This content has been marked as final. Show 3 replies
It look like shared IP limitation.
For more read: http://download.oracle.com/docs/cd/E19120-01/open.solaris/819-4323/auto15/index.html
i got traceroute running ok on brand zone after i set limitpriv=default,net_rawaccess to the brand zone from zonecfg.
what i don't understand is that the setting of limitpriv=net_rawaccess is not required for native Solaris zone(sparse or whole root)
but brand zone (s8/s9) in order to get traceroute to work.. ( i think this will also enable snoop to work on the brand zone too!!)
This is due to architectural difference in the way branded zones are configured in Solaris. Even after assigning net_rawaccess privilege, snoop is not allowed because the device on which you are running snoop is not owned by non-global zone in case of shared IP.