1. Creating and Using Oracle Solaris Kernel Zones
  2. Configuring Oracle Solaris Kernel Zones
  3. About Managing Kernel Zone Resources
  4. Using Dynamic MAC Addresses and VLAN IDs in Kernel Zones
  5. How to Use Dynamic MAC Addresses and VLAN IDs for Kernel Zone anet Configuration

How to Use Dynamic MAC Addresses and VLAN IDs for Kernel Zone anet Configuration

  1. Become a zone administrator.
  2. Enable allowed-mac-address on an anet.

    Using zonecfg, add an anet device and a mac resource and enable allowed-mac-address on it. 

    $ pfbash zonecfg -z kernel-zone
zonecfg:kernel-zone> add anet
zonecfg:kernel-zone:anet> add mac
zonecfg:kernel-zone:anet:mac> add allowed-mac-address octet-prefix
zonecfg:kernel-zone:anet:mac> end
zonecfg:kernel-zone:anet>
  3. Enable allowed-vlan-ids on the anet.

    Using zonecfg, add a vlan resource and enable allowed-vlan-ids on it. 

    zonecfg:kernel-zone:anet> add vlan
zonecfg:kernel-zone:anet:vlan> add allowed-vlan-ids id-range
zonecfg:kernel-zone:anet:vlan> end
zonecfg:kernel-zone:anet> end ; exit
  4. Boot the kernel zone.
    $ zoneadm -z kernel-zone boot
  5. Log in to the kernel zone.
    $ zlogin kernel-zone
  6. Verify in the kernel zone the allowed addresses and IDs.

    To determine which MAC prefixes and VLAN IDs are allowed, use the dladm show-phys command with the ‐o option to specify output fields. For example, to verify for kzone1: 

    global$ zlogin kzone1
kzone1$ dladm show-phys -o link,media,id,allowed-addresses,allowed-vids
LINK            MEDIA         ID        ALLOWED-ADDRESSES ALLOWED-VIDS
net0            Ethernet      anet:0    fa:16:3f,         100-199, 
                                        fa:80:20:21:22    400-498,500