HP-UX IPFilter Version A.03.05.14 Administrator's Guide
Installing and Configuring HP-UX IPFilter
Overview of HP-UX IPFilter Installation
Chapter 1 3
Overview of HP-UX IPFilter Installation
The following section summarizes each step in the HP-UX IPFilter
installation process.
Installation and Configuration Checklist
The following checklist provides the sequence of steps you need to
complete installation and configuration of HP-UX IPFilter. References to
more in-depth information in this manual are also included as part of
each step.
Step 1. Check that your system meets the prerequisites. See “Step 1: Checking
HP-UX IPFilter Installation Prerequisites” on page 4 for detailed
information about this task.
Step 2. Install HP-UX IPFilter using swinstall. See “Step 2: Loading HP-UX
IPFilter Software” on page 5 for detailed information about this task.
Step 3. Decide what rules you must configure to protect your system. Chapter 2
contains the rules for basic firewalls, Chapter 4 contains the rules for
advanced firewalls and Chapter 3contains the rules for Dynamic
Connection Allocation (DCA). Appendix A contains examples of rulesets
for specific situations. You should base your rules on the services running
on your system.
Step 4. Add the filtering rules for your system to the /etc/opt/ipf/ipf.conf
file and add Network Address Translation (NAT) rules to the
/etc/opt/ipf/ipnat.conf file. See “Step 4: Adding Rules to the Rules
Files” on page 8 for details.
Step 5. Load the rules into the HP-UX IPFilter rules file. See “Step 5: Loading
IPFilter and NAT Rules” on page 10 for details.
Step 6. Run the ipf, ipfstat, and ipnat commands to verify the installation as
described in “Step 6: Verifying the Installation and Configuration” on
page 13.
See the ipf (5) and ipfstat (8) manpages for more detailed information on
these commands.