HP-UX Secure Resource Partitions (SRP) A.02.02 Administrator's Guide
10
1.1.2.2 HP Process Resource Manager (PRM)
HP Process Resource Manager (PRM) manages CPU and memory allocation and enables you to
configure dedicated resources for an SRP compartment. PRM can be used to set minimum and
maximum allocations of system resources available to processes in an SRP compartment. When PRM
is enabled for SRP, each SRP compartment is assigned a PRM group.
1.1.2.3 IP Interfaces
You can use SRP to create an IP interface for exclusive use by the compartment. You do not have to
use a dedicated network interface card for this IP interface; you can create a logical IP interface on a
network interface card.
An SRP compartment can also use an IP interface that is already in use by the system if it is not
assigned to another compartment.
1.1.2.4 Initialization and Shutdown Services
You can use SRP to create an initialization and shutdown directory structure for the compartment with
compartment control scripts that are automatically executed when the system starts up or shuts down.
You can also execute a compartment control script to manually start or shut down an SRP
compartment.
1.1.2.5 HP-UX IPFilter
HP-UX IPFilter is a host-based firewall software solution that enables you to restrict network traffic
according to packet attributes, such as:
• Source IP address
• Destination IP address
• Protocol (such as TCP or UDP)
• TCP and UDP port numbers
1.1.2.6 HP-UX IPSec
HP-UX IPSec enables you to secure IP packets by encrypting and authenticating IP data. You configure
IPSec to select packets for security according to packet attributes, such as:
• Source IP address
• Destination IP address
• Protocol (such as TCP or UDP)
• TCP and UDP port numbers
1.2 SRP Components
SRP includes the following components:
• The SRP Manager
• The srp_sys utility
• The srp utility
• The srp_su utility
• The srp_ps utility
• SRP templates, which manage configuration data for services
• The Configuration Synchronization Manager (CMGR) utility and libraries