04-16-2008
Quote:
Originally Posted by
denn
you would be much better off using 2 systems, one to recieve, one to send.
How you configure ipfilter for ftp depends on if you want to do passive FTP or active FTP, if you're using IPSEC, WU-FTPD etc.
For detailed doc. reference:
http://www.docs.hp.com/en/5991-7705/5991-7705.pdf
There's examples, in chapter #7 "HP-UX IPFILTER & FTP", and at the bottom of the pdf file, none for exactly what you're requesting, but should get you on the right track.
PS: make sure you're running the latest version of ipfilter, especially if you're using the latest opengl patch, otherwise you can expect random OS crashes.
they dont want to use multiple systems... they want this secure as possible so clear text does not make it over the network... dont even ask me why they wont use SFTP, you will get the same stupid answer i got
10 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
Hi all
we r using hpUX11.00 9000 sever as oracle 8i db server...
But the problem is we have 4 instances of dbs but upto my knowledge there are only to ports available for TNS listen...
how can i configure or get wht ever it may be the other two ports for tns listener.........
... (2 Replies)
Discussion started by: Prafulla
2 Replies
2. HP-UX
Hello evrebody ,
I have HPUX-11, i try to install "Mozilla" and "unzip utillity"
I cannot decompress file (F.tar.gz) or file(F.gz) by commandes:
gunzip -dv F.tar.gz | tar -xvf
gunzip F.tar.gz
or
gzip -dv F.tar.gz |tar -xvf
gzip F.gz
maybe someone know What's the reason?
maybe i... (1 Reply)
Discussion started by: yanly64
1 Replies
3. HP-UX
Hello evrebody ,
I have HPUX-11, i try to install "Mozilla 1.4" and when i am runing: /opt/mozilla/mozilla
I get this message:
Starting Mozilla ...
/usr/lib/dld.sl: Can't find path for shared library: libintl.sl.1
/usr/lib/dld.sl: No such file or directory... (6 Replies)
Discussion started by: yanly64
6 Replies
4. HP-UX
make --version in parent server ( server in france) gives me the below information
GNU Make version 3.78.1, by Richard Stallman and Roland McGrath.
Built for hppa2.0n-hp-hpux11.00
Copyright (C) 1988, 89, 90, 91, 92, 93, 94, 95, 96, 97, 98, 99
Free Software Foundation, Inc.
This is... (0 Replies)
Discussion started by: vasanthan
0 Replies
5. Solaris
Hello,
| am trying to setup ipfilter on solaris express snv_91 but I don't seem to have the following file available.
/etc/ipf/pfil.ap
Is this an older way of configuring the interface?, I have all the packages installed.
Thanks, (1 Reply)
Discussion started by: Actuator
1 Replies
6. Cybersecurity
Dears,
i am a new user for using ipfilter in solaris 10
and i have some question about this:
by using ipfilter
for example
1- i want specific MAC address able to access hotmail only
2- also i want to make 10MB for this MAC address is a max download per day
3- i am asking about using MAC... (0 Replies)
Discussion started by: coxmanchester
0 Replies
7. Solaris
Hi everybody,
I'm running on Solaris 10 X86 (update 1009).
I would like to make NAT's rule. I explain you.
On Solaris, I configure the principal interface e1000g0 with IP : 192.168.0.33
I created the first logical interface like that :
ifconfig e1000g0 addif 192.168.0.40 netmask... (0 Replies)
Discussion started by: aureliensm
0 Replies
8. Solaris
For some reason ipfilter is blocking inbound fragmented ip packets (the packets are larger than the interface's MTU) that are encapsulating UDP segments. The connection works, so I know ipfilter is letting some traffic through, it is just a lot slower than it should be.
Rules that allow the... (3 Replies)
Discussion started by: ilikecows
3 Replies
9. Solaris
Howdy
My goal is to block locally the applications on a Solaris 10 server to access specific port on a remote machine. All attempts to access the <remote ip>:<remote port> should be rejected with ICMP port unreachable or with TCP RST.
I tried with the following:
block... (2 Replies)
Discussion started by: ralome
2 Replies
10. Solaris
I'm on OmniOS.
I have set a linux zone(lx zone) wich use 10.2.0.0/24 network.
The other network,connected to internet is 192.168.0.0/24
The network interface of 10.2.0.0/24 is bge1
The network interface of 192.168.0.0/24 is bge0
I know is more easy to use the same network but i prefer to... (1 Reply)
Discussion started by: Linusolaradm1
1 Replies
LEARN ABOUT SUNOS
ipfilter
ipfilter(5) ipfilter(5)
NAME
ipfilter - IP packet filtering software
IP Filter is software that provides packet filtering capabilities. On a properly setup system, it can be used to build a firewall.
The IP Filter feature requires that the file /etc/ipf/pfil.ap be modified to include the names of the network interface(s) to be filtered.
A system with filtering on the hme and qfe interfaces would have entries in /etc/ipf/pfil.ap such as those shown below.
# IP Filter pfil autopush setup
#
# See autopush(1M) manpage for more information.
#
# Format of the entries in this file is:
#
#major minor lastminor modules
#le -1 0 pfil
#qe -1 0 pfil
hme -1 0 pfil
qfe -1 0 pfil
See for more information.
See attributes(5) for a description of the following attributes:
+-----------------------------+-----------------------------+
| ATTRIBUTE TYPE | ATTRIBUTE VALUE |
+-----------------------------+-----------------------------+
|Interface Stability |Evolving |
+-----------------------------+-----------------------------+
ipf(1M), ipnat(1M), ipf(4), ipnat(4), attributes(5)
To view license terms, attribution, and copyright for IP Filter, the default path is /usr/lib/ipf/IPFILTER.LICENCE. If the Solaris operat-
ing system has been installed anywhere other than the default, modify the given path to access the file at the installed location.
In the current release of the Solaris operating system, IP Filter startup configuration files are stored in /etc/ipf.
17 Feb 2005 ipfilter(5)