Explanation: B:Example:Creating a Policy Around a Mission-Critical Port
The command below creates a policy around inbound HTTPS traffic on an HTTPS server so that HTTPS obtains dedicated NIC hardware and kernel TCP/IP resources. The name specified, https-1, can be used later to modify or delete the policy.
# flowadm add-flow -l bge0 -a transport=TCP,local_port=443 https-1
# flowadm show-flow -l bge0
FLOW LINK IP ADDR PROTO PORT RPORT DSFLD
https1 bge0 -- tcp 443 -- --
C:
Note:
*Flow Restrictions Per Zone
Within a zone, no two flows can have the same name. After adding a flow with the link specified, the link will not be required for display, modification, or deletion of the flow.
Incorrect:
Not A:Flow Properties
The following flow properties are supported. Note that the ability to set a given property to a given value depends on the driver and hardware.
maxbw
Sets the full duplex bandwidth for the flow. The bandwidth is specified as an integer with one of the scale suffixes(K, M, or G for Kbps, Mbps, and Gbps). If no units are specified, the input value will be read as Mbps. The default is no bandwidth limit.
priority
Sets the relative priority for the flow. The value can be given as one of the tokens high, medium, or low. The default is medium.
Not D:The following types of combinations of attributes are supported:
local_ip[/prefixlen]=address
remote_ip[/prefixlen]=address
transport={tcp|udp|sctp|icmp|icmpv6}
transport={tcp|udp|sctp},local_port=port
transport={tcp|udp|sctp},remote_port=port
dsfield=val[:dsfield_mask]
On a given link, the combinations above are mutually exclusive. An attempt to create flows of different combinations will fail.
Note:Flow Attributes
The flow operand that identify a flow in a flowadm command is a comma-separated list of one or more keyword, value pairs from the list below.
local_ip[/prefix_len]
remote_ip[/prefix_len]
transport={tcp|udp|sctp|icmp|icmpv6}
local_port
Identifies a service specified by the local port.
remote_port
Identifies a service specified by the remote port.
dsfield[:dsfield_mask]
NotE:
*flowstat
- report flow statistics
*The flowstat command reports run time statistics about user defined flows. flowadm show-flow provides the flow name information for this command.
*flowstat [-r | -t] [-i interval] [-l link] [flow]
This form of the command iteratively examines all flows and reports statistics. The output is sorted in descending order of flow utilization. If no flow is specified, the system displays statistics for all flows.
-r
Display receive-side statistics only. Includes bytes and packets received, drops, and so forth.
-t
Display transmit-side statistics only. Includes bytes and packets sent, drops, and so forth.
-i interval
Specify an interval in seconds at which statistics are refreshed. The default interval is one second.
-l link | flow]
Display statistics for all flows on the specified link or statistics for the specified flow.
