I've come up with a usage case where I'd like to allow VLANs to be
plumbed and unplumbed from within a zone.
Specifically, in order to enable a certain form of testing, which
requires me to make a system "wide open" ('+ +' in /.rhosts!), I'd like
to use a zone. Then I could use the system as a test peer, without
requiring an actually separate piece of hardware, and without opening up
a gaping whole on my primary system.
One of the tests wants to plumb and unplumb a bunch of VLAN interfaces,
in order to do validation of the VLAN support on the "system under test".
The question is, can it be done? As far as I can tell,
plumbing/unplumbing of VLANs has to be done on the global zone.
Clearly, I don't want this to happen. Any chance we can get the ability
to do this (perhaps as a tunable) in the non-global zone? I've already
made the zone an IP-exclusive zone, and I've given it its own interface
to own for the purposes of testing.
Maybe this is on the roadmap, maybe it isn't. If it isn't, is there any
technical reason to absolutely forbid the plumbing of separate VLAN
devices in an IP-exclusive zone?
- Garrett
_______________________________________________
networking-discuss mailing list
[email protected]
