Firewall under z/OS 2.1
I have to block my Host z/OS 2.1 one port for all access except than coming from one single server. We do have SERVAUTH, Port SAF protection, NETACCESS but I think to achieve this I got to activate IP Filtering. RTFM tells me that as soon as I activate IPSECURITY and IPSEC static statement (no PAGENT at this time) by default it blocks all traffic.. Can some one PLEASE provide me IPSEC control statements to let through all inbound / outbound packet except than coming to an specific port and the sender is not in fix IP addresses IPSEC list. any pointers in that direction.. regards Munif -- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
Re: Firewall under z/OS 2.1
Hi, Take look at the TCPIP communication server Guide(Redbook) and that Should tell you the various control statement about the IPSEC. On Thu, Aug 13, 2015 at 1:51 PM, Munif Sadek munif.sa...@gmail.com wrote: I have to block my Host z/OS 2.1 one port for all access except than coming from one single server. We do have SERVAUTH, Port SAF protection, NETACCESS but I think to achieve this I got to activate IP Filtering. RTFM tells me that as soon as I activate IPSECURITY and IPSEC static statement (no PAGENT at this time) by default it blocks all traffic.. Can some one PLEASE provide me IPSEC control statements to let through all inbound / outbound packet except than coming to an specific port and the sender is not in fix IP addresses IPSEC list. any pointers in that direction.. regards Munif -- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN -- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
Re: Firewall under z/OS 2.1
If you are not aware, there is a TCPIP list that could also help. If you have not joined, you can do so here TCPIP To subscribe, send mail to lists...@vm.marist.edu with the command (paste it!) in the e-mail message body: SUBSCRIBE IBMTCP-L Or this url and go to the bottom of the webpage: http://www2.marist.edu/htbin/wlvindex?IBMTCP-L Lizette -Original Message- From: IBM Mainframe Discussion List [mailto:IBM-MAIN@LISTSERV.UA.EDU] On Behalf Of Munif Sadek Sent: Thursday, August 13, 2015 1:21 AM To: IBM-MAIN@LISTSERV.UA.EDU Subject: Firewall under z/OS 2.1 I have to block my Host z/OS 2.1 one port for all access except than coming from one single server. We do have SERVAUTH, Port SAF protection, NETACCESS but I think to achieve this I got to activate IP Filtering. RTFM tells me that as soon as I activate IPSECURITY and IPSEC static statement (no PAGENT at this time) by default it blocks all traffic.. Can some one PLEASE provide me IPSEC control statements to let through all inbound / outbound packet except than coming to an specific port and the sender is not in fix IP addresses IPSEC list. any pointers in that direction.. regards Munif -- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
