Modifying Firewall Settings for Telnet Logons
To modify Firewall settings for Telnet logins from an IP address range, type 1 in the Opt field for that address range on the Work with Telnet Logon Security screen (STRFW > 12 > 1) as shown in Setting Additional Controls for Telnet Logons.
The Modify TELNET Logon Security Setting screen appears:
| Modify TELNET Logon Security setting Type information, press Enter. Selection criteria: IP Address . . . . . . 1.1.1.3 Address, F4 for list Subnet mask . . . . . . 255.255.255.254 F4 for list Incoming terminal name *ALL Generic*, *ALL, *BLANKS, F4=List Minimum pwd validation 0 0=No password, 1=With password Process: 2=Encrypted pwd, 3=Connection SSL Limit to Time Group . . Name, F4 for list Logon type . . . . . . 1 1=*ACCEPT, 2=*REJECT, 3=*AUTOSIGNON For Logon= 1/3/4/5: 4=*FRCSIGNON, 5=*ACCEPT FOR SAME IP Assign terminal name . *SAME Generic*, *SAME, *SYSTEM, F4=List Set new Code page . . . Character set . Keyboard layout For *AUTOSIGNON Logon: Alt User . . . . . . . Name, *SAME, F4 for list Alt Current library . . Name, *SAME Alt Program to call . . Name, *SAME Alt Initial Menu . . . Name, *SAME F3=Exit F4=Prompt F12=Cancel |
Enter or change values for the following fields:
IP Address
The IP address that begins the range. For a list of possible addresses, press the F4 key.
Subnet mask
The subnet mask for the address range. For a list of possible subnet masks, showing the number of addresses that the range would include, press the F4 key.
Incoming terminal name
The terminal sending the request. This can be a single name, a generic* name, *ALL, or *BLANKS. For a list of known terminal names, press the F4 key.
Minimum pwd validation
The minimum password validation level needed for the logon. The possibilities include:
- 0: No password
- 1: With password
- 2: Encrypted password
- 3: SSL connection
Limit to Time group
If set, Telnet connections from this IP addressrange can only be made during the times defined for this time group (as shown in Defining Time Groups).
Logon
How Firewall responds to the logon request. The possibilities include:
- 1: *ACCEPT: Accept logon request
- 2: *REJECT: Reject logon request
- 3: *AUTOSIGNON: Sign on automatically if permitted by system configuration
- 4: *FRCSIGNON: Force the user to sign on even if the system is configured to accept an automatic signon.
- 5: *ACCEPTSIP: Accept logon request if it is from the same IP as your system.
Assigned Terminal
The name assigned to the terminal if the logon is accepted. This can be an exact name, a generic* name, *SAME, or *SYSTEM.
Set new
Code page
Character set
Keyboard layout
Set these fields as needed, as described in IBM documentation at https://www.ibm.com/support/knowledgecenter/en/ssw_ibm_i_71/rzaiw/rzaiwdevdesc.htm
After entering information in these fields, press the Enter key.
If you have set the Logon field to 3 (*AUTOSIGNON), set the fields in the For *AUTOSIGNON Logon section to appropriate values, as indicated by OS/400 documentation.