Hi, With zones and IP instances support, can one Solaris system (including Solaris 10) be configured with completely isolated IP stacks both in the kernel and user space?
Assuming each available NIC card is going to be used only by one IP instance/zone, complete isolation means it's possible to use the same VLAN IDs and IP addresses in several instances/zones. The assumption is that any L3/L2 info/tables (routing daemons, routing table, ARP, MAC) are logically separated in user and kernel space. Can the above still be achieved when a NIC card is shared but with unique VLAN IDs by each IP instances and zone? Does this require VNIC support? In the above case, is there any limitation in using the pfhooks IP filtering mechanism in the kernel? (given it does support IP instances) In all cases, the assumption is that each IP instance / zone is connected to a separate network than the others (hence any duplicate VLAN IDs or IP addresses are not intermixed together). Thanks, Al. -- This message posted from opensolaris.org _______________________________________________ networking-discuss mailing list [email protected]
