Munif
I have been asked to providetelnet 3270 access to an application running on
remote host connectned via VPN - Eneterprise
extender. Can I define alternate IP for faiolver on that remote PU SWNET. Do I
have to open telnet port 23 (7723 for SSL)
beside port 12000-12004..
This is a massively confused and confusing post!
What I can extract from it which makes sense - although I may be very misled -
is the following:
- You wish to provide access to - I'll assume - z/OS applications supporting
3270 implying - as also hinted by your reference
to apparently VTAM definitions (PU and SWNET) - support via SNA and VTAM (the
SNA component of Communications Server).
- You make a lot of references to IP things so it implies that you want to
achieve this access over an IP network.
- You make some references to Telnet also.
-
Thus the solution you need is to setup the SNA-oriented Telnet server,
curiously called the TN3270E server[1].
You will be able to read up on how to do this in the following major subsection
of 2.2 Chapter 11. Accessing remote hosts using Telnet in the z/OS
Communications Server IP Configuration Guide:
2.2.1 The TN3270E Telnet server
http://publibz.boulder.ibm.com/cgi-bin/bookmgr_OS390/BOOKS/F1A1B3A0/2.2.1
Allow *lots* of time to absorb it all!
When you have digested all that, you will be ready to use the z/OS
Communications Server IP Configuration Reference:
16.0 Chapter 16. TN3270E Telnet server
http://publibz.boulder.ibm.com/cgi-bin/bookmgr_OS390/BOOKS/F1A1B4A0/16.0
You will also get a lot of help from Chapter 2, TN3270E Telnet server, in IBM
z/OS V1R12 Communications Server TCP/IP Implementation Volume 2: Standard
Applications:
http://www.redbooks.ibm.com/abstracts/sg247897.html
-
Can I define alternate IP for faiolver failover on that remote PU SWNET.
No, there will be no trace of PU statements in a VBUILD TYPE=SWNET major node.
Do I have to open telnet port 23 ...
In the SNA-oriented Telnet server's PROFILE data set, you can define port
number 23 as the port for clients to use as the well-known port.
... (7723 for SSL) ...
In the PROFILE data set, you can define any port number not in use by another
server, which could be 7723, as the port for clients to use for secure Telnet
connections.
... Eneterprise Enterprise extender.
... beside port 12000-12004.
Enterprise Extender has no role to play in the configuration I have deduced you
really want. That's not to say you could not also be supporting Enterprise
Extender UDP exchanges over the IP network together with the TCP Telnet
connections but the two functions have no need to be linked in any way - well I
guess the primary LU application program (from the point of view of the
SNA-oriented Telnet) could be the same, say CICS.
... via VPN ...
There's no reason why you could not be using a VPN as part of the path over the
IP network used by your Telnet TCP connections and your Enterprise Extender UDP
exchanges. It's entirely a matter for how your underlying IP network is
constructed.
As for the remaining elements of your post, I have no real idea what you mean!
-
Incidentally, I detect a lack of the requisite skills. You will need assistance
from whomever in your organisation is familiar with both sides of the
Communications Server product, the SNA side, aka VTAM, and the IP side, known
as TCP/IP for MVS in a previous life. This is often more than one person.
Any other considerations?
It's not so much other considerations as simply considerations.
-
I am considering putting out a series of educational posts - in the IBMTCP-L
list - concerning how to put together the SNA-oriented Telnet. I am seeing more
and more posts such as this one that seem to need that sort of guidance
starting from the most basic level. I have to admit that the references I have
proposed here are somewhat daunting!
The proviso is the phrase made famous by the martyr of Vilvoorde, If I'm
spared!. Unfortunately, he wasn't!
-
[1] The SNA-oriented Telnet server, in addition to supporting TN3270E protocols
also supports TN3270 protocols and a flavour
of more basic Telnet protocols which enable it to provide the appearance of a
3767 typewriter device as well as some other
clever stuff enabling emulation of devices with names starting with VT but I
am now straying away from my comfort zone - although I may, in a past life,
have done something equivalent with GTMOSI - but that's another story ...
See 2.2.1.4.5 Connection mode choices in the z/OS Communications Server IP
Configuration Guide:
http://publibz.boulder.ibm.com/cgi-bin/bookmgr_OS390/BOOKS/F1A1B3A0/2.2.1.4.5
-
Chris Mason
On Thu, 22 Sep 2011 09:03:04 -0500, Munif Sadek munif.sa...@gmail.com wrote:
Dear Listers
I have been asked to providetelnet 3270 access to an application running on
remote host connectned via VPN - Eneterprise extender. Can I define alternate
IP for faiolver on that remote PU SWNET. Do I have to
