03-21-2009
Firewall Build: Problem Updating, Patching
In building a firewall, I need to update and patch the operating system after
the initial install.
However, the compiler and sources should never be on a firewall PC.
So what is the best way to do this ? This firewall PC has 2 identical drives;
I was thinking of performing 2 installs, updating and patching one system, and transferring the binaries to the actual firewall drive.
But exactly how to I go about doing this. 'Sorry, my Unix is not up to speed just yet, I'm sure this is a silly question, but, if I don't ask....
Thanks !
10 More Discussions You Might Find Interesting
1. Solaris
Hi chaps, long time no post from me lol
might be an awkward one to get this, I have just jumpstarted a server, and it boots ok untill it gets to loading Solaris Volume Manager, it gets this far and then just sits there, any ideas what might cause this, have rejumped the machine twice now lol.
... (2 Replies)
Discussion started by: SemperFi
2 Replies
2. Programming
Hi,
I am facing problem while doing build on AIX using xlC compiler. We are using purify. Purify fails to instrument the a few libraries. Interestingly these are not developed by us and are 3rd party SW components. Can someone let me know how to proceed with the build?
Here is the output... (0 Replies)
Discussion started by: asutoshch
0 Replies
3. UNIX for Advanced & Expert Users
Hello All,
I am using a HP-UX machine and I want to update the .profile file so that after login to my userID that will be applicable to my ID also. What I am trying to do is :
In .profile file I am trying to write in /home/userID folder:
export PATH=$PATH:$HOME:.
so that whenever I will... (3 Replies)
Discussion started by: abhishek0071
3 Replies
4. UNIX for Advanced & Expert Users
Hi,
When i'm compiling my C files, I'm getting an error saying that the file name i've defined is undeclared. Could someone tell me how to solve this error. I've defined the file name as
#define _FILE_CODE_ _XYZ_C_
The error is "_XYZ_C undeclared".
Thanks in advance (1 Reply)
Discussion started by: laxmi
1 Replies
5. Shell Programming and Scripting
Here is my situation. You can make all kinds of comments about how I am doing it and why from the networking standpoint, but I am really only looking for comments on how to make it work. Of course, any other ideas for how to do this would be welcome.
I have an iptables firewall that allows only... (1 Reply)
Discussion started by: manouche
1 Replies
6. HP-UX
Hi
Im trying to build & instal berkeleydb ( not as root) ...... in path /opt/dev-tools
installation was perfect and binaries were created in /opt/dev-tools/bin
When i try to execute the binaries ( berkeley_db_svc) it throw me an error
/usr/lib/dld.sl: Can't find path for shared... (1 Reply)
Discussion started by: vasanthan
1 Replies
7. Shell Programming and Scripting
Hello,
I read and search through this wonderful forum and tried different approaches but it seems I lack some knowledge and neurones ^^
Here is what I'm trying to achieve :
file1:
test filea 3495;
test fileb 4578;
test filec 7689;
test filey 9978;
test filez 12300;
file2:
test filea... (11 Replies)
Discussion started by: mecano
11 Replies
8. HP-UX
Hi,
I have installed HP-UX 11.31 on a rx6600 box. The installation went fine and was completed without any errors. But wheni connect to the server using ssh,
it asks for a username, when i enter it, it doesnt prompt for a password:
login:username
blank--------
All i could see in... (1 Reply)
Discussion started by: sag71155
1 Replies
9. AIX
I am trying to apply Maintenance Level 11 to one of our older AIX machines that is currently at ML0. When I try to install the bos.rte.install for ML11 it gives the error 0503-248 stating:
Verifying requisites...
0503-248 installp: Error: A fileset has parts that are different from one or
more... (0 Replies)
Discussion started by: DMcNutt
0 Replies
10. AIX
Hello AIX experts,
I have 7038-6M2 server, its operating system is AIX 5.2, and its firmware is 3K041021
After some searching on net, I tried to update its firmware level to 3K080425, so I downloaded the required rpm, and followed the steps.
After rebooting the server, it stopped and an error... (6 Replies)
Discussion started by: Mohannad
6 Replies
LEARN ABOUT DEBIAN
fwb_iosacl
fwb_pix(1) Firewall Builder fwb_pix(1)
NAME
fwb_ipt - Policy compiler for Cisco IOS ACL
SYNOPSIS
fwb_iosacl [-vV] [-d wdir] [-4] [-6] [-i] -f data_file.xml object_name
DESCRIPTION
fwb_iosacl is firewall policy compiler component of Firewall Builder (see fwbuilder(1)). Compiler reads objects definitions and firewall
description from the data file specified with "-f" option and generates resultant Cisco IOS ACL configuration file. The configuration is
written to the file with the name the same as the name of the firewall object, plus extension ".fw". Compiler generates extended access
lists for Cisco routers running IOS v12.x using "ip access-list <name>" syntax. Compiler also generates "ip access-group" commands to
assign access lists to interfaces. Generated ACL configuration can be uploaded to the router manually or using built-in installer in the
fwbuilder(1) GUI.
The data file and the name of the firewall objects must be specified on the command line. Other command line parameters are optional.
OPTIONS
-4 Generate iptables script for IPv4 part of the policy. If any rules of the firewall refer to IPv6 addresses, compiler will skip these
rules. Options "-4" and "-6" are exclusive. If neither option is used, compiler tries to generate both parts of the script,
although generation of the IPv6 part is controlled by the option "Enable IPv6 support" in the "IPv6" tab of the firewall object
advanced settings dialog. This option is off by default.
-6 Generate iptables script for IPv6 part of the policy. If any rules of the firewall refer to IPv6 addresses, compiler will skip these
rules.
-f FILE
Specify the name of the data file to be processed.
-d wdir
Specify working directory. Compiler creates file with ACL configuration in this directory. If this parameter is missing, then gen-
erated ACL will be placed in the current working directory.
-v Be verbose: compiler prints diagnostic messages when it works.
-V Print version number and quit.
-i When this option is present, the last argument on the command line is supposed to be firewall object ID rather than its name
URL
Firewall Builder home page is located at the following URL: http://www.fwbuilder.org/
BUGS
Please report bugs using bug tracking system on SourceForge:
http://sourceforge.net/tracker/?group_id=5314&atid=105314
SEE ALSO
fwbuilder(1), fwb_pix(1), fwb_ipfw(1), fwb_ipf(1), fwb_ipt(1) fwb_pf(1)
FWB
fwb_pix(1)