How to turnoff firewall on solaris 10?

hey everybody,
do you know how to turn off the firewall on solaris 10 ?, because i installed 3 rd party program, and need to disable the firewall...
thank you so much, for your help

Hi,
Can you please let me know how to disable firewall on Solaris 9.
Does this command [*svcadm disable ipfilter*] disable firewall even on Solaris 9?
Please let me know.
TIA.
Regards,
Prashanth.

Similar Messages

  • How to Enable Firewall in Solaris 10 SPARC

    How to Enable Firewall in Solaris 10 SPARC

    What exactly are you looking for? By default Solaris is a secure operating system, but can be tuned to be more or less secure. The link above on IP Filtering is one way to make a system more secure, and is can be used to set up a firewall.
    -- Alan

  • How to Enable firewall on Solaris 10 SPARC Machine?

    Hi All,
    I have installed Solaris 10 SPARC & by default the firewall is disabled.
    Now i need to enable firewall?
    Can i know how to enable firewall Solaris 10 SPARC Machine?
    Also can i know how to open up specific TCP & UDP ports?

    What exactly are you looking for? By default Solaris is a secure operating system, but can be tuned to be more or less secure. The link above on IP Filtering is one way to make a system more secure, and is can be used to set up a firewall.
    -- Alan

  • About Inbuilt Firewall in SOlaris 10

    Hi
    As I want to know that is there any firewall available inbuilt with Solaris 10 like IPTABLES in Linux.
    Also as I have heared about Sun Screen Firewall was available upto Sun Solaris 8. Why it was stopped after Solaris 9 & 10.
    Can you give me more details on same.
    Thanks
    Rajan

    The built-in firewall in solaris is called ipfilter.
    It is much like iptables with a slightly different syntax but it is just as easy to use.
    To start using it all you need to do is edit two files and give two commands (with fingers crossed).
    You can find extensive instructions elsewhere but here is a quick overview.
    Edit /etc/ipf/pfil.ap and de-comment the appropriate device name (use ifconfig -a to figure out what it is).
    Edit /etc/ipf/ipf.conf to your liking. Check online documentation for the syntax. Becareful since it reads from top to bottom and other things that iptables does differently.
    Here is a quick example of one of my machines*(careful this is an output from 'ipfstat -io' and not what you would necessarily want.
    #this machine talking with others
    pass out quick on bge0 proto tcp from xxx.xxx.xxx.xxx/32 to any keep state
    pass out quick on bge0 proto udp from xxx.xxx.xxx.xxx/32 to any keep state
    pass out quick on bge0 proto icmp from xxx.xxx.xxx.xxx/32 to any keep state
    #open up trusted local networks
    pass in quick on bge0 from xxx.xxx.xxx.0/24 to any
    #outside world
    pass in quick on bge0 proto tcp from any to any port = ssh
    pass in quick on bge0 proto tcp from any to any port = 80
    block in on bge0 all
    Those last two passins are wide open but I use sshblack to monitor those ports. You can easily modify that for ipfilter from iptables.
    http://www.pettingers.org/code/sshblack.html
    After you are all set do
    svcadm enable pfil
    svcadm enable ipfilter
    There are a pile of things that may cause either pfil or ipfilter to fail (svcs -vx to check) but you can google the answers or search these forums for how to fix them.

  • Can i  use Oracle Database Audit Vault and Oracle Database Firewall on Solaris?

    Can i  use Oracle Database Audit Vault and Oracle Database Firewall on Solaris?

    4195bee8-4db0-4799-a674-18f89aa500cb wrote:
    i dont have access to My Oracle Support can u send text or html of document please?
    Moderator Action:
    No they cannot send you a document that is available only to those with access to MOS.
    That would violate the conditions of having such service contract credentials.
    Asking someone to violate such privileges is a serious offense and could get that other person's organization banned from all support and all their support contracts cancelled.
    Your post is locked.
    Your duplicate post that you placed into the Audit Vault forum space has been removed (it had no responses).
    This thread which you had placed in the Solaris 10 forum space is moved to the Audit Vault forum space.
    That's the proper location for Audit Vault questions.

  • How to check if my solaris 10 os is up to date?

    how to check if my solaris 10 os is up to date?

    Current Kernel Patch can be displayed using
    -bash-3.2$ uname -a
    SunOS g0043 5.10 Generic_150400-13 sun4v sparc sun4v
    Solaris 10 Update 11 Kernel Patches are 150400-1 till -22
    150400-22 was released a few days ago
    Best regards,
    Marcel

  • Not able to turnoff fencing in Solaris 10 cluster

    I Have configured 2 node sun Solaris 10 cluster. Cluster setup was completed but ended up with below errors (Not able to turnoff fencing in Solaris 10 cluster cluster 3.2u1s/w).
    Please let me know If any one have idea on below errors
    1)     Host1 - Cluster.CCR: [ID 914260 daemon.warning] Failed to retrieve global fencing status from the global name server.
    2)     Host1/Host2 - svc:/system/cluster/globaldevices:default: Method "/usr/cluster/lib/svc/method/globaldevices start" failed with exit status 96.
    3)Following mount entries were not created by default after successful installation. We updated manually the /etc/vfstab and tried to enable global fencing, but we failed to configure.
    /dev/did/dsk/d3s2 /dev/did/rdsk/d3s2 /global/.devices/node@2 ufs 2 yes global – manually added on host1.
    /dev/did/dsk/d3s2 /dev/did/rdsk/d3s2 /global/.devices/node@1 ufs 2 yes global - manually added on host2.
    But as per the procedure these entries should create automatically on both the nodes.
    4)We are trying to turn off the fencing by using the commands but getting these below errors
    bash-3.00# ./cluster set -p global_fencing=nofencing
    cluster: (C645965) Invalid value "nofencing" for property "global_fencing".
    bash-3.00# ./cldev set -p default_fencing=nofencing d3
    cldev: (C612795) Invalid property value - "nofencing".
    Thanks,
    Rajesh

    Hi.
    Are You read documentation ?
    [http://download.oracle.com/docs/cd/E19680-01/html/821-1255/babhabac.html#z40000471052274]
    Guidelines for the /globaldevices File System
    Oracle Solaris Cluster software offers two choices of locations to host the global-devices namespace:
    A lofi device
    A dedicated file system on one of the local disks
    This section describes the guidelines for using a dedicated partition. This information does not apply if you instead host the global-devices namespace on a lofi.
    The /globaldevices file system is usually located on your root disk. However, if you use different storage on which to locate the global-devices file system, such as a Logical Volume Manager volume, it must not be part of a Solaris Volume Manager shared disk set or part of a VxVM disk group other than a root disk group. This file system is later mounted as a UFS cluster file system. Name this file system /globaldevices, which is the default name that is recognized by the scinstall(1M) commandSo:
    >I have mounted one (1) common 2gb LUN for both the nodes, so it is creating the problem...?
    It source of problem.
    Every node require have it's own separate slice for globaldevice.
    Shared Lun can be mounted with option global for access from both nodes at same time, but it will be second step - configure data-services.
    Regards.

  • How to tune segmapsize in solaris

    Hi
    Does anyone has better explanation on how to tune segmapsize in Solaris 8.
    How to check configured value. From below command what can be concluded ?
    root@mdsmdcs1 / # kstat -n segmap
    module: unix instance: 0
    name: segmap class: vm
    crtime 182.906817812
    fault 19689020
    faulta 0
    free 386405
    free_dirty 134
    free_notfree 1749
    get_nofree 0
    get_nomtx 0
    get_reclaim 139897711
    get_reuse 572646
    get_unused 0
    get_use 6178
    getmap 140718838
    pagecreate 2707028
    rel_abort 0
    rel_async 2673641
    rel_dontneed 2618364
    rel_free 92063
    rel_write 2745169
    release 137881594
    snaptime 10790699.8598267
    stolen 0
    i.e eeprom segmapsize=0x40000000

    In Solaris 10 you can tune it by setting 'segmap_percent' in /etc/system, i can imagine its doable in Solaris 8 as well.
    See the tunables reference:
    http://docs.sun.com/app/docs/doc/816-0607?l=all
    .7/M.

  • How to use rsync on Solaris 10

    I have set up rsync to run as a daemon on 2 Solaris 10 servers
    rsync --daemon
    with a /etc/rsyncd.conf file of
    motd file = /etc/motd
    max connections = 5
    syslog facility = local3
    [ftp]
    comment = ftp area
    path = /
    read only = yes
    list = yes
    uid = nobody
    gid = nobody
    [tmp]
    comment = temporary file area
    path = /tmp
    read only = yes
    list = yes
    host allow = l3sun l4sun
    auth users = root
    when I execute
    rsync -vrzt l3:/usr/ptraq/man /usr/ptraq/man
    it gives the following:
    The authenticity of host 'l3 (89.1.20.13)' can't be established.
    RSA key fingerprint is 45:e6:23:88:42:7f:a6:9f:55:b4:43:ba:1c:1d:90:45.
    Are you sure you want to continue connecting (yes/no)? yes
    Warning: Permanently added 'l3,89.1.20.13' (RSA) to the list of known hosts.
    Password:
    Password:
    Password:
    Permission denied (gssapi-keyex,gssapi-with-mic,publickey,keyboard-interactive).
    rsync: connection unexpectedly closed (0 bytes received so far) [receiver]
    rsync error: error in rsync protocol data stream (code 12) at io.c(359)
    Any ideas as to how to use rsync on Solaris 10

    When given a file source lie l3:/usr/ptraq/man with one colon (:) ssh attempts to connect using ssh.
    If you want to connect to the rsync daemon, you need to give 2 colons l3::/usr/ptraq/man.
    Your other alternative is to setup ssh keys so you can log in without a password and then you won't have to run rsync in daemon mode at all.

  • Configuring SunScreen Firewall on Solaris 8

    Hi,
    I'm trying to configure SunScreen Firewall on Solaris 8 and i would like to know what is 'tcp/ip high ports" ? And i have to configure NAT also on the same machine so that few of the machines behind firewall can
    communicate to the Server host infront of firewall. And currently i've the configuration like this.
    -- Firewall is configured with single policy
    --And the Rules are added correctly for NAT.
    And after the policy is verified successfully, the communication is across the Firewall. But after this
    following rules are added to configure tcp/ip high ports.(not sure about the service).
    -- The rules are configured like this.
    edit> add rule common localhost * ALLOW COMMENT "Allow firewall access out"
    edit> add rule tcp-high-ports hme0.net * ALLOW
    edit> add rule udp-high-ports hme0.net * ALLOW
    Now i'm unable to communicate to the server infront of Firewall after policy is activated successfully.
    I would appreciate if someone can help me on this.
    Thanks,
    Mullapudi

    HI,
    i don't know sunscreen, but i can tell you that high-ports are ports above 1023.
    J

  • How to sign applet on Solaris

    Can somebody help me figure out the applet signing procedure/utility for the solaris platform ASAP. We got the following error message if we try now:
    When trying to start MainMenu (converted Oracle form) on Solaris from panda using JDK1.3 plug-in, I am getting the
    following exception:
    "java.security.cert.CertificateException: Unable to verify the certificate with root CA"

    Rajesh.Rathod wrote:
    Hi All,
    i have a 1og database on solaris os.
    How to access isqlplus on Solaris.
    Thanks in advance.
    Regards,
    Rajeshisqlplus is a web-based app. Fire up any browser and point to the appropriate ipaddress:port.

  • How to print PCL on Solaris

    I'm trying to install a new HP Laserjet 3200 on Solaris 8. How do I do that so that it understands PCL and can print graphics, etc.

    Rajesh.Rathod wrote:
    Hi All,
    i have a 1og database on solaris os.
    How to access isqlplus on Solaris.
    Thanks in advance.
    Regards,
    Rajeshisqlplus is a web-based app. Fire up any browser and point to the appropriate ipaddress:port.

  • How disable the firewall for only one NIC (aka adapter)

    Hi people,
    in winXP it was super easy to disable the firewall for one specific "adapter"
    (just to need to uncheck)
    so in Win7 how we disable firewall for one adapter ?
    thx people :D

    I have found it :D
    Go into Firewall with Advanced Security
    Click on Windows firewall Properties
    Then clic on Protected network connection
    and here they are :)

  • Email Issue - How to turnoff "This message contains unloaded images"?

    Email Issue - How to turnoff "This message contains unloaded images"? and having to hit "Load Images" every time I view email msg.

    Mail > Preferences > Viewing
    Select "Display remote images in HTML messages"

  • How to change Firewall remoted desktop port?

    How to change Firewall remoted desktop port
    I have changed the listening port in the registry.
    I added a rule for incoming for RDT.
    I can find the rules, and other items in the Firewall lists.
    But I cannot find how to edit to change the port number.
    Other threads indicate just added an open port not designating RDT as the program.
    Guidance please.

    >So, when inserting a new rule and choosing RDT from the program list automatically inserts the default port number? 
    My fault.  You should not select RDT from the program list, but instead
    select the radio button for port, then click next, select TCP, and add in
    the port number, then next and continue on with setting allow connection
    and then when does this rule apply.
    Bob Comer

Maybe you are looking for