System information
124 Logical Partitions on System i5
25.The Guided Setup Wizard - Configure HMC firewall panel appears next (see Figure 4-25
on page 124). In the top panel (current applications) are listed all the available applications
that are on the HMC. In the bottom pane (Applications allowed through firewall) are all the
applications available to the open network through the HMC firewall. You can decide to
remove applications completely from the firewall by selecting the relevant application from
the bottom panel and clicking the Remove button.
Applications such a WebSM.name, which allows users to access the HMC by installing a
remote client on their desktop PC are by default blocked. You can allow applications to
pass through the firewall by selecting them from the top pane and clicking Allow
incoming or Allow incoming by IP address. The function, Allow incoming, will enable all
remote clients access to the selected application. The other option, Allow incoming by IP
address, will only authorize specific remote client’s IP addresses to have access to that
application.
Figure 4-25 Guided Setup - eth1 firewall websm
In our example we select the WebSM.name application and click Allow incoming by IP
address.
The Configure HMC firewall for eth1 panel is then displayed (Figure 4-26). You can add
clients IP addresses by entering an IP address and network mask in the fields provided
and clicking the Add button. You can repeat this process for other IP addresses, as each
application can have multiple authorized IP address entries. You can also remove any
unwanted clients by selecting the relevant IP address and clicking the Remove button.