[OpenIndiana-discuss] Creating a network with zones

Joris FAGBEMIRO fagbjoris at gmail.com
Fri Nov 14 14:11:35 UTC 2014


True enough i have four stubs (one per networks with firewalls) and an
another one to connect the firewalls to the router.
In fact, i want to use the router zone to make an internal routing within
the server.Three of the firewalls are connected to the physical NIC and the
last is entirely virtual.
Now i'm planning to use VLAN on the stub which connect the router and the
firewalls. In that case, i think that i will create just one VNIC on the
router.
Am i right?
Le 14 nov. 2014 14:16, "Jim Klimov" <jimklimov at cos.ru> a écrit :

> 14 ноября 2014 г. 12:00:35 CET, Jonathan Adams <t12nslookup at gmail.com>
> пишет:
> >On 13 November 2014 23:06, Joris FAGBEMIRO <fagbjoris at gmail.com> wrote:
> >
> >> Hi Jon.
> >> I'm planning to work (deployment of a datacenter) on a server which
> >have 3
> >> physical NIC.
> >> Within this server,there will be a lot of servers (zones) distributed
> >among
> >> four networks. Each network have his set of servers and a firewall
> >which is
> >> the gate.
> >> Now to enable communications between these networks, i have to create
> >a
> >> zone which will be the router. This router must be connected to each
> >> firewall.
> >> So i want to know that, if it is possible to connect a VNIC of each
> >> firewall to a VNIC of tge router?or should i create an etherstub?
> >> Hope that it's more comprehensible!!
> >>
> >
> >Yeah, I would create 4 etherstubs for these 4 networks and then have
> >vnics
> >running from these etherstubs, then your "router" zone could link these
> >etherstubs to your external sites with ipf firewalls on it to protect
> >one
> >etherstub from any other.
> >
> >Jon
> >_______________________________________________
> >openindiana-discuss mailing list
> >openindiana-discuss at openindiana.org
> >http://openindiana.org/mailman/listinfo/openindiana-discuss
>
> Note that if "Each network have his set of servers and a firewall which is
> the gate" then you actually have more stubs and subnets: one for each 4
> networks themselves (hosts behind their gate-firewall), 1 to 4 connecting
> the gates with a common default-router (maybe with or without firewall
> itself, probably with NAT for internet link though), and maybe 1 or more
> external link from this router to the world.
> --
> Typos courtesy of K-9 Mail on my Samsung Android
>
> _______________________________________________
> openindiana-discuss mailing list
> openindiana-discuss at openindiana.org
> http://openindiana.org/mailman/listinfo/openindiana-discuss
>


More information about the openindiana-discuss mailing list