Hi folks, I'm trying to understand what is the intended function of the -P flag when used with snoop -I, specifically, what traffic is supposed to be excluded when DL_PROMISC_PHYS is not enabled.
The current behavior of the ipnet gate seems to be that when -P is used, you only see packets destined for an address on the interface, that is, not packets *from* any address on the interface, unless they also happen to be destined to the interface as well. In the global zone, packets are seen regardless of what zone the destination address is in, so long as it is assigned on the interface. So, when I snoop -P -I foo in the global zone, I exactly those packets destined to any address assigned on interface foo, be it in the global zone or in a non-global zone. Based on my understanding of the design doc, I thought it was supposed to be more along the lines of snoop -P -I foo would see packets to/from addresses on foo that are in global zone, effectively excluding packets to/from other zones. As such, -P would have no affect on what is seen when snooping ipnet devices in a non-global zone. Can anyone say definitively what the behavior is supposed to be? The current behavior, while consistent, doesn't seem all that useful to me, and doesn't seem to match the design doc. -John
