HP-UX IPFilter Version A.03.05.14 Administrator's Guide
Installing and Configuring HP-UX IPFilter
Troubleshooting HP-UX IPFilter
Chapter 1 17
Troubleshooting HP-UX IPFilter
This section describes how to troubleshoot an HP-UX IPFilter
configuration. It provides information about possible problems that
might occur along with the steps needed to resolve them.
• HP-UX IPFilter is not filtering (it passes/allows all network
traffic).
Verify whether HP-UX IPFilter is running using ipf -V. The
running field should say yes. If it says no, then the HP-UX IPFilter
module has not been loaded. It might have been explicitly unloaded.
To load IPFilter again, use:
/sbin/init.d/ipfboot start
To determine if the HP-UX IPFilter DLKM modules are loaded,
execute either the kmadmin (1M) command on HP-UX 11i v1 or the
kcmodule (1M) command on HP-UX 11i v2. See the respective
manpages for more information.
Load the rules and check again that IPFilter works. If it still does not
work, reboot the system and check /etc/rc.log and
/var/adm/syslog/syslog.log for errors.
• The host does not seem to be on the network and pings do not
go through.
Check the rules you have configured using ipfstat -io. This
command will show the in and the out rules.