Re: Using to isolate 2 virtual servers
From: Andrew Gabriel (andrew_at_cucumber.demon.co.uk)
Date: 05/08/03
- Next message: Nasir: "Re: removing large directory"
- Previous message: Rich Teer: "Re: How to see the full name of a script in the process table?"
- In reply to: Sicd: "Using to isolate 2 virtual servers"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 8 May 2003 19:12:36 GMT
In article <YaRta.3587$ER4.360644@news20.bellglobal.com>,
"Sicd" <denis.sicard@sympatico.ca> writes:
> Hi everyone,
>
> I'm looking for a solution to isolate two virtual servers on the same Sun
> machine. In my production setup, I have different servers in different
> security zone. Each zones are isolated by a firewall. I want to reproduce
> that setup in my pre production environment but I dont want to by several
> servers. I'm wondering if jail can help. My main issue is about TCP traffic.
> How can I be sure that the request and answer will go throught to good IP
> channel (adress). I don't care about installing many NIC but how to make
> sure that I can assign an adress to a jail and a process running in an other
> jail willnot join it.
You can have multiple logical interfaces on one NIC, so you don't
need multiple NICs unless they have to be connected to different
segments. You don't give any info about what your servers are
(e.g. web servers, some home-brew application, etc). Many applications
can be configured to bind to just specific addresses, rather than
everything, so you can in effect bind them to a logical interface.
A future version of Solaris will contain some additional Container
features to specifically help out in this area.
-- Andrew Gabriel Consultant Software Engineer
- Next message: Nasir: "Re: removing large directory"
- Previous message: Rich Teer: "Re: How to see the full name of a script in the process table?"
- In reply to: Sicd: "Using to isolate 2 virtual servers"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
