Manualshelf

Specifications

ManualsBrandsMicroNet ManualsMusical equipmentFibre to SAS/SATA II RAID Subsystem
231232233234235236237238239240
Disabling a Firewall
formula:
10001 + <mirror number> + <256 * i>
where i starts at zero and is incremented until the formula calculates a port number that is not in use.
In use constitutes any port found defined in /etc/services, found in the output of netstat -an --inet, or
already defined as in use by another LifeKeeper Data Replication resource.
For example:If the mirror number for the LifeKeeper Data Replication resource is 0, then the formula
would initially calculate the port to use as 10001, but that number is defined in /etc/services on some
Linux distributions as the SCP Configuration port. In this case, i is incremented by 1 resulting in Port
Number 10257, which is not in /etc/services on these Linux distributions.
Disabling a Firewall
If you wish to disable your firewall, then do the following:
1. Stop the firewall using one of the following commands, depending upon your firewall package:
/etc/init.d/ipchains stop or
/etc/init.d/iptables stop
If operating in an IPv6 environment, be sure to account forip6tables
/etc/init.d/ip6tables stop
If running SuSE Linux Enterprise Server
/etc/init.d/SuSEfirewall2_init stop
/etc/init.d/SuSEfirewall2_setup stop
2. Either remove the package (using rpm -e) or disable its startup using one of the following
commands, depending upon your firewall package:
/sbin/chkconfig --del ipchains or
/sbin/chkconfig --del iptables
/sbin/chkconfig --del ip6tables
If running SuSE Linux Enterprise Server, you must
manageSuSEfirewall2configuration settings.
Running the LifeKeeper GUI Through a Firewall
In some situations, a LifeKeeper cluster is placed behind a corporate firewall and administrators wish
to run the LifeKeeper GUI from a remote system outside the firewall.
LifeKeeper uses Remote Method Invocation (RMI) to communicate between the GUI server and
client. The RMI client must to be able to make connections in each direction. Because the RMI client
uses dynamic ports, you can not use preferential ports for the client.
One solution is to use ssh to tunnel through the firewall as follows:
SteelEye Protection Suite for Linux209