n
y
B-5: Determine container concept
sparse root or whole root
n
B-4: zonecfg:brand=native
B-6: Determine file system layout
B-7: Determine additional zonecfg:inherit-pkg-dir
B-8: Consider access to additional file systems of the global zone;
if necessary specify zonecfg:add fs with attributes
B-9: Consider direct access to raw devices of the global zone;
if necessary specify zonecfg:set match
B-End: Determining the configuration of a container
B-14: zonecfg:ip-type=exclusive
separate network interface or
tagged vlan Interface required
B-15: zonecfg:ip-type=shared
network interface of the global
zone is shared with container
B-10: Select CPU and process resource management
- Fair-Share Scheduler
- Resource Pool (dynamic or static resource pool)
- CPU capping
- LWP limitation
B-11: Specify memory resource limitations
- Virtual memory, perhaps physical memory
- Shared memory
B-12: Specify IPC limitations
- Message queue
- Semaphore
- Shared memory
B-13:
Is one of the requirements
of the container network met?
- own network with own configurable routing table
- other raw access to the network interface
- own NDD parameters can be set in the container
- network monitoring (snoop) in the container
- DHCP server or DHCP client
- IP filter in the container
