Last active
August 29, 2015 14:17
-
-
Save drscream/47d6bc0138a6bbe3e382 to your computer and use it in GitHub Desktop.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/ksh | |
| ## Disable DAD for Solaris | |
| ## http://wiki.hetzner.de/index.php/Solaris_DAD | |
| # IPv4 | |
| /sbin/ipadm set-prop -p _arp_probe_count=0 ip | |
| /sbin/ipadm set-prop -p _arp_fastprobe_count=0 ip | |
| /sbin/ipadm set-prop -p _arp_defend_interval=0 ip | |
| # IPv6 | |
| /sbin/ipadm set-prop -p _dad_announce_interval=0 ipv4 | |
| /sbin/ipadm set-prop -p _dad_announce_interval=0 ipv6 | |
| /sbin/ipadm set-prop -p _ndp_defend_interval=0 ip | |
| /sbin/ipadm set-prop -p _ndp_defend_rate=0 ip | |
| # Result | |
| /sbin/ipadm show-prop -p _arp_probe_count ip | |
| ## Global zone setup - nat and virtual setup | |
| # create virtual network device in switch0 | |
| dladm create-vnic -l switch0 vnic0 | |
| # assign to global zone | |
| ifconfig vnic0 plumb | |
| ifconfig vnic0 inet6 plumb up | |
| # setup ip and network | |
| ifconfig vnic0 inet 192.168.200.1 up | |
| ifconfig vnic0 inet6 addif 2a01:4f8:200:4349::1/64 up | |
| # enable ipv4 forwarding | |
| routeadm -u -e ipv4-forwarding | |
| # enable ipv6 forwarding | |
| routeadm -u -e ipv6-forwarding | |
| # enable ipfilter | |
| svcadm enable network/ipfilter | |
| # reload | |
| ipf -Fa -f /etc/ipf/ipf.conf | |
| ipnat -C -f /etc/ipf/ipnat.conf |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # secure your shit | |
| pass in all | |
| pass out all |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| map rge0 192.168.200.0/24 -> 0/32 portmap tcp/udp auto | |
| map rge0 192.168.200.0/24 -> 0/32 | |
| # do special port forwarding here :-) |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment