Go to main content

Trusted Extensions Configuration and Administration

Exit Print View

Updated: March 2019
 
 

Configuring the Network Interfaces in Trusted Extensions

A Trusted Extensions system requires network configuration to communicate with other systems. By using the txzonemgr utility, you can easily configure the labeled zones and the global zone to connect to other systems. For a description of the configuration options for labeled zones, see Access to Labeled Zones.


Note - To use the txzonemgr script interactively, you must either be running in a desktop session in the global zone or in a remote desktop session after using the –X option of ssh.

The following task map describes and links to network configuration tasks.

Table 6  Configuring the Network Interfaces in Trusted Extensions Task Map
Task
Description
For Instructions
Configure a default system for regular users.
The system has one IP address and uses an all-zones interface to communicate between the labeled zones and the global zone. The same IP address is used to communicate with remote systems.
Add an IP address to the global zone.
The system has more than one IP address and uses the global zone's exclusive IP address to reach a private subnet. The labeled zones cannot reach this subnet.
Assign an IP address to every zone, where the IP stack is exclusive.
One IP address is assigned to every zone, including the global zone. A VNIC is created for each labeled zone.
Connect the zones to remote zones.
Task configures the network interfaces of the labeled zones and the global zone to reach remote systems at the same label.
Run a separate nscd daemon per zone.
In an environment where each subnet has its own name server, this task configures one nscd daemon per zone.