Firt of all.. check if you have installed the Ipfilter:
# swlist | grep IPF
B9901AA A.03.05.12 HP IPFilter 3.5alpha5
Configuration file:
/etc/opt/ipf/ipf.conf
Check the rulles actives:
# ipfstat -io
Verify that IP Filter is running:
# ipf -V
Check the kernel module is loaded:
# kcmodule| grep -i ipf
To start the Ipfiter:
# /sbin/init.d/ipfboot start
In the file /etc/rc.config.d/ipfconf set the IPF_START to 1 and the ipfilter will be started with the system boot:
IPF_START=1
Follow a simple example, we block any incoming conections from the server 0189 to our HP-UX box:
# vi /etc/opt/ipf/ipf.conf
block in quick on lan0 from 0189 to any
pass in from any to any
It's not recommended use it with ServiceGuard and 11.31, read the docs of Ipfiter for more details.
Ipfilter - Configuring HP-UX Ipfilter
sábado, 7 de janeiro de 2012