Setting Firewall Rules for Incoming Activity by Remote System Names
SNA firewall rules govern incoming activity from other IBM systems conforming to the SNA system name protocol. Rules control incoming activity for individual system names. For each system name, you can choose to allow or reject activity for DDM, DRDA, or Passthrough servers.
You can filter this activity from the Dynamic Filtering - Incoming Remote System Names Security screen. To reach the screen, select 11. Incoming Remote System Names from the Work with Dynamic Filtering screen(STRFW > 2 > 11).
The Dynamic Filtering - Incoming Remote System Names Security screen appears:
| Dynamic Filtering- Incoming Remote System Names Security Type options, press Enter. 1=Select 4=Delete PASS- Opt System* DDM DRDA THROUGH Text *ALL Y CENTR* Central system EXTERN01 Y Y External System 1 EXTERN02 Y External System 2 Bottom F3=Exit F6=Add new F8=Print F10=Logon security F12=Cancel |
The screen shows existing rules for filtering activity coming in via various protocols from specific SNA system names. The entry for *ALL shows general rules for incoming activity coming from system names that are not listed.
Each of the other lines shows rules for specific system names, shown in the System* column. The following columns show the rules for access via the DDM, DRDA, and PASSTHROUGH protocols, as shown by the vertical text at the top of each column.
For each protocol, the letter in that column shows how the rule handles incoming activity for that protocol from that system name:
- Blank or N: Reject all incoming activity
- S: Allow activity, but do not log this
- Y: Allow activity
The final Text column shows a freeform text description of the rule.
To modify an existing rule, enter 1 in the Opt column for that rule.
To add a new rule, press the F6 key.