Solaris Trusted Extensions Installation and Configuration for Solaris 10 11/06 and Solaris 10 8/07 Releases

ProcedureSpecify Two IP Addresses for the System by Using a CDE Action

In this configuration, the host's address applies only to the global zone. Labeled zones share a second IP address with the global zone.

Before You Begin

You are superuser in the global zone. The system has already been assigned two IP addresses. You are in a Trusted CDE workspace.

  1. Navigate to the Trusted_Extensions folder.

    1. Click mouse button 3 on the background.

    2. From the Workspace menu, choose Applications -> Application Manager.

    3. Double-click the Trusted_Extensions folder icon.

      This folder contains actions that set up interfaces, LDAP clients, and labeled zones.

  2. Double-click the Share Logical Interface action and answer the prompts.

    Note –

    The system must already have been assigned two IP addresses. For this action, provide the second address and a host name for that address. The second address is the shared address.

    Hostname:   Type the name for your labeled zones interface
    IP Address: Type the IP address for the interface

    This action configures a host with more than one IP address. The IP address for the global zone is the name of the host. The IP address for a labeled zone has a different host name. In addition, the IP address for the labeled zones is shared with the global zone. When this configuration is used, labeled zones are able to reach a network printer.

    Tip –

    Use a standard naming convention for labeled zones. For example, add -zones to the host name.

  3. (Optional) In a terminal window, verify the results of the action.

    # ifconfig -a

    For example, the following output shows a shared logical interface, hme0:3 on network interface for the labeled zones. The hme0 interface is the unique IP address of the global zone.

     lo0: flags=2001000849<UP,LOOPBACK,RUNNING,MULTICAST,IPv4,VIRTUAL> mtu 8232 index 1
             inet netmask ff000000 
             ether 0:0:00:00:00:0
     hme0: flags=1000843<BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 2
             inet netmask fffffe00 broadcast
     hme0:3 flags=1000843<BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 2
             inet netmask fffffe00 broadcast