( )
		host configuration example ( )
		manually configuring on a host ( )

	statistics
		packet transmission (`ping`) ( ) ( )
		per-protocol (`netstat`) ( )

	statistics for IPQoS
		enabling class-based statistics ( )
		enabling global statistics ( ) ( )
		generating, through the `kstat` command ( )

	storing
		IKE keys on disk ( ) ( ) ( )
		IKE keys on hardware ( ) ( )

	subdivisions, administrative ( )

	subnet prefix, IPv6 ( )

	subnets
		IPv4
			addresses and ( )
			netmask configuration ( )
		IPv4 addresses and ( )
		IPv6
			6to4 topology and ( )
			definition ( )
			suggestions for numbering ( )
		`netmasks` database ( )
			editing `/etc/inet/netmasks` file ( ) ( )
			network mask creation ( ) ( )
		network configuration servers ( )
		network masks
			applying to IPv4 address ( ) ( )
			creating ( )
		overview ( )
		subnet number, IPv4 ( )
		subnet number in IPv4 addresses ( )
		subnet prefix, IPv6 ( )

	Sun Crypto Accelerator 1000 board ( )
		using with IKE ( )

	Sun Crypto Accelerator 4000 board
		accelerating IKE computations ( )
		storing IKE keys ( )
		using with IKE ( )

	`svcadm` command
		refresh IKE ( )
		restart IPsec policy ( )

	symbolic names for network numbers ( )

	SYN segment ( )

	`sys-unconfig` command
		and DHCP client ( ) ( )

	`syslog.conf` file logging for IPQoS ( )

	systems, protecting communication ( )


T

	`-T` option
		`ikecert` command ( ) ( ) ( )

	task map
		IPQoS
			configuration planning ( )

	task maps
		Changing IKE Transmission Parameters (Task Map) ( )
		Configuring IKE (Task Map) ( )
		Configuring IKE for Mobile Systems (Task Map) ( )
		Configuring IKE to Find Attached Hardware (Task Map) ( )
		Configuring IKE With Preshared Keys (Task Map) ( )
		Configuring IKE With Public Key Certificates (Task Map) ( )
		DHCP
			IP address management decisions ( )
			making decisions for DHCP server configuration ( )
			modifying DHCP service options ( )
			moving DHCP server configuration data ( )
			preparing network for DHCP ( )
			supporting BOOTP clients ( )
			supporting information-only clients ( )
			supporting remove boot and diskless clients with DHCP ( )
			working with DHCP macros ( )
			working with DHCP networks ( )
			working with DHCP options ( )
			working with IP addresses ( )
		IPQoS
			configuration file creation ( )
			flow-accounting setup ( )
			QoS policy planning ( )
		IPv4 network
			adding subnets ( )
		IPv6
			configuration ( )
			planning ( )
			tunnel configuration ( )
		network administration tasks ( )
		network configuration ( )
		Protecting a VPN With IPsec (Task Map) ( )
		Protecting Traffic With IPsec (Task Map) ( )

	TCP/IP networks
		configuration files ( )
			`/etc/defaultdomain` file ( )
			`/etc/defaultrouter` file ( )
			`/etc/hostname.interface` file ( )
			`/etc/nodename` file ( ) ( )
			`hosts` database ( ) ( )
			`netmasks` database ( )
		configuring
			host configuration modes ( ) ( )
			local files mode ( )
			network clients ( )
			network configuration server setup ( )
			network databases ( ) ( ) ( )
			`nsswitch.conf` file ( ) ( )
			prerequisites ( )
			standard TCP/IP services ( )
		host configuration modes ( ) ( )
			local files mode ( ) ( )
			mixed configurations ( )
			network client mode ( ) ( )
			network configuration servers ( )
			sample network ( )
		IPv4 network configuration tasks ( )
		IPv4 network topology ( )
		network numbers ( )
		protecting with ESP ( )
		troubleshooting ( )
			displaying packet contents ( )
			general methods ( ) ( )
			`ifconfig` command ( )
			`netstat` command ( )
			packet loss ( ) ( )
			`ping` command ( ) ( )
			software checks ( )
			third-party diagnostic programs ( )

	TCP/IP protocol suite ( )
		data communications ( ) ( )
			data encapsulation ( ) ( )
		displaying statistics ( )
		dual-stack protocols ( )
		further information ( )
			books ( )
			FYIs ( )
		internal trace support ( )
		OSI Reference Model ( ) ( )
		overview ( ) ( )
		standard services ( )
		TCP/IP protocol architecture model ( ) ( )
			application layer ( ) ( ) ( )
			data-link layer ( ) ( )
			Internet layer ( ) ( )
			physical network layer ( ) ( )
			transport layer ( ) ( )

	TCP protocol
		description ( )
		displaying statistics ( )
		establishing a connection ( )
		segmentation ( )
		services in `/etc/inet/services` file ( )

	TCP wrappers, enabling ( )

	Telnet protocol ( )

	temporary address, in IPv6
		configuring ( )
		definition ( )

	`tftp` protocol
		description ( )
		network configuration server booting protocol ( )

	`/tftpboot` directory creation ( )

	three-way handshake ( )

	token ID, in hardware ( )

	`tokenmt` meter ( )
		color-awareness configuration ( ) ( )
		metering rates ( )
		rate parameters ( )
		single-rate meter ( )
		two rate-meter ( )

	`tokens` argument, `ikecert` command ( )

	topology ( ) ( )

	`traceroute` command
		definition ( )
		extensions for IPv6 ( )
		tracing routes ( )

	traffic conformance
		defining ( )
		outcomes ( ) ( )
		planning
			outcomes in the QoS policy ( )
			rates in the QoS policy ( )
		rate parameters ( ) ( )

	traffic management
		controlling flow ( )
		forwarding traffic ( ) ( ) ( ) ( )
		planning network topologies ( )
		prioritizing traffic flows ( )
		regulating bandwidth ( )

	transition to IPv6, 6to4 mechanism ( )

	transmission parameters
		IKE global parameters ( )
		IKE tuning ( )

	transmission parameters (IKE), changing ( )

	transport layer
		data encapsulation ( ) ( )
		obtaining transport protocol status ( )
		OSI ( )
		packet life cycle
			receiving host ( )
			sending host ( ) ( )
		TCP/IP
			description ( ) ( )
			SCTP protocol ( ) ( )
			TCP protocol ( )
			UDP protocol ( )

	transport mode
		IPsec ( )
		protected data with ESP ( )
		protecting data with AH ( )

	Triple-DES encryption algorithm, IPsec and ( )

	troubleshooting
		checking PPP links
			packet flow ( )
		DHCP ( )
		IKE payload ( )
		IKE transmission timing ( )
		IPv6 problems ( ) ( )
		TCP/IP networks
			checking packets between client and server ( )
			displaying interface status with `ifconfig` command ( ) ( )
			displaying status of known routes ( )
			general methods ( ) ( )
			monitoring network status with `netstat` command ( )
			monitoring packet transfer on the IP layer ( )
			monitoring packet transfer with `snoop` command ( )
			observing transmissions from interfaces ( )
			obtaining per-protocol statistics ( )
			obtaining transport protocol status ( )
			packet loss ( ) ( )
			`ping` command ( )
			probing remote hosts with `ping` command ( )
			software checks ( )
			third-party diagnostic programs ( )
			`traceroute` command ( )
			tracing `in.ndpd` activity ( )
			tracing `in.routed` activity ( )

	`tswtclmt` meter ( ) ( )
		metering rates ( )

	`tun` module ( )

	`tunnel` keyword
		IPsec policy ( ) ( ) ( ) ( )

	tunnel mode
		IPsec ( )
		protecting entire inner IP packet ( )

	tunnels
		6to4 tunnels ( )
			known problems ( )
			packet flow ( ) ( )
			topology ( )
		configuring IPv6
			6to4 tunnels ( )
			examples ( )
			IPv4 over IPv6 ( )
			IPv6 over IPv4 ( )
			IPv6 over IPv6 ( )
			to a 6to4 relay router ( )
		IPsec ( )
		IPv6, automatic
			See tunnels, 6to4 tunnels
		IPv6, manually configured ( )
		IPv6 tunneling mechanisms ( )
		modes in IPsec ( )
		on Solaris 10 releases
			configuring IPv4 over IPv6 tunnels ( )
			configuring IPv6 over IPv4 tunnels ( )
			configuring IPv6 over IPv6 tunnels ( )
		planning, for IPv6 ( )
		protecting packets ( )
		topology, to 6to4 relay router ( )
		transport mode ( )
		tunnel mode ( )

	turning on
		an IPv6-enabled network ( )
		network configuration daemons ( )


U

	UDP protocol
		description ( )
		displaying statistics ( )
		services in `/etc/inet/services` file ( )
		UDP packet process ( )

	uniform resource indicator (URI), for accessing CRLs ( )

	UNIX “r” commands ( )

	unusable DHCP address ( ) ( )

	`use_http` keyword, IKE configuration file ( )

	user priority value ( )

	`/usr/sbin/6to4relay` command ( )

	`/usr/sbin/in.rdisc` program, description ( )

	`/usr/sbin/in.routed` daemon
		description ( )
		space-saving mode ( )

	`/usr/sbin/inetd` daemon
		checking the status of `inetd` ( )
		services started by ( )

	`/usr/sbin/ping` command ( )
		description ( )
		running ( )
		syntax ( ) ( )


V

	`-V` option, `snoop` command ( )

	`/var/inet/ndpd_state.interface` file ( )

	verifying
		IPsec configuration files
			syntax ( )
		`ipsecinit.conf` file
			syntax ( ) ( )
		`ipseckeys` file
			syntax ( )
		packet protection ( )

	viewing
		IPsec configuration ( )
		IPsec policy ( )

	virtual LAN (VLAN) devices on an IPQoS network ( )

	virtual private networks (VPNs)
		configuring with `routeadm` command ( ) ( )
		constructed with IPsec ( )
		IPv4 example ( )
		IPv6 example ( )
		protecting with IPsec ( )
		protecting with IPsec in tunnel transport mode ( )

	VPN, See virtual private networks (VPNs)


W

	web servers
		configuring for IPQoS ( ) ( ) ( ) ( )
		protecting with IPsec ( )

	wide area network (WAN)
		Internet
			domain name registration ( )

	wildcards in `bootparams` database ( )

	wrappers, TCP ( )


Z

	zone file ( )

	zones
		IPsec and ( ) ( )
		key management and ( )