1833857 Members
3450 Online
110063 Solutions
New Discussion

Telnet on a test box

 
SOLVED
Go to solution
Matt Mumford
Occasional Advisor

Telnet on a test box

Hey all,

I just set up a N4000 to act as our new test box for our production N4000. They are identical except the IP. I have used SAM to limit all incoming activity to our developtment box. I also made entries in the HOST file to point all known servers back into the test box. I am trying to figure out how to stop all outgoing traffic from the testbox like telnet, etc...

Matt

9 REPLIES 9
RAC_1
Honored Contributor
Solution

Re: Telnet on a test box

rename/move the telnet executable.
There is no substitute to HARDWORK
Matt Mumford
Occasional Advisor

Re: Telnet on a test box

simple enough. I am also having the network guys put this test server in a DMZ.

Matt
Jeff Schussele
Honored Contributor

Re: Telnet on a test box

Hi Matt,

Or you can set the perms on the telnet binary such that root can only run it.

Rgds,
Jeff
PERSEVERANCE -- Remember, whatever does not kill you only makes you stronger!
RAC_1
Honored Contributor

Re: Telnet on a test box

You can also install ipfilter product. This is free product.
products.hp.com
There is no substitute to HARDWORK
Matt Mumford
Occasional Advisor

Re: Telnet on a test box

thanks guys...all great answers....

Matt
Matt Mumford
Occasional Advisor

Re: Telnet on a test box

Hey all,

This IPFILTER product is awesome it will allow me to do everything I want to do.

Having said that, is there a GUI type version of this product or similar HPUX product?

Matt
Darrel Louis
Honored Contributor

Re: Telnet on a test box

Matt,

There is no GUI for IPFilter.
There is another product you might like aswell, Bastille, which will help you lockdown your server(Security) this comes with a GUI interface.


Regards

Darrel
ipfstat -v-L

Steven E. Protter
Exalted Contributor

Re: Telnet on a test box

IPFilter is available on the application cd's. You get those when you have a software contract.

Or:

http://software.hp.com/portal/swdepot/displayProductInfo.do?productNumber=B9901AA

For a DMZ box, consider Bastille security hardening:

http://software.hp.com/portal/swdepot/displayProductInfo.do?productNumber=B6849AA

A requirement for Bastille:

http://software.hp.com/portal/swdepot/displayProductInfo.do?productNumber=PERL

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
Matt Mumford
Occasional Advisor

Re: Telnet on a test box

Thanks all...great feedback...

Matt