LinuxQuestions.org
View the Most Wanted LQ Wiki articles.
Go Back   LinuxQuestions.org > Forums > Other *NIX Forums > Solaris / OpenSolaris
User Name
Password
Solaris / OpenSolaris This forum is for the discussion of Solaris and OpenSolaris.
General Sun, SunOS and Sparc related questions also go here.

Notices

Reply
 
Search this Thread
Old 07-18-2014, 02:59 PM   #1
Lyxix
LQ Newbie
 
Registered: Mar 2014
Posts: 13

Rep: Reputation: Disabled
External Network Connectivity w/Oracle VM Server 3.1 for SPARC & Solaris 11


Hello all, thanks for reading my question:

So I've been a Unix/Linux SysAdmin for a couple years, and I'm a bit over my head running solo, trying to set up LDoms using Oracle VM Server 3.1 for SPARC. I've been very careful, and things have gone well up until the point I try to access the new virtual machines from the regular network.

I found the section in the Oracle VM Server 3.1 for SPARC manual that talks about enabling external connectivity, however it's very vague, and provides no examples. I did my best to follow the instructions, but I'm having zero luck getting from the virtual machine to the rest of my network and vice versa.

Can anyone help with where I can find an example of getting this to work? I feel like I've looked everywhere. Everything I've tried isn't working. Here's what I have so far:

1) I have the physical machine connected just fine to my network, no issues connecting, etc. The primary physical NIC is setup on net0. It has an IP address.

2) I created an etherstub (stub0) exactly as mentioned in step 1 of the manual linked above

3) I created a virtual switch (primary-stub-vsw0) on the etherstub (exactly as depicted in step 2)

4) I created a virtual NIC (vnic0) on the etherstub (exactly like step 3)

5) I configured vnic0 and gave it a private IP address not in use anywhere on my network (similar to step 4, but I used 192.168.3.2 for the IP)

ipadm shows the following:
NAME CLASS/TYPE STATE UNDER ADDR
lo0 loopback ok -- --
lo0/v4 static ok -- 127.0.0.1/8
lo0/v6 static ok -- ::1/128
net0 ip ok -- --
net0/v4 static ok -- 10.12.20.86/24
net1 ip down -- --
net2 ip down -- --
net3 ip down -- --
vnic0 ip ok -- --
vnic0/v4 static ok -- 192.168.3.2/24

dladm shows the following:
net1 phys 1500 up --
net2 phys 1500 up --
net3 phys 1500 up --
net0 phys 1500 up --
net5 phys 1500 up --
stub0 etherstub 1500 unknown --
vnic0 vnic 1500 up stub0
ldoms-vsw1.vport0 vnic 1500 up stub0

and the network sections of ldm list-bindings shows:
NAME STATE FLAGS CONS VCPU MEMORY UTIL UPTIME
primary active -n-cv- SP 2 8G 0.7% 31d 2h 22m
...
VSW
NAME MAC NET-DEV ID DEVICE LINKPROP DEFAULT-VLAN-ID PVID VID MTU MODE INTER-VNET-LINK
primary-stub-vsw0 00:14:4f:fb:c9:5b stub0 1 switch@1 1 1 1500 on
PEER MAC PVID VID MTU MAXBW LINKPROP INTERVNETLINK
vnet0@test1 00:14:4f:fa:c6:d1 1 1500

------------------------------------------------------------------------------
NAME STATE FLAGS CONS VCPU MEMORY UTIL UPTIME
test1 active -n---- 5000 8 8G 0.1% 7d 21h 10m
...
NETWORK
NAME SERVICE ID DEVICE MAC MODE PVID VID MTU MAXBW LINKPROP
vnet0 primary-stub-vsw0@primary 1 network@1 00:14:4f:fa:c6:d1 1 1500
PEER MAC MODE PVID VID MTU MAXBW LINKPROP
primary-stub-vsw0@primary 00:14:4f:fb:c9:5b 1 1500

6) I turned on packet forwarding globally. Results of ipadm show-prop -p forwarding ip:
PROTO PROPERTY PERM CURRENT PERSISTENT DEFAULT POSSIBLE
ipv4 forwarding rw on on off on,off
ipv6 forwarding rw off -- off on,off

7) I set up some NAT rules to forward all packets from the vnic0 to net0. Content of /etc/ipf/ipnat.conf:
map vnic0 192.168.3.0/24 -> 0/32 portmap tcp/udp auto
map vnic0 192.168.3.0/24 -> 0/32

...and output of ipnat -l:

List of active MAP/Redirect filters:
map net0 192.168.3.0/24 -> 0.0.0.0/32 portmap tcp/udp auto
map net0 192.168.3.0/24 -> 0.0.0.0/32

List of active sessions:

8) on my LDom (test1), I set up the NIC and gave it an IP address in the schema of our network. Output of ipadm on the LDom is as follows:
NAME CLASS/TYPE STATE UNDER ADDR
lo0 loopback ok -- --
lo0/v4 static ok -- 127.0.0.1/8
lo0/v6 static ok -- ::1/128
net0 ip ok -- --
net0/v4 static ok -- 10.10.20.178/24

dladm shows:
LINK CLASS MTU STATE OVER
net0 phys 1500 up --

9) I setup a default route on the LDom with route -p add default 10.12.20.1
netstat -nr shows:
Routing Table: IPv4
Destination Gateway Flags Ref Use Interface
-------------------- -------------------- ----- ----- ---------- ---------
default 10.10.20.1 UG 2 3122
10.10.20.0 10.10.20.178 U 3 11 net0
127.0.0.1 127.0.0.1 UH 2 83 lo0

Routing Table: IPv6
Destination/Mask Gateway Flags Ref Use If
--------------------------- --------------------------- ----- --- ------- -----
::1 ::1 UH 2 0 lo0


...but despite all this, I can't go anywhere or do anything. I can't ping the primary domain from the LDOM, I can't ping the LDOM from the primary domain, etc.

Does anyone have any insight? I would greatly appreciate the assist. Been stuck at this spot for over a week now.

Thanks in advance!

-Lyxix
 
Old 08-12-2014, 02:35 PM   #2
Lyxix
LQ Newbie
 
Registered: Mar 2014
Posts: 13

Original Poster
Rep: Reputation: Disabled
Just trying to keep this thread alive. Been almost a month with no responses. *sniff*
 
Old 08-12-2014, 05:49 PM   #3
jlliagre
Moderator
 
Registered: Feb 2004
Location: Outside Paris
Distribution: Solaris10, Solaris 11, Mint, OL
Posts: 9,500

Rep: Reputation: 355Reputation: 355Reputation: 355Reputation: 355
You might probably want to split that complex setup into smaller simpler parts and investigate them individually.

Obviously, you should first make sure the guest domain communicate properly with its service domain. There is no point trying to go further with NAT or whatever.

And please use code tags!
 
1 members found this post helpful.
Old 08-13-2014, 12:05 PM   #4
Lyxix
LQ Newbie
 
Registered: Mar 2014
Posts: 13

Original Poster
Rep: Reputation: Disabled
jlliagre:

Thanks for the response. Sorry about the lack of code tags - will use them in the future. I tried going back to edit the original post to add them but it seems it's too late for that.

I agree that starting as simple as possible is the way to go, but I don't know how to get much simpler. The problem I'm having is that the LDOM (test1) is not talking to the service domain (primary). I imagine if I could get that far, I could figure out how to continue to get it to the outside world, but I can't even get there right now.

I've kept the setup as simple as possible:
* 1 simple LDOM
* 1 service domain, also the primary domain
* 1 etherstub
* 1 virtual NIC on the LDOM
* 1 physical NIC on the primary domain
* 1 virtual switch

I believe all of those are required to get the service domain to talk to the LDOM, is it not? I'll take any help I can get. I've been trying to figure this out for weeks.

Thanks,
Lyxix
 
Old 08-13-2014, 02:33 PM   #5
Lyxix
LQ Newbie
 
Registered: Mar 2014
Posts: 13

Original Poster
Rep: Reputation: Disabled
Does anybody know where I can go to learn more that doesn't cost thousands of dollars I don't have and my company won't pay for? I've searched Amazon for some books, but the newest they have is a 2011 book on Oracle VM Server that's out of date at this point. Any better or more focused forums? I'm not sure why this is so hard, other than Oracle wanting people to pay 3 arms and 12 legs for their formal training.

Thanks everyone,
Lyxix
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
How to check connectivity from Linux Server to Oracle DB server? k_kush Linux - Enterprise 2 06-05-2013 06:09 AM
[SOLVED] oracle solaris &ubuntu Oliva Mamiro Ubuntu 2 05-26-2013 02:43 AM
Configure Web Server in Solaris 10 sparc Defution Solaris / OpenSolaris 8 09-10-2009 12:21 AM
Network Install of redhat/solaris on sparc 10 melkor_41 Linux - Newbie 2 07-04-2005 10:35 AM
Sparc hardware: dual boot solaris & linux bulliver Solaris / OpenSolaris 18 04-25-2005 07:50 AM


All times are GMT -5. The time now is 12:04 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration