HPE Community
Operating System - HP-UX
1833785 Members
2424 Online
110063 Solutions
New Discussion

Block UDP Traffic

 
brian_31
Super Advisor

‎10-07-2004 06:25 AM

‎10-07-2004 06:25 AM

Block UDP Traffic

Hi All:

I have 2 machines on the same subnet and i need to block the 2 machines from having UDP communication from each other. i am running 11.0.

Thanks

Brian
0 Kudos
Reply
8 REPLIES 8
Sundar_7
Honored Contributor

‎10-07-2004 06:39 AM

‎10-07-2004 06:39 AM

Re: Block UDP Traffic

Brian,

You will have to install IPFilter in one machine and configure it to reject all the traffic on the UDP from the specific machine.

You can download IPFilter from software.hp.com for free

- Sundar
Learn What to do ,How to do and more importantly When to do ?
0 Kudos
Reply
Mark Greene_1
Honored Contributor

‎10-07-2004 06:41 AM

‎10-07-2004 06:41 AM

Re: Block UDP Traffic

HP has a free software firewall:

http://www.software.hp.com/portal/swdepot/displayProductInfo.do?productNumber=B9901AA

mark
the future will be a lot like now, only later
0 Kudos
Reply
Jeff_Traigle
Honored Contributor

‎10-07-2004 06:41 AM

‎10-07-2004 06:41 AM

Re: Block UDP Traffic

Just between these two machines or do you want to keep these systems from servicing any UDP traffic at all?

If the latter, I'd say the easiest way is to just disable all UDP protocols from /etc/inetd.conf and the various config files in /etc/rc.config.d.

If the former, then, depending on the specific protocol, there may have access restrictions you can put in place (the access= option for NFS, for instance). Or you can download, install, and configure host-based firewalls on these two systems so all UDP traffic is not allowed. IPFilter is available from HP's software site at:

http://software.hp.com/portal/swdepot/displayProductInfo.do?productNumber=B9901AA
--
Jeff Traigle
0 Kudos
Reply
Prashant Zanwar_4
Respected Contributor

‎10-07-2004 07:04 AM

‎10-07-2004 07:04 AM

Re: Block UDP Traffic

Just one suggestion:

Also comment out all entries under /etc/services along with inetd.conf & inetd -c shall be giving you solution to good extent.
Thanks
Prashant
"Intellect distinguishes between the possible and the impossible; reason distinguishes between the sensible and the senseless. Even the possible can be senseless."
0 Kudos
Reply
brian_31
Super Advisor

‎10-07-2004 08:53 AM

‎10-07-2004 08:53 AM

Re: Block UDP Traffic

I want to stop the udp between these two machines. that is all.

Thanks

Brian
0 Kudos
Reply
rick jones
Honored Contributor

‎10-07-2004 11:51 AM

‎10-07-2004 11:51 AM

Re: Block UDP Traffic

indeed, ipfilter sounds like the way to go. particularly if you only want to stop UDP between those two machines and let them do UDP elsewhere.

just editing the /etc/services or /etc/inetd.conf stuff will not preclude UDP traffic bewteen those systems - applications could still open SOCK_DGRAM sockets at will.

why is it you want to disable UDP between the two machines? this is the first time I've heard of someone wanting to do that so I'm a bit curious.
there is no rest for the wicked yet the virtuous have no pillows
0 Kudos
Reply
brian_31
Super Advisor

‎10-07-2004 12:10 PM

‎10-07-2004 12:10 PM

Re: Block UDP Traffic

we are using an application which uses UDP connection. we wanted to do a test and since these 2 servers are in the same subnet we can't do that test. the option is to change the ip but that is a BIG DEAL. so this is a workaround.

Thanks to all

Brian
0 Kudos
Reply
rick jones
Honored Contributor

‎10-07-2004 12:49 PM

‎10-07-2004 12:49 PM

Re: Block UDP Traffic

i take it you want to test your UDP application when there is no connectivity between the two machines?
there is no rest for the wicked yet the virtuous have no pillows
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.