HPE GreenLake Administration
- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- Re: How to block "No Foreign Address" connections?
Operating System - HP-UX
1838195
Members
3721
Online
110125
Solutions
Forums
Categories
Company
Local Language
back
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Forums
Discussions
Discussions
Discussions
Forums
Discussions
back
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Blogs
Information
Community
Resources
Community Language
Language
Forums
Blogs
Go to solution
Topic Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-19-2002 08:08 AM
11-19-2002 08:08 AM
Hi,
Below you will see a partial output from a netstat command. Note the Foreign Addresses that show only a port number. We've determined that these come from Winblows 2000 PCs that have turned off the Message Service. This is done so the user doesn't get a message box everytime she prints.
Is there a way ( maybe through /var/adm/inetd.sec ) to block connections from PCs that are not advertising their IP address?
Thanks,
Tom
----------------------------------------
Active Internet connections
Proto Recv-Q Send-Q Local Address Foreign Address (state)
tcp 0 0 flo1q07.ora1526 .1599 ESTABLISHED
tcp 0 0 localhost.49194 localhost.49284 ESTABLISHED
tcp 0 0 flo1q07.telnet tdawsond.eptnet.com.3596 ESTABLISHED
tcp 0 0 flo1q07.ora1526 flo1a03.eptnet.com.1058 ESTABLISHED
tcp 0 0 localhost.49286 localhost.49194 ESTABLISHED
tcp 0 0 localhost.49284 localhost.49194 ESTABLISHED
tcp 0 0 flo1q07.ora1526 .1663 ESTABLISHED
tcp 0 0 flo1q07.ora1526 .1673 ESTABLISHED
tcp 0 0 flo1q07.ora1526 .1601 ESTABLISHED
tcp 0 0 flo1q07.ora1526 .1604 ESTABLISHED
tcp 0 0 localhost.49288 localhost.49194 ESTABLISHED
tcp 0 0 flo1q07.1748 flo1a03.eptnet.com.4295 ESTABLISHED
tcp 0 0 flo1q07.49214 flo1q07.ora1526 ESTABLISHED
tcp 0 0 flo1q07.ora1526 flo1q07.49214 ESTABLISHED
tcp 0 0 flo1q07.ora1526 flo1q07.49213 ESTABLISHED
Below you will see a partial output from a netstat command. Note the Foreign Addresses that show only a port number. We've determined that these come from Winblows 2000 PCs that have turned off the Message Service. This is done so the user doesn't get a message box everytime she prints.
Is there a way ( maybe through /var/adm/inetd.sec ) to block connections from PCs that are not advertising their IP address?
Thanks,
Tom
----------------------------------------
Active Internet connections
Proto Recv-Q Send-Q Local Address Foreign Address (state)
tcp 0 0 flo1q07.ora1526 .1599 ESTABLISHED
tcp 0 0 localhost.49194 localhost.49284 ESTABLISHED
tcp 0 0 flo1q07.telnet tdawsond.eptnet.com.3596 ESTABLISHED
tcp 0 0 flo1q07.ora1526 flo1a03.eptnet.com.1058 ESTABLISHED
tcp 0 0 localhost.49286 localhost.49194 ESTABLISHED
tcp 0 0 localhost.49284 localhost.49194 ESTABLISHED
tcp 0 0 flo1q07.ora1526 .1663 ESTABLISHED
tcp 0 0 flo1q07.ora1526 .1673 ESTABLISHED
tcp 0 0 flo1q07.ora1526 .1601 ESTABLISHED
tcp 0 0 flo1q07.ora1526 .1604 ESTABLISHED
tcp 0 0 localhost.49288 localhost.49194 ESTABLISHED
tcp 0 0 flo1q07.1748 flo1a03.eptnet.com.4295 ESTABLISHED
tcp 0 0 flo1q07.49214 flo1q07.ora1526 ESTABLISHED
tcp 0 0 flo1q07.ora1526 flo1q07.49214 ESTABLISHED
tcp 0 0 flo1q07.ora1526 flo1q07.49213 ESTABLISHED
Solved! Go to Solution.
3 REPLIES 3
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-19-2002 10:15 AM
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-19-2002 10:37 AM
11-19-2002 10:37 AM
Re: How to block "No Foreign Address" connections?
Wodisch,
Thanks! And it's probably not a bad idea at that! I was trying to see if I could accomplish it with software already on the system.
Tom
Thanks! And it's probably not a bad idea at that! I was trying to see if I could accomplish it with software already on the system.
Tom
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-19-2002 10:46 AM
11-19-2002 10:46 AM
Re: How to block "No Foreign Address" connections?
Tom,
It's not possible for a PC to connect to anything on a IP NETWORK without an IP address.
Get lsof, as netstat bites!
http://hpux.cs.utah.edu/hppd/hpux/Sysadmin/lsof-4.64/
and of course you should be running netstat like this:
netstat -an
They'll show up!
live free or die
harry
It's not possible for a PC to connect to anything on a IP NETWORK without an IP address.
Get lsof, as netstat bites!
http://hpux.cs.utah.edu/hppd/hpux/Sysadmin/lsof-4.64/
and of course you should be running netstat like this:
netstat -an
They'll show up!
live free or die
harry
Live Free or Die
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.
Company
Events and news
Customer resources
© Copyright 2025 Hewlett Packard Enterprise Development LP