Oracle Exam 1Z0-580 Topic 3 Question 9 Discussion

How to Loopback Mount a File That Is Usually Not Visible in a Labeled Zone

This procedure enables a user in a specified labeled zone to view files that are not exported from the global zone by default.

1. Halt the zone whose configuration you want to change.

# zoneadm -z zone-name halt

2. Loopback mount a file or directory.

For example, enable ordinary users to view a file in the /etc directory.

# zonecfg -z zone-name

add filesystem

set special=/etc/filename

set directory=/etc/filename

set type=lofs

add options [ro,nodevices,nosetuid]

end

exit

Note - Certain files are not used by the system, so that loopback mounting them has no effect. For example, the /etc/dfs/dfstab file in a labeled zone is not checked by Trusted Extensions software. For more information, see Sharing Files From a Labeled Zone.

3. Start the zone.

# zoneadm -z zone-name boot

Note:

* In this Solaris release, you create a ZFS file system share and publish the share as follows:

Create the file system share and define the NFS or SMB share properties by using the zfs share command.

* ZFS File Sharing Within a Non-Global Zone

In previous Solaris releases, you could not create and publish NFS or SMB shares in a Oracle Solaris non-global zone. In this Solaris release, you can create and publish NFS shares by using the zfs set share command and the legacy share command with a non-global zone.

* If a ZFS file system is mounted and available in a non-global zone, it can be shared in that zone.

* A file system can be shared in the global zone if it is not mounted in a non-global zone or is not shared to a non-global zone.

* If a ZFS file system's mountpoint property set to legacy, the file system can be shared by using the legacy share command.