Manualshelf

HP SIM V5.1 User Guide (356920-009, January 2007)

ManualsBrandsHP ManualsSoftwareHP Systems Insight Manager 5.x HP-UX Software
541542543544545546547548549550
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
:RH-Firewall-1-INPUT - [0:0]
-A INPUT -j RH-Firewall-1-INPUT
-A FORWARD -j RH-Firewall-1-INPUT
-A RH-Firewall-1-INPUT -i lo -j ACCEPT
-A RH-Firewall-1-INPUT -p icmp --icmp-type any -j ACCEPT
-A RH-Firewall-1-INPUT -p 50 -j ACCEPT
-A RH-Firewall-1-INPUT -p 51 -j ACCEPT
-A RH-Firewall-1-INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 80 -j ACCEPT
-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 21 -j ACCEPT
-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 22 -j ACCEPT
-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 2301 -j
ACCEPT
-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 2381 -j
ACCEPT
-A RH-Firewall-1-INPUT -j REJECT --reject-with icmp-host-prohibited
COMMIT
SUSE Linux Enterprise Server
SUSE Linux Enterprise Server 8 and 9 firewalls are configured using the YAST2 utility.
To configure the firewall:
1. Using the YAST2 utility, select Security & UsersFirewall. The Firewall Configuration (Step 1 of
4): Basic Settings window appears.
2. Click Next. The Firewall Configuration (Step 2 of 4): Services window appears.
3. In the Additional Services field, enter 2301:2381 and click Next. The Firewall Configuration (Step
3 of 4): Features window appears.
4. Click Next. The Firewall Configuration (Step 4 of 4): Logging Options window appears.
5. Click Next. A dialog box displays asking you to confirm your intention to save settings and active
firewall.
6. Click Continue. The firewall is configured and your settings are saved.
Browser
When I try to browse to the System Management Homepage on the same Linux system on which HP SIM is
installed, I receive multiple browser warning messages.
Solution:
1. Open a terminal window.
2. At the command prompt, enter:
cp /etc/opt/hp/sslshare/* /opt/hp/sslshare
3. Press the Enter key.
4. At the command prompt, enter:
service hpsmhd restart
5. Press the Enter key.
When browsing into a Linux or HP-UX CMS on which the HP Insight Management Agents are installed, a
Security Alert dialog box appears when I click an Insight Management Agent.
Solution:
The Management HTTP server certificate has not been overwritten with the HP SIM certificate
because OpenSSL is not configured correctly. On Linux, OpenSSL should be installed in the /usr/bin/
Browser 541