|
A simple way to do this, without spending any money on firewalls or exit point software, is to create IP filter policies. This utility is provided to you within iSeries Navigator. It took me a couple of hours to figure out and become comfortable with the syntax, but once I did, I was able to block all undesirable traffic. For example, although we are not running a corporate firewall, nor are we running any Telnet exit points, we are able to prohibit any telnet traffic that does not originate from our own network subnets. We have configured similar filters on other TCP services that we have running on our iSeries servers. Chris Rees Computer Services Southwest Missouri State University chrisrees@xxxxxxxx -- "Ken Slaugh" <ken.slaugh@xxxxxxxxxx> wrote in message news:7F28D56D81461D4BA5F6DEE4EAEC9A5A0B4446@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx > One of our salesman was asked this by a iSeries customer: > > << I need to monitor all the sign on attempts to the iSeries, this > includes attempts that do << not have a real profile on the machine. I > looked over the security audit log but did not << find the information I > was looking for there. I can monitor for failed log in attempts << but > only for profiles that exist, but I could not find a query for profiles > that don't << exist. I would like to get at least profile name and IP > address. > > << I am also looking for a way to lock out specific IP addresses, > regardless of profile, from << using the system. > > I thought this group may have some helpful suggestions. Any takers? > > Thanks, Ken > > > > -----Original Message----- > From: midrange-l-bounces@xxxxxxxxxxxx > [mailto:midrange-l-bounces@xxxxxxxxxxxx] On > Behalf Of Chuck Lewis > Sent: Monday, January 10, 2005 11:06 AM > To: 'Midrange Systems Technical Discussion' > Subject: RE: FTP Issue > > Care to elaborate Rob ? > > Thanks :-) > > Chuck > > -----Original Message----- > From: midrange-l-bounces@xxxxxxxxxxxx > [mailto:midrange-l-bounces@xxxxxxxxxxxx] On > Behalf Of rob@xxxxxxxxx > Sent: Monday, January 10, 2005 1:49 PM > To: Midrange Systems Technical Discussion > Subject: Re: FTP Issue > > CPYTOIMPF has had lots of changes in V5R3. Most of them will pi$$ you > off. Use CPYTOSTMF if it will work for you. > > Rob > > -- > This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing > list To post a message email: > MIDRANGE-L@xxxxxxxxxxxx To subscribe, > unsubscribe, or change list options, > visit: http://lists.midrange.com/mailman/listinfo/midrange-l > or email: MIDRANGE-L-request@xxxxxxxxxxxx > Before posting, please take a > moment to review the archives at http://archive.midrange.com/midrange-l. > > > -- > This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing > list > To post a message email: > MIDRANGE-L@xxxxxxxxxxxx > To subscribe, unsubscribe, or change list options, > visit: http://lists.midrange.com/mailman/listinfo/midrange-l > or email: MIDRANGE-L-request@xxxxxxxxxxxx > Before posting, please take a moment to review the archives > at http://archive.midrange.com/midrange-l. > >
As an Amazon Associate we earn from qualifying purchases.
This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].
Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.
midrange.com
