Which configuration method can be used to safely achieve this goal?

Three zones each need access to shared data. Which configuration method can be used to safely
achieve this goal?

Three zones each need access to shared data. Which configuration method can be used to safely
achieve this goal?

A.
Put the data on an NFS server, and mount thatshare from each zone.

B.
Put the data on an NFS server,mount the share in the global zone, and configure a
loopbackmount from the global zone into each zone using zonecfg.

C.
Create an iSCSI LUN on a remote server, accessible to the global zone. Give each zone direct
accessto the LUN.

D.
Create a LUN on a SAN and give the global zone access to it. Give each zone
directdeviceaccess to the LUN.

E.
Create a ZFS filesystem and utilize the cloning feature to replicate the data to the
individualzones.

Explanation:
How to Loopback Mount a File That Is Usually Not Visible in a Labeled Zone
This procedure enables a user in a specified labeled zone to view files that are not exported from
the global zone by default.
# zoneadm -z zone-name halt
For example, enable ordinary users to view a file in the /etc directory.
# zonecfg -z zone-name
add filesystem
set special=/etc/filename
set directory=/etc/filename
set type=lofs
add options [ro,nodevices,nosetuid]
end
exit
Note – Certain files are not used by the system, so that loopback mounting them has no effect. For
example, the /etc/dfs/dfstab file in a labeled zone is not checked by Trusted Extensions software.

For more information, see Sharing Files From a Labeled Zone.
# zoneadm -z zone-name boot
Note:
*In this Solaris release, you create a ZFS file system share and publish the share as follows:
Create the file system share and define the NFS or SMB share properties by using the zfs share
command.
*ZFS File Sharing Within a Non-Global Zone
In previous Solaris releases, you could not create and publish NFS or SMB shares in a Oracle
Solaris non-global zone. In this Solaris release, you can create and publish NFS shares by using
the zfs set share command and the legacy share command with a non-global zone.
*If a ZFS file system is mounted and available in a non-global zone, it can be shared in that zone.
*A file system can be shared in the global zone if it is not mounted in a non-global zone or is not
shared to a non-global zone.
*If a ZFS file system’s mountpoint property set to legacy, the file system can be shared by using
the legacy share command.
Reference:Oracle Solaris 11 Express,Managing Zones

Show Hint

Leave a Reply 1

Your email address will not be published. Required fields are marked *

dupek

dupek

A is safer (client and server side file locking). Zones can be NFS clients. Version 2, version 3, and version 4 protocols are supported.
B: may be problem with file locking, but I’m not sure

Reply