Configuring the Network Interfaces in Trusted Extensions
A Trusted Extensions system
requires network configuration to communicate with other systems. By using
the txzonemgr utility, you can easily configure the
labeled zones and the global zone to connect to other systems. For a
description of the configuration options for labeled zones, see Access to Labeled Zones.
Note - To use the txzonemgr script interactively, you
must either be running in a desktop session in the global zone
or in a remote desktop session after using the –X option
of ssh.
The following task map describes and links to network configuration
tasks.
Table 6 Configuring the Network Interfaces in Trusted Extensions Task Map
| | |
Configure a default system for regular users.
| The system has one IP address and uses an all-zones interface
to communicate between the labeled zones and the global zone. The same IP
address is used to communicate with remote systems.
|
|
Add an IP address to the global zone.
| The system has more than one IP address and uses the global zone's exclusive
IP address to reach a private subnet. The labeled zones cannot reach this
subnet.
|
|
Assign an IP address to every zone, where the IP stack is exclusive.
| One IP address is assigned to every zone, including the global zone.
A VNIC is created for each labeled zone.
|
|
Connect the zones to remote zones.
| Task configures the network interfaces of the labeled zones and
the global zone to reach remote systems at the same label.
|
|
Run a separate nscd daemon per zone.
| In an environment where each subnet has its own name server, this task
configures one nscd daemon per zone.
|
|
|