Login or Register to Ask a Question and Join Our Community


HP-UX

ipfilter hpux11.11

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Operating Systems HP-UX ipfilter hpux11.11
# 1  
Old 04-09-2008
ipfilter hpux11.11
how can I create a rule that will allow my machine to FTP to itself, but not allow other machines to FTP to it.. I know this sounds weird but this how they want it so they can test some application functionality that uses ftp.
# 2  
Old 04-09-2008
you would be much better off using 2 systems, one to recieve, one to send.
How you configure ipfilter for ftp depends on if you want to do passive FTP or active FTP, if you're using IPSEC, WU-FTPD etc.

For detailed doc. reference:
http://www.docs.hp.com/en/5991-7705/5991-7705.pdf

There's examples, in chapter #7 "HP-UX IPFILTER & FTP", and at the bottom of the pdf file, none for exactly what you're requesting, but should get you on the right track.

PS: make sure you're running the latest version of ipfilter, especially if you're using the latest opengl patch, otherwise you can expect random OS crashes.
# 3  
Old 04-16-2008
Quote:
Originally Posted by denn
you would be much better off using 2 systems, one to recieve, one to send.
How you configure ipfilter for ftp depends on if you want to do passive FTP or active FTP, if you're using IPSEC, WU-FTPD etc.

For detailed doc. reference:
http://www.docs.hp.com/en/5991-7705/5991-7705.pdf

There's examples, in chapter #7 "HP-UX IPFILTER & FTP", and at the bottom of the pdf file, none for exactly what you're requesting, but should get you on the right track.

PS: make sure you're running the latest version of ipfilter, especially if you're using the latest opengl patch, otherwise you can expect random OS crashes.
they dont want to use multiple systems... they want this secure as possible so clear text does not make it over the network... dont even ask me why they wont use SFTP, you will get the same stupid answer i got Smilie
Login or Register to Ask a Question

Previous Thread | Next Thread

10 More Discussions You Might Find Interesting

1. Solaris

A little help with ipfilter on Omnios

I'm on OmniOS. I have set a linux zone(lx zone) wich use 10.2.0.0/24 network. The other network,connected to internet is 192.168.0.0/24 The network interface of 10.2.0.0/24 is bge1 The network interface of 192.168.0.0/24 is bge0 I know is more easy to use the same network but i prefer to... (1 Reply)
Discussion started by: Linusolaradm1
1 Replies

2. Solaris

Ipfilter question

Howdy My goal is to block locally the applications on a Solaris 10 server to access specific port on a remote machine. All attempts to access the <remote ip>:<remote port> should be rejected with ICMP port unreachable or with TCP RST. I tried with the following: block... (2 Replies)
Discussion started by: ralome
2 Replies

3. Solaris

ipfilter blocking ip fragments

For some reason ipfilter is blocking inbound fragmented ip packets (the packets are larger than the interface's MTU) that are encapsulating UDP segments. The connection works, so I know ipfilter is letting some traffic through, it is just a lot slower than it should be. Rules that allow the... (3 Replies)
Discussion started by: ilikecows
3 Replies

4. Solaris

NAT IPFilter

Hi everybody, I'm running on Solaris 10 X86 (update 1009). I would like to make NAT's rule. I explain you. On Solaris, I configure the principal interface e1000g0 with IP : 192.168.0.33 I created the first logical interface like that : ifconfig e1000g0 addif 192.168.0.40 netmask... (0 Replies)
Discussion started by: aureliensm
0 Replies

5. Cybersecurity

questions about ipfilter

Dears, i am a new user for using ipfilter in solaris 10 and i have some question about this: by using ipfilter for example 1- i want specific MAC address able to access hotmail only 2- also i want to make 10MB for this MAC address is a max download per day 3- i am asking about using MAC... (0 Replies)
Discussion started by: coxmanchester
0 Replies

6. Solaris

ipfilter solaris express

Hello, | am trying to setup ipfilter on solaris express snv_91 but I don't seem to have the following file available. /etc/ipf/pfil.ap Is this an older way of configuring the interface?, I have all the packages installed. Thanks, (1 Reply)
Discussion started by: Actuator
1 Replies

7. HP-UX

Built for hppa2.0n-hp-hpux11.00..problem with make

make --version in parent server ( server in france) gives me the below information GNU Make version 3.78.1, by Richard Stallman and Roland McGrath. Built for hppa2.0n-hp-hpux11.00 Copyright (C) 1988, 89, 90, 91, 92, 93, 94, 95, 96, 97, 98, 99 Free Software Foundation, Inc. This is... (0 Replies)
Discussion started by: vasanthan
0 Replies

8. HP-UX

Mozilla install for HPUX11 (libintl.sl.1)

Hello evrebody , I have HPUX-11, i try to install "Mozilla 1.4" and when i am runing: /opt/mozilla/mozilla I get this message: Starting Mozilla ... /usr/lib/dld.sl: Can't find path for shared library: libintl.sl.1 /usr/lib/dld.sl: No such file or directory... (6 Replies)
Discussion started by: yanly64
6 Replies

9. HP-UX

decompress in HPUX11 by Gunzip and gzip

Hello evrebody , I have HPUX-11, i try to install "Mozilla" and "unzip utillity" I cannot decompress file (F.tar.gz) or file(F.gz) by commandes: gunzip -dv F.tar.gz | tar -xvf gunzip F.tar.gz or gzip -dv F.tar.gz |tar -xvf gzip F.gz maybe someone know What's the reason? maybe i... (1 Reply)
Discussion started by: yanly64
1 Replies

10. UNIX for Dummies Questions & Answers

oracle probs on HPUX11

Hi all we r using hpUX11.00 9000 sever as oracle 8i db server... But the problem is we have 4 instances of dbs but upto my knowledge there are only to ports available for TNS listen... how can i configure or get wht ever it may be the other two ports for tns listener......... ... (2 Replies)
Discussion started by: Prafulla
2 Replies
Login or Register to Ask a Question