Jim made a good point about tracking down all INBOUND TCP/IP connections to
your box.
We needed to do this on a box, so we dumped NETSTAT connection status
information to a physical file every so often for a few months and started
pining away at all the connections coming in. This, coupled with research
from the jobs, helped us to identify all inbound connections being made and
to eliminate and/or consolidate unnecessary connections.
Once we found where the connections were coming from, we were able to
confirm that hostnames were being used instead of IP addresses on those
remote systems.
------------
Jacob
------------
-----Original Message-----
date: Tue, 17 May 2022 10:32:16 -0500
from: Jim Oberholtzer <midrangel@xxxxxxxxxxxxxxxxx>
subject: Re: Need to list all places on the system where a specific IP
address is referenced
In addition to what Rob documented quite thoroughly:
Do you have any programs that initiate FTP, SFTP or other communications?
Do you have object connect set up between partitions?
Do you have any APPC devices that communicate to other systems?
Do you have any EDI going on?
Do you have any IP packet rules set up? If so, those need to be modified,
most likely replaced.
If the answer to any of these is yes, then you'll need to scan your source
code for embedded IP addresses.
Now the big one, that you might not have any control over: are any systems
initiating communications TO your system using IP addresses? Example,
anyone that has ACS (or god forbid iSeries Access sessions) set up with a
hard address (first place to look for those is in IT)? How about MS servers
that might use SQL to access DB2? Do they all use DNS, doubtful?
--
Jim Oberholtzer
Chief Technical Architect
Agile Technology Architects
On Tue, May 17, 2022 at 8:51 AM Richard Reeve <rjrjr64@xxxxxxxxx> wrote:
All,
What is the most efficient way of listing all places within the
system that a certain IP address is referenced?
All the best,
Richard Reeve
As an Amazon Associate we earn from qualifying purchases.