How does agent protection work for Solaris Control Domains and Logical Domains?

The Deep Security Agent supports Solaris Control Domains (CDOMs) and Logical Domains (LDOMs). This includes support for CDOMs and LDOMs running in the same environment, with the following limitations:

• The agent on the Control Domain cannot apply Firewall or Intrusion Prevention protection on packets flowing between LDOMs on the same server
• The agent on the Control Domain cannot run Anti-Malware, Integrity Monitoring, or Log Inspection scans for files in LDOMs on the server

To ensure protection, it is recommended to install the Deep Security Agent on all CDOMs and LDOMs.

For more information on Solaris CDOMs and LDOMs, see the How to Configure the Control Domain and Hypervisor and Logical Domains sections of Oracle's VM server administration guide.

For agent installation instructions, see Manually install the Deep Security Agent.

For information on Solaris zones, see How does agent protection work for Solaris zones?