Setting Additional Firewall Rules and Displaying Logs for DDM, DRDA, DHCP, and Other Servers
To set additional rules for DDM, DRDA, and SSHD servers, display logs or DHCP security and license management, and set TCP/IP Port restrictions, select 14. DDM, DRDA, SSH, Port... from the Firewall Main Menu (STRFW).
The Work with Advanced Security screen appears:
| GSSPMNU Work with Advanced Security Select one of the following: DDM, DRDA Security License Management Security 1. Pre-check user replacement 41. License Management 5. DRDA post-check user replacement 45. Display License Management Log DHCP Security SSHD Security SETFWSPC *SSHD 15. Display DHCP Security Log 51. Activate Current Setting 55. Prepare Setting For Next Start Use after every change in SSHD security TCP/IP Port Restrictions or in user profile grouping. 21. Work with TCP/IP Port Restrictions Selection or command ===> F3=Exit F4=Prompt F9=Retrieve F12=Cancel F13=Information Assistant F16=AS/400 main menu |
To set parameters for specified servers and products:
For DDM and DRDA,
to substitute a local user before Firewall does its checks when specified users connect from external systems, select 1. Pre-check user replacement. The Work with DDM/DRDA Pre-check User Replacement screen appears, as shown in Setting Firewall Rules for DDM/DRDA Pre-check User Replacement.
For DRDA,
to substitute a local user after Firewall does its checks when specified users connect from external systems, select 5. DRDA post-check user replacement. The Work with DRDA Post-check User Replacement screen appears, as shown in Setting Firewall Rules for DRDA Post-check User Replacement.
For TCP/IP and UDP,
to set the range of ports that a user can access, select 21. Work with TCP/IP Port Restrictions. The Work with TCP/IP Port Restrictions screen appears, as shown in Setting Firewall Rules for TCP/IP Port Restriction.
For licensed products,
to set which features of the products the user is allowed to use, select 41. License Management. The Work with License Security screen appears, as shown in Setting Firewall Rules for Licensed Products.
To display logs for specified servers and products:
For DHCP,
to display the DHCP security log, select 15. Display DHCP Security Log. The Display Firewall Log (DSPFWLOG) screen appears, as shown in Displaying Firewall Logs, with the Type field set to *DHCP.
For licensed products,
to display the license management log, select 15. Display DHCP Security log. The Display Firewall Log (DSPFWLOG) screen appears, as shown in Displaying Firewall Logs, with the Type field set to *LICMGT.
To set up SSHD Security to restart after changes in
- SSHD Security, as shown in Modifying Firewall Settings for Servers, or
- User profile grouping, as shown in Modifying Firewall Settings for a User,
To activate the current setting immediately,
select 51. Activate current setting.
The Set Firewall Special Security (SETFWSPC) screen appears, with the Option field set to *RESTART.
To activate the setting immediately, press Enter.
To cancel the activation, press the F12 key.
To use the current setting the next time that SSHD restarts,
select 55. Prepare Setting For Next Start.
The Set Firewall Special Security (SETFWSPC) screen appears, with the Option field set to *PREPARE.
To activate the setting the next time that you restart SSHD, press Enter.
To cancel the activation, press the F12 key.
To exit this screen, press the F3 or F12 key.