Adding Firewall Settings for a User based on Services
To create filters based on services (such as FTP, SQL, NBD, or DDM), enter 1 in the Selection field of the Add User Security screen, shown in Adding Firewall Settings for a User (STRFW > 3 > 1, F6).
The Add User to Server Security screen appears.
| Add User to Server Security User . . . . . . . . . PLONY Subset . . . . >> Set: 1=Allow (+), 2=Reject, 3=By Verb (V), 4=Allow+Skip object check (S) Log: 1=No, 2=Rejects, 4=All, blank=By server setting Server User Supports Server Control Allowed Set Log Verbs FILTFR No Yes Original File Transfer Function SSHD No Yes SSH,SFTP,SCP- Secured CMD Entry,FTP,COPY FTPLOG No Yes FTP Server Logon FTPSRV No Yes Yes FTP Server-Incoming Rqst Validation FTPCLN Usr>srv Yes Yes FTP Client-Outgoing Rqst Validation REXLOG No Yes REXEC Server Logon REXEC No Yes REXEC Server Request Validation RMTSQL No Yes Yes Original Remote SQL Server SQLENT No Yes Database Server - entry SQL Full Yes Yes Database Server - SQL access & Showcase DBOPEN No Yes Yes Open Database More... F3=Exit F4=Prompt F8=Print F9=Object security F10=Logon security F11=Modify Set⁄Log F12=Cancel F23=Reject all |
Each line of the main part of the screen contains the settings for a single service. It includes these fields:
Server
The short name of the server.
Server Control
The current general settings for the service, as set in Setting Firewall Rules for Servers.
User Allowed
The setting for the user or group and server. It can be set to:
- Yes: Accept requests
- No: Reject requests
- By Verb: The response depends on the verb used (such as DELETE, INSERT, COPY), determined by entering 3 in the Set column.
Set
Type one of the following values and press Enter to change the setting for this user or group and server. (To toggle the entry prompt between the Set and Log fields, press the F11 key.)
- 1. Allow all requests
- 2. Reject all requests
- 3. If the Verb Support field is set to Yes, establish settings based on verbs that the server interprets. The Modify Server Verb Authority screen appears, as shown in Modifying Firewall Settings for a User based on Server Verbs.
- 4. Allow all requests, skipping object checks.
Log
Type one of the following values to set whether Firewall logs requests to this server. (To toggle the entry prompt between the Set and Log fields, press the F11 key.)
- Blank: No change
- 1: None
- 2: Rejects
- 4: All
Supports Verbs
If the server accepts distinct verbs, this shows Yes, and you can enter settings for the verbs by entering 3 in the Set column.
(unlabeled)
A free-form text description of the server
To establish settings based on verbs for a server that shows Yes in its Verb Support column, enter 3 in the Set column. The Modifying Server Verb Authority appears, as shown in Modifying Firewall Settings for a User based on Server Verbs.
To reject all requests on all servers, press the F23 key (Shift+F11).