Manualshelf

HP-UX IPFilter V18.0 Administrator Guide for HP-UX 11i v3

ManualsBrandsHP ManualsSoftwareHP-UX IPFilter Software
12345678910
11.2.4.1 IPFilter configuration..........................................................................................76
11.2.5 ICMP echo request broadcasts: ip_respond_to_echo_broadcast......................................76
11.2.6 Using ndd to configure ICMPv4 kernel parameters........................................................77
11.3 Filtering ICMPv6 packets by type and code: icmpv6–type and code.......................................77
11.4 Controlling ICMPv6 router discovery and neighbor discovery messages..................................78
11.4.1 Configuring ipf_icmp6_passthru..................................................................................78
11.4.1.1 Configuring ipf_icmp6_passthru on HP-UX 11i v2 and HP-UX 11i v3..........................78
11.4.1.2 Configuring ipf_icmp6_passthru on HP-UX 11i v1...................................................78
12 HP-UX IPFilter and FTP.............................................................................79
12.1 FTP basics.......................................................................................................................79
12.2 WU-FTPD on HP-UX.........................................................................................................79
12.3 Running an FTP server......................................................................................................79
12.3.1 Active FTP...............................................................................................................80
12.3.2 Passive FTP..............................................................................................................80
12.4 Running an FTP client.......................................................................................................80
12.4.1 Active FTP...............................................................................................................80
12.4.2 Passive FTP.............................................................................................................81
13 HP-UX IPFilter with NFS and RPC...............................................................82
13.1 Introduction.....................................................................................................................82
13.2 Configuring NFS to use fixed ports....................................................................................82
13.3 Using the rpc.ipfboot script to update IPFilter rules...............................................................83
13.3.1 Rules files................................................................................................................83
13.3.2 RPC rules configuration file........................................................................................83
14 HP-UX IPFilter and IPSec ..........................................................................85
14.1 IPFilter and IPSec basics...................................................................................................85
14.2 IPSec UDP negotiation.....................................................................................................85
14.3 When traffic appears to be blocked...................................................................................86
14.4 Allowing protocol 50 and protocol 51 traffic.......................................................................86
14.5 IPSec gateways...............................................................................................................87
15 HP-UX IPFilter and Serviceguard................................................................88
15.1 Using HP-UX IPFilter with Serviceguard ...............................................................................88
15.1.1 Enabling or disabling IPFilter......................................................................................88
15.1.2 Local failover...........................................................................................................88
15.1.3 Remote failover.........................................................................................................88
15.1.3.1 Filtering on a package IP address........................................................................89
15.1.3.2 Mandatory rules...............................................................................................89
15.1.3.2.1 Rules for intra-cluster communication.............................................................90
15.1.3.3 Rules for external access....................................................................................91
15.1.3.3.1 WBEM access...........................................................................................91
15.1.3.3.2 Quorum server..........................................................................................91
15.1.3.3.3 Remote command execution........................................................................91
15.1.3.3.4 Cluster object manager..............................................................................92
15.1.3.3.5 Serviceguard manager plug-in.....................................................................92
15.1.3.3.6 Serviceguard manager standalone...............................................................92
15.1.3.3.7 Consolidated log: clog...............................................................................92
15.1.4 DCA remote failover.................................................................................................93
Contents 7