HP-UX 11i June 2004 Release Notes
HP-UX 11i Version 1 Operating Environment Applications
Selectable Applications
Chapter 6
157
HP-UX IPFilter
The security product, HP-UX IPFilter (formerly known as IPFilter/9000), provides
system firewall capabilities by filtering IP packets to control traffic in and out of a
system.
updated for June
2004
Version A.03.05.09 includes the following:
• Support for IP address ranges in IPFilter rules
• Support for multi-level groups
• Enhancements to Dynamic Connection Allocation (DCA)
• Enhancements to logging, memory allocation, and commands
updated for
December 2003
Version A.03.05.08 includes defect fixes to the product and the documentation.
updated for
September 2003
Version A.03.05.07 includes the following:
• Dynamic Connection Allocation (DCA) functionality
• Network Address Translation (NAT) functionality fully supported
NOTE For documentation about HP-UX IPFilter in previous releases of HP-UX 11i v1, see
HP-UX 11i September 2002 Release Notes, available at http://docs.hp.com.
Documentation
For detailed, updated information, see the documents and Web sites listed below:
• Documents (available at http://docs.hp.com):
— HP-UX IPFilter Version A.03.05.09 Administrator's Guide (B9901-90021)
— HP-UX IPFilter A.03.05.09 Release Notes (B9901-90022)
•Manpages:
ipf (4) packet filtering kernel interface
ipf (5) IP packet filter rule syntax
ipf (8) alters packet filtering kernel’s internal lists
ipl (4) data structure for IP packet log device
ipmon (8) monitors /dev/ipl for logged packets
ipstat (8) reports on packet filter statistics and filter list
iptest (1) test packet rules with arbitrary input
•Web Sites:
— http://software.hp.com
— http://docs.hp.com