This section provides the following procedures to create a non-global zone on a global-cluster node.
Perform this procedure for each non-global zone that you create in the global cluster.
Note - For complete information about installing a zone, refer to System Administration Guide: Oracle Solaris Containers-Resource Management and Oracle Solaris Zones.
You can configure a Solaris Containers non-global zone, simply referred to as a zone, on a cluster node while the node is booted in either cluster mode or in noncluster mode.
If you create a zone while the node is booted in noncluster mode, the cluster software discovers the zone when the node joins the cluster.
If you create or remove a zone while the node is in cluster mode, the cluster software dynamically changes its list of zones that can master resource groups.
Before You Begin
Perform the following tasks:
Plan your non-global zone configuration. Observe the requirements and restrictions in Guidelines for Non-Global Zones in a Global Cluster.
Have available the following information:
The total number of non-global zones that you will create.
The public adapter and public IP address that each zone will use.
The zone path for each zone. This path must be a local file system, not a cluster file system or a highly available local file system.
One or more devices that should appear in each zone.
(Optional) The name that you will assign each zone.
If you will assign the zone a private IP address, ensure that the cluster IP address range can support the additional private IP addresses that you will configure. Use the cluster show-netprops command to display the current private-network configuration.
If the current IP address range is not sufficient to support the additional private IP addresses that you will configure, follow the procedures in How to Change the Private Network Configuration When Adding Nodes or Private Networks to reconfigure the private IP-address range.
Note - You can turn off cluster functionality for a selected non-global zone, so that a root user logged into one of these zones will not able to discover or disrupt operation of the cluster. For instructions, see How to Deny Cluster Services For a Non-Global Zone in Oracle Solaris Cluster Data Services Planning and Administration Guide and How to Allow a Non-Global Zone to Rejoin a Cluster in Oracle Solaris Cluster Data Services Planning and Administration Guide.
For additional information, see Zone Components in System Administration Guide: Oracle Solaris Containers-Resource Management and Oracle Solaris Zones.
You must be working in the global zone.
If services are not yet online for a node, wait until the state changes to online before you proceed to the next step.
phys-schost# svcs multi-user-server node STATE STIME FMRI online 17:52:55 svc:/milestone/multi-user-server:default
Follow procedures in the Solaris documentation:
phys-schost# zoneadm list -v ID NAME STATUS PATH 0 global running / 1 my-zone ready /zone-path
The following command chooses and assigns an available IP address from the cluster's private IP-address range. The command also assigns the specified private hostname, or host alias, to the zone and maps it to the assigned private IP address.
phys-schost# clnode set -p zprivatehostname=hostalias node:zone
Specifies a property.
Specifies the zone private hostname, or host alias.
The name of the node.
The name of the global-cluster non-voting node.
Follow the procedures in Performing the Initial Internal Zone Configuration in System Administration Guide: Solaris Containers-Resource Management and Solaris Zones. Choose either of the following methods:
Log in to the zone.
Use an /etc/sysidcfg file.
These changes enable the zone to resolve searches for cluster-specific hostnames and IP addresses.
phys-schost# zlogin -c zonename
sczone# vi /etc/nsswitch.conf
The modified entries should appear similar to the following:
… hosts: cluster files nis [NOTFOUND=return] … netmasks: cluster files nis [NOTFOUND=return] …
You must configure an IPMP group for each public-network adapter that is used for data-service traffic in the zone. This information is not inherited from the global zone. See Public Networks for more information about configuring IPMP groups in a cluster.
To install an application in a non-global zone, use the same procedure as for a stand-alone system. See your application's installation documentation for procedures to install the software in a non-global zone. Also see Adding and Removing Packages and Patches on a Solaris System With Zones Installed (Task Map) in System Administration Guide: Oracle Solaris Containers-Resource Management and Oracle Solaris Zones.
To install and configure a data service in a non-global zone, see the Oracle Solaris Cluster manual for the individual data service.
Use this procedure to make a cluster file system available for use by a native brand non-global zone that is configured on a cluster node.
Note - Use this procedure with only the native brand of non-global zones. You cannot perform this task with any other brand of non-global zone, such as the solaris8 brand or the cluster brand which is used for zone clusters.
phys-schost# clresourcegroup create -n node:zone[,…] resource-group
Specifies the names of the non-global zones in the resource-group node list.
The name of the resource group that you create.
phys-schost# clresourcegroup create -S -n node:zone[,…] resource-group
Specifies that the resource group is scalable.
phys-schost# clresourcetype register SUNW.HAStoragePlus
Entries in the /etc/vfstab file for a cluster file system must contain the global keyword in the mount options.
phys-schost# clresource create -g resource-group -t SUNW.HAStoragePlus \ -p FileSystemMountPoints="mount-point-list" hasp-resource
Specifies the name of the resource group that the new resource is added to.
Specifies one or more file-system mount points for the resource.
The name of the HAStoragePlus resource that you create.
The resource is created in the enabled state.
If you have more than one resource to add to the resource group, use a separate command for each resource.
phys-schost# clresource create -g resource-group -t resource-type \ -p Network_resources_used=hasp-resource resource
Specifies the resource type that you create the resource for.
Specifies that the resource has a dependency on the HAStoragePlus resource, hasp-resource.
The name of the resource that you create.
phys-schost# clresourcegroup online -M resource-group
Specifies that the resource group is managed.
Example 7-1 Configuring an HAStoragePlus Resource for a Cluster File System That is Used by Non-Global Zones
The following example creates a failover resource group, cfs-rg, to manage an HA-Apache data service. The resource-group node list contains two non-global zones, sczone1 on phys-schost-1 and sczone1 on phys-schost-2. The resource group contains an HAStoragePlus resource, hasp-rs, and a data-service resource, apache-rs. The file-system mount point is /global/local-fs/apache.
phys-schost-1# clresourcegroup create -n phys-schost-1:sczone1,phys-schost-2:sczone1 cfs-rg phys-schost-1# clresourcetype register SUNW.HAStoragePlus Add the cluster file system entry to the /etc/vfstab file on phys-schost-1 phys-schost-1# vi /etc/vfstab #device device mount FS fsck mount mount #to mount to fsck point type pass at boot options # /dev/md/kappa-1/dsk/d0 /dev/md/kappa-1/rdsk/d0 /global/local-fs/apache ufs 5 yes logging,global Add the cluster file system entry to the /etc/vfstab file on phys-schost-2 phys-schost-2# vi /etc/vfstab … phys-schost-1# clresource create -g cfs-rg -t SUNW.HAStoragePlus \ -p FileSystemMountPoints="/global/local-fs/apache" hasp-rs phys-schost-1# clresource create -g cfs-rg -t SUNW.apache \ -p Network_resources_used=hasp-rs apache-rs phys-schost-1# clresourcegroup online -M cfs-rg