Manualshelf

Managing Systems and Workgroups: A Guide for HP-UX System Administrators

ManualsBrandsHP ManualsSoftwareHP-UX 11i v1.6 Technical Computing (TCOE) LTU
831832833834835836837838839840
Administering a System: Managing System Security
HP-UX Bastille
Chapter 8832
Stack performance is slightly slower with a Bastille configuration
that utilizes IPFilter.
HP-UX HIDS
If you are also running HP-UX Host Intrusion Detection System, you
may need to modify the IPFilter firewall rules. See HP-UX Host
Intrusion Detection System Administrator’s Guide for details.
MC/ServiceGuard
MC/ServiceGuard’s use of dynamic ports does not work if the
MANDMZ.config or DMZ.config predefined configuration of IPFilter
is installed.
Documentation
More information can be found in the following documents:
HP References bastille (1M) manpage (in /opt/sec_mgmt/share/man/)
Bastille User’s Guide delivered in
/opt/sec_mgmt/bastille/docs/user_guide.txt
Appendix B, “Configuring HP-UX Bastille: Interview,” on page 963
HP-UX 11i Version 2 Installation and Update Guide, online at
http://docs.hp.com
Building a Bastion Host Using HP-UX 11 (white paper) available at
http://www.hp.com/products1/unix/operating/infolibrary/w
hitepapers/building_a_bastion_host.pdf
HP-UX Host Intrusion Detection System Administrator’s Guide,
online at http://docs.hp.com
Installing and Administering HP-UX IPFilter, online at
http://docs.hp.com
HP-UX Secure Shell A.03.10.X Release Notes, online at
http://docs.hp.com
Other References HP-UX 11i Security by Chris Wong (Prentice Hall PTR, ISBN
0-13-033062-0), see
http://www.hp.com/hpbooks/prentice/ptr_0130330620.html