Hi,,
How do configure firewall in aix.. similar to linux iptable.
Rgards,
k.sumathi.
We had this question before ...
you can use IPsec
Not sure if IBM still sells IBM firewall for AIX ... I believe to remember that this was a fairly nice firewall if you want something more professional. In any case I still believe a firewall outside the AIX box is the better option. And a sufficiently hardened AIX box is by itself not that easy to conquer.
What do you need it for - is your AIX box directly attached to the internet?
Regards
zxmaus
1 Like
we are going to connect that and want to configure firewall.
Thanks for info.
A firewall - out of principle - can only protect the network behind it, not the system it runs on itself *) and there are only two roles for any given network node, which are absolutely distinct: firewall or host. If a node acts as a firewall it must not work as a host and if it acts as a host it must not work as a firewall - period.
Having said this you might be looking for firewall software installable on AIX. There are several choices:
- IPSec has already been mentioned and is available since AIX 4.x. It is part of AIX and available for free.
- SecureWay was a firewall product for AIX 4.x and - i believe - for AIX 5L (as part of the Global Security Kit). It has been distributed by IBM and there is a redbook at IBM Redbooks.
- Commercial Products like the Check Point FireWall-1, for which also exists an IBM redbook.
I hope this helps.
bakunin
______
*) Corollary: all the "personal firewalls" sold with some popular graphical interrupt-handler (which misrepresents itself as an operating system) are simple packet filters, which do nothing to enhance any security but everything to enhance their vendors bank accounts. These "firewalls" just add some - utterly false - sense of security to the users experience. Stay away from those firewalls, the users of these and the underlying code waste dumps as well.