I am doing manual IPSEC between S10 TX on a sparc machine
(Generic_137111-01 sun4v sparc SUNW,T5140) and S10 x86 10/09. I have
been unable to get these two to successfully create an IPSEC tunnel.
Are there differences in the IPSEC for different versions of S10? To
date, I have never had an
On Dec 29, 2008, at 5:08 PM, Jarrett Lu wrote:
>
> Wayne Nichols wrote:
>> Setup:
>>
>> Global zone, multiple labeled zones, each labeled zone configured
>> more or less identically. Each labeled zone connects to a
>> different network. Each labe
Setup:
Global zone, multiple labeled zones, each labeled zone configured more
or less identically. Each labeled zone connects to a different
network. Each labeled zone has a process that needs to be accessed by
the global zone via a network socket. This process and socket must
not be vi
>>
>> Setting the root umask to 027 will break Solaris. Some files and
>> directories need to be world-writable.
>
> Yes, please don't set root's umask to 027, not 077.
>
>>>
I am curious as to what will go wrong if root's umask is set to 027 or
077. I've been running some minimized S10 TX box
I am wondering what the implications are of /opt being an inherit-pkg-
dir in the SUNWtsoldef.xml template for a zone under TX. Is this a
requirement for TX?
What are the ramifications if I were to remove that line from the
template and have each zone own their own /opt in TX?
>
>
> From your description I am not sure you really want to do any auth
> in the global zone though. Do you have any auth that must occur in
> the global zone or would a successful login directly to the labeled
> zone indicate sufficient auth to be using the console?
There is no reason fo
Hello all, I received no responses to my first query so I am trying
again.
I have a minimized version of TX running on a special purpose
machine. The minimization is a customer requirement. There is no
window environment on the host. The customer now has a requirement to
log into a labl
I have a minimized TX host (I know many will ask why minimize, but it
is...). I am wondering if there is a way to login directly to a
labeled zone from the console. I know I could do a restricted profile
shell that does a zlogin. Just wondering if there is another way or
what it might t
