hpux ipfilter简单配置
司空学智
hp-ux ipfilter 使用简述
# ipfilter -q --查看过滤器是否打开
IPFilter Enabled and filtering
关闭ipfilter
/opt/ipf/bin/ipfilter -d
开启ipfilter
/opt/ipf/bin/ipfilter -e
# ipf -V --查看ipfilter状态
ipf: HP IP Filter: v3.5alpha5 (A.11.31.18.00) (488)
Kernel: HP IP Filter: v3.5alpha5 (A.11.31.18.00)
Enabled: yes
Filtering: yes
Log Flags: 0 = none set
Default: pass all, Logging: available
Active list: 1
# ipfstat -io --查看所有的进出策略
empty list for ipfilter(out)
pass in quick on lan900 proto tcp from 10.95.197.22/32 to any port = 1521 flags S/0xff keep state
加载ipfilter module
/sbin/init.d/ipfboot start
刷新策略
vi /etc/opt/ipf/ipf.conf
ipf -Fa -A -f /etc/opt/ipf/ipf.conf
类似资料: