Manualshelf

HP-UX IPFilter V17.05 Administrator Guide HP-UX 11i v2 and HP-UX 11i v3

ManualsBrandsHP ManualsSoftwareHP-UX IPFilter Software
12345678910
11.2.4.1 IPFilter configuration..........................................................................................75
11.2.5 ICMP echo request broadcasts: ip_respond_to_echo_broadcast......................................75
11.2.6 Using ndd to configure ICMPv4 kernel parameters........................................................76
11.3 Filtering ICMPv6 packets by type and code: icmpv6–type and code.......................................76
11.4 Controlling ICMPv6 router discovery and neighbor discovery messages..................................77
11.4.1 Configuring ipf_icmp6_passthru..................................................................................77
11.4.1.1 Configuring ipf_icmp6_passthru on HP-UX 11i v2 and HP-UX 11i v3..........................77
11.4.1.2 Configuring ipf_icmp6_passthru on HP-UX 11i v1...................................................77
12 HP-UX IPFilter and FTP.............................................................................78
12.1 FTP basics.......................................................................................................................78
12.2 WU-FTPD on HP-UX.........................................................................................................78
12.3 Running an FTP server......................................................................................................78
12.3.1 Active FTP...............................................................................................................79
12.3.2 Passive FTP..............................................................................................................79
12.4 Running an FTP client.......................................................................................................79
12.4.1 Active FTP...............................................................................................................79
12.4.2 Passive FTP.............................................................................................................80
13 HP-UX IPFilter with NFS and RPC...............................................................81
13.1 Introduction.....................................................................................................................81
13.2 Configuring NFS to use fixed ports....................................................................................81
13.3 Using the rpc.ipfboot script to update IPFilter rules...............................................................82
13.3.1 Rules files................................................................................................................82
13.3.2 RPC rules configuration file........................................................................................82
14 HP-UX IPFilter and IPSec ..........................................................................84
14.1 IPFilter and IPSec basics...................................................................................................84
14.2 IPSec UDP negotiation.....................................................................................................84
14.3 When traffic appears to be blocked...................................................................................85
14.4 Allowing protocol 50 and protocol 51 traffic.......................................................................85
14.5 IPSec gateways...............................................................................................................86
15 HP-UX IPFilter and Serviceguard................................................................87
15.1 Using HP-UX IPFilter with Serviceguard ...............................................................................87
15.1.1 Enabling or disabling IPFilter......................................................................................87
15.1.2 Local failover...........................................................................................................87
15.1.3 Remote failover.........................................................................................................87
15.1.3.1 Filtering on a package IP address........................................................................88
15.1.3.2 Mandatory rules...............................................................................................88
15.1.3.2.1 Rules for intra-cluster communication.............................................................89
15.1.3.3 Rules for external access....................................................................................90
15.1.3.3.1 WBEM access...........................................................................................90
15.1.3.3.2 Quorum server..........................................................................................90
15.1.3.3.3 Remote command execution........................................................................90
15.1.3.3.4 Cluster object manager..............................................................................91
15.1.3.3.5 Serviceguard manager plug-in.....................................................................91
15.1.3.3.6 Serviceguard manager standalone...............................................................91
15.1.3.3.7 Consolidated log: clog...............................................................................91
15.1.4 DCA remote failover.................................................................................................92
Contents 7