Manualshelf

HP-UX IPFilter V17.05 Administrator Guide

ManualsBrandsHP ManualsSoftwareHP-UX IPFilter Software
12345678910
8 Tips for Securing Your System.....................................................................................73
8.1 Blocking Services by Port Number and Protocol............................................................................73
8.1.1 Example: Firewall on a Web Server.........................................................................................73
8.1.2 Example: Firewall for Multiple Services.................................................................................73
8.2 Creating a Complete Filter by Interface..........................................................................................74
8.3 Combining IP Address and Network Interface Filtering................................................................74
8.4 Using Bidirectional Filtering...........................................................................................................75
8.5 Using HP-UX IPFilter with End System Security Features.............................................................75
9 Troubleshooting HP-UX IPFilter....................................................................................77
9.1 Viewing IPFilter Statistics and Active Rules with ipfstat...............................................................78
9.1.1 Syntax......................................................................................................................................78
9.1.2 Options....................................................................................................................................78
9.1.3 Examples.................................................................................................................................79
9.2 Testing Rules with ipftest................................................................................................................83
9.2.1 Syntax......................................................................................................................................83
9.2.2 Options....................................................................................................................................83
9.2.3 Example...................................................................................................................................84
9.3 Logging IPFilter Packets..................................................................................................................86
9.3.1 Using the log keyword to Configure IPFilter Logging...........................................................86
9.3.1.1 level log-level.............................................................................................................86
9.3.1.2 first...................................................................................................................................86
9.3.1.3 body.................................................................................................................................87
9.3.2 Using ipmon to View IPFilter Log Entries..............................................................................88
9.3.2.1 Syntax..............................................................................................................................88
9.3.2.2 Options............................................................................................................................88
9.3.2.3 Examples.........................................................................................................................88
9.3.2.4 ipmon and DCA Logging................................................................................................89
9.3.3 Analyzing IPFilter Log Events................................................................................................89
9.3.3.1 Syntax..............................................................................................................................90
9.3.3.2 ipmon.conf File Syntax....................................................................................................90
9.4 Troubleshooting Tips.......................................................................................................................90
9.5 Reporting Problems.........................................................................................................................92
10 HP-UX IPFilter Utilities.................................................................................................93
10.1 The ipf Utility................................................................................................................................93
10.1.1 Syntax....................................................................................................................................93
10.1.2 Options..................................................................................................................................93
10.1.3 Example.................................................................................................................................95
10.2 The ipnat Utility.............................................................................................................................96
10.2.1 Syntax....................................................................................................................................96
10.2.2 Options..................................................................................................................................96
10.2.3 Example.................................................................................................................................96
10.3 The ipfilter Utility (HP-UX 11i v3)................................................................................................97
10.3.1 Syntax....................................................................................................................................97
10.3.2 Options..................................................................................................................................97
10.3.3 Example.................................................................................................................................97
10.4 The ippool Utility..........................................................................................................................97
10.4.1 Syntax....................................................................................................................................97
10.4.2 Global Options.......................................................................................................................98
10.4.3 Command Options................................................................................................................98
6 Table of Contents