Solaris 10 Firewall configuration with a GUI application

Similar Messages

• Embed labview generated code with c++ gui application

  Hey everyone ,
    I am very new to labview and trying to learn it  ... but before that i wanted to make sure a doubt which i have in my mind , the problem is that i have a realtime GUI application built on c++ widgets and i want to change the existing DSP block in this application with the code generated by using the LABVIEW , i am sorry that have very
  less amount of knowledge regarding labview so i turn up with thread ... So can generate c++ code for the DSP blocks designed in labview ... if yes how and if not why . Any
  sincere help will be appreciated . And I very much apologise for any mistakes in my question .
  Thanks

  Tonph wrote:
  Thanks rolf, is it possible that i use labview to disign my DSP block only and the output be fed to my custom c++ blocks and also wxwidget GUI ... suggest some means thanks ...
  Well, have you followed the link I gave in my post? You can download an evaluation version of the add-on and try it out in LabVIEW. It generates C code, not C++, but that should be no problem, since it is very easy to call C code from a C++ application. I can't vouch for the suitability of this add-on for you, nor do I know the exact price range so that are certainly things you have to do for your own.
  As to nathans solution, that could work too. If your application is for Windows, or MacOS X, or Linux you can create a shared library from your LabVIEW code and call it as such from your C++ application.
  Personally I would find it a rather roundabout way to include LabVIEW generated code in a wxWidget application. One of the strengths of LabVIEW is not only signal acquisition and analysis but also simple GUI design, at least as long as you are after a functional GUI, and not a very specific style of a GUI. So I would never even consider to do the GUI part with anything but LabVIEW if some other parts are already to be done in LabVIEW.
  Rolf Kalbermatter
  CIT Engineering Netherlands
  a division of Test & Measurement Solutions

• LoginContext with a GUI application

  Where would I put the LoginContext for a GUI application? If I were to put it into the same class as the main window, then other windows wouldn't be able to get a Subject from it to perform some PrivilegedAction using Subject.doAsPrivileged. Any Ideas ?

  IPF studied in little chunks is really easy to manipulate.
  Fortunately there is a doc that splits up IPF into little chunks with each new chunk building on all of the old chunks.
  http://www.obfuscation.org/ipf/ipf-howto.txt
  Then all you need to do is to create /etc/ipf/ipf.conf
  and
  svcadm enable ipfilter
  alan

• Solaris 10 zone configuration with sysidcfg and dhcp and hostname

  Hi
  Excuse me if I look like a n00b... it's probably because I'm a n00b.
  I've been struggling in the dark for more than 2 days now and I'm wondering if I'm thinking about this all wrong...
  I have stand-alone server where I need to run zones. I want to create zones and automagically configure them at boot (read: by running a script). So here's what I need...
  A zone
  starting from unconfigured state
  whose hostname is not the same as the zone name
  using corporate DHCP to get its IP address
  with DNS config coming from the DHCP server
  registering its address the DNS
  with a preconfigured root password
  (I don't own the corporate DHCP or DNS servers, I can't put my own DHCP or DNS servers on the network.)
  I would lke to create the zone, throw some config at it, then boot the zone and walk away. I am using zones with exclusive-IP. I can construct the zones and manually configure them once they're started to have DHCP, my own name, registered IP address with DNS and everything else I have specified above. But I don't want to do it manually...
  Sysidcfg seems to do some of what I want but not entirely.
  In sysidcfg I can set the root_password, the primary interface using DHCP, DNS server. I can't set a hostname in sysidcfg AND use configure it for DHCP. So the hostname is not what I want it to be after the zone is started and ready to go. The DHCP server is providing the DNS configuration, Solaris does not seem to honour it, but i'll ignore that for the moment.
  I have tried various combinations of using sysidcfg, /etc/nodename, /etc/hostname.+interface+ and /etc/dhcp.+interface+ but I can't find any combination that actually works.
  I can write to the zonestorage/etc/nodename to set the nodename, that works. But it does not match the DHCP address, so I get prompted for a new name service because it can't find a DNS entry for the name.
  I can write to the zonestorage/etc/hostname.+interface+ and /etc/dhcp.+interface+ (to get the system to register its name with the DNS server after getting its DHCP address) but then I get a system with no root password and no DNS configuration, even though they are set in the sysidcfg file.
  I can write a script that gets part of the way using sysidcfg and /etc/... files, then boots the zone and then runs a bunch of voodoo via zlogin commands to fix all the stuff that couldn't be done 'properly', but that's not a 'boot and walk away' environment. I can write a script that uses sysidcfg and hacks around with other files in /etc (like nsswitch.conf, resolv.conf), but that just feels likes a dirty hack to fix something that wasn't done properly in the first place.
  So where am I going wrong and how do I do it right (within the constraints defined)? Why can't I configure, boot and walk away?
  Thanks

  Thanks abrante
  Thanks for your response!
  I don't think the config is messed up after the installation. I think the installation is fine, it's just not what I want :-)
  I'm trying to decouple the zonename from the system name and get DNS registrations working. After installation, a DHCP client can get its hostname from DNS but I'm trying to do it the other way around. I want the DHCP client specify its own hostname, get an address from the DHCP server and then register its hostname with DNS. If the system gets its name from DNS/DHCP then I have to configure those to provide the system name and I don't own the DHCP/DNS infrastructure. These zones are for a development/QA environment, so we create and reconfigure these frequently. Hence the need to specify the system name within the zone and register that name in the DNS.
  I have tried fiddling with the PARAM_REQUEST_LIST but it does not seem to be working as I expect. :-$ Removing 12 did not help with setting the hostname from the system. DNS does not have a registered name for this system anyway, so even if it tried to get a name for this system, it would get nothing.
  I also do want the DHCP to change the DNS server and domain name, but this does not happen even though my dhcpagent includes 6 and 15 in the PARAM_REQUEST_LIST. I still have to set them in the sysidcfg file because it is always ignored in Solaris (S10u8 with 10_Recommended 30-Jul-2010)
  As stated, I know I can hack around with the system after it has booted. But I'm trying to configure the system before it starts and let it take care of itself and not have to touch it. Frankly I'm surprised that the sysidcfg does not allow you to set a hostname name when you are using DHCP, that the default DHCP configuration does not register the system name with the DNS server, and the DNS config from the DHCP response is ignored. Even a sys-unconfiged system requires DNS configuration during initial boot, when I know that the DHCP response contains DNS information.
  FYI: Windows systems using DHCP work as expected in this respect by default, i.e. set system name, use DHCP --> system gets address from corporate DHCP, DNS settings are set from DHCP information, DNS registration is made for system name.
  I'm working around this at the moment... I call my zone by the system name I want, I hardcode the DNS settings in the sysidcfg file and I create the hostname.+nic+ and dhcp.+nic+ files in the zone storage to get the system to register its name with DNS, them boot.
  Edited by: cydonian on Aug 19, 2010 7:45 PM

• Firewall - Configuration/GUI of the Mac OS X 10.6 / 10.7 Firewall

  First I would like to thank Apple
  for making the Mac OS X operating system.
  And thank you for the Lion update coming soon.
  We properbly all are waiting to get the
  Mac OS X 10.7 Lion update.
  I have seen the full feature list of Lion:
  http://www.apple.com/macosx/whats-new/features.html
  All the great new innovation and apps is great stuff.
  But I came to wonder about one thing though.
  The internet apps like:
  FaceTime, iCloud, iChat, AirDrop etc.
  They more or less all requires custom ports on different
  protocols to be opened and configurated.
  Even the SIP for Facetime has to be enabled etc.
  Like the FaceTime Firewall ports here:
  http://support.apple.com/kb/HT4245
  In the full feature list page of Mac OS X Lion
  there is not listed anything about the Mac OS X Lion Firewall!
  In Snow Leopard we can't configurate the Firewall with
  custom ports and protocols etc.
  Everybody refer to the Hanynet NoobProof and WaterRoof
  firewall apps. I'm using the NoobProof my self right now.
  http://www.hanynet.com
  But I think the Mac OS X Snow Leopard and Lion could do with a
  much better and way more easier firewall GUI to be able to
  configurate ports and protocols and firewall rules and even NAT.
  Isn't the Mac OS X about doing it the easy way!
  I think a Firewall in Mac OS X with only a On and Off button (more or less)
  wont cut it any longer!
  For people not knowing about Firewall its OK to have an On/Off button,
  but for the user that know about firewall, ports and protocols
  it would be great to have a button to go in an be able to configurate
  making rules and opening ports on specific protocols and doing NAT etc.
  The Mac OS X Firewall GUI created by Bryan Hill called
  "Brickhouse" and now called "Flying Buttress"
  updated last in 2005!
  (Which I could NOT get to work in Snow Leopard)
  it had a very good and easy
  to use Graphical User Interface. (GUI).
  See it here:
  http://www.securemac.com/firewallsecurityshareware.php
  Why isn't there any like that for the present Mac OS X????
  Anybody know anything that will help in that direction???
  Anybody know a nicer firewall GUI or App for
  Snow Leopard / Lion ???
  Please comment here.
  Best regards
  Jesper
  from Denmark.

  Thank you very much for responding to my thread Thomas and roam.
  Wheter it is a question to run a firewall on Mac OS X or not,
  is not my question. And thank you, but I do know the difference between a
  GUI for the Mac OS X built in firewall and a 3rd party stand alone firewall.
  If I and properbly many other Mac OS X users choose to run with a firewall,
  many of us would like to be able to configurate as WE want it to be.
  Many users have special needs that require speciel configuration of the firewall.
  There are other things than Apple network technologies you know!
  Running a firewall or not. There is Pro's and Con's on both. It's a free choise right. I respect both.
  I have 8 CPU cores and 16 threads on my Mac Pro, so I think my Mac can handle a running firewall!
  "Better safe, than sorry!" As they say "Over there".
  ;o)
  Apple has chosen to make a firewall in
  Mac OS X, then there must be a reason why it is there.
  And besides that.
  I would bet that, the more popular the
  Mac computers gets in the future and the more marketshare
  the Mac computers get over the hopeless Windows platform.
  The more hackers will be interesting in hacking the Mac OS X.
  So a firewall would be something to consider the more Apple has success.
  I think that is quite logical.
  I'm sure there is almost as many undiscovered security holes in UNIX
  as there is on the Windows platform. It is just a question of time
  before the hackers will point their weapons against the Mac OS X.
  So let me explain a bit more precise what I need…
  I'm used to configurate lots of hardware Routers with Firewalls. Doing things like creating firewall rules, opening ports on specific protocols, WAN-to-LAN and LAN-to-WAN, NAT IP redirection, enabling SIP, content filtering, wireless accesspoints with encryption and MAC Address filtering, creating VPN tunnels, setting up Remote Desktop on Windows and Mac computers for Terminal Servers etc.
  I'm also administrating FTP servers and NAS harddisks.
  All that is always being configurated in a nice intuitive user interface via my web browser. Wheter it is a Router, NAS disk etc. THATS WHAT I WANT with the Firewall in Mac OS X. An "intuitive graphical user inteface" where I easily can configurate the Mac OS X firewall or a stand-alone firewall for that matter.
  Yes I self use on my Mac Pro the Hanynet NoobProof firewall GUI right now.
  But both the Hanynet firewall GUI's are crap. Lets face it!
  They work yes! But the User Interface is NOT Mac OS X standard right!!!
  If you pair the user interfaces with standard unser interfaces of a normal end-user Gateway Router with Firewall. Like ZyXEL, NetGear etc.
  The Hanynet NoobProof don't have the feature to
  choose ports on specific protocols.
  With Apple FaceTime there are ports on both the
  TCP and UDP protocols that has to be open for communication.
  On the other side the Hanynet WaterRoof GUI
  I know that it has the features to configurate ports on specific protocols but!
  The User Interface is waaaaaaaay too complex and is anything else than intuitive!
  I can't find ether head or tale in WaterRoof GUI!!! Completely Lawsy Interface. It is SO non Mac like!
  (it needs a interface designer like myself)
  I mean, "The Mac" and Mac OS X is all about doing things the "EASY, Nice and Intuitive Way" right!
  I can't be that I'm the only one in the world that need a better and faster configuration of the Mac OS X firewall, can it?! There must be hundred thousands of other Mac OS X users with the same wish.
  I know I'm a "designer", not a "programmer".
  The only thing I program is HTML, CSS and DVD Video titles.
  So with all due respect.
  *** The question is…
  Does anybody know a Firewall GUI or stand alone firewall for Mac OS X Snow Leopard/Lion that are easier than Hanynets????????????????
  =========
  If I was an Apple employed that delt with Mac OS X security.
  I would make the Mac OS X firewall user interface different.
  Top level choise could be: ON, OFF and CUSTOM.
  So people with non knowledge of firewalls could just choose ON or OFF
  to their liking. And leaving the choise for people that would like
  to customize the firewall settings with the "Custom" button.
  And there after a nice intuitive graphical user interface
  to make all sorts of custom settings JUST like on a Gateway Router with built in firewall.
  A firewall like that could not hurt anybody could it???!!!
  It's MY Mac, I want to rule over MY firewall.
  I like the Mac OS X very much, I think it is absolutely brilliant,
  but the Firewall settings is NO GOOD for custom firewall configurations.
  Apple has to pay attention to it, the sooner the better.
  Please feel free to comment.
  Best regards
  Jesper
  Denmark.

• Essbase configuration with weblogic application sever..

  Hi dear all....
  I have to install Essbase server and EAS on one server ..and configure with application server weblogic9.2 which is installed on another server..
  How can i deploy EAS to application server (weblogic) which is on another server...

  FIrst of all u should have firewall open then
  if SSL is installed and should be configured while configuring
  give the port number while config
  i think these will help u

• I just installed LV2011 and one dll from my vi won't load with the error "application configuration is incorrect"

  I just installed LV2011 and one dll from my vi won't load with the error "application configuration is incorrect", which is Windows lingo for "missing package dependencies".  All the computers at my company with 2010 loaded seem to do OK.  When I do a Dependencies Walk I get missing Visual C debug dll's missing plus IEshims and wer which both have a whole tree of dependencies missing on my machine.  The Windows install is the same "Windows XP version 2002 Service Pack 3" on my PC and the working PC's. So I'm thinking I have to uninstall 2011 and go back to 2010.  Is this correct?  Those VC debug dll's were installed on the machines with 2010 in them but were not installed in mine.
  I've heard the advice to recompile the dll with debug turned off but I don't have access to the source code.
  Thanks in advance.

  u87 wrote:
  Thanks for the reply.  This at least tells me that going back to LV2010 is not likely to solve the problem.  The missing dll's are:
  MFC90D.dll
  MSVCR90D.dll
  IESHMS.dll
  WER.dll
  And, once again, IESHMS and WER have other dependencies.  So perhaps i need to install the Visual C++ development environment.
  IESHIMS.dll is an Internet Explorer DLL that gets usually delay loaded by shdocvw.dll. As delay load it can not cause DLL load errors but only runtime errors. Maybe your DLL has it as direct dependency but that is unlikely since it does not have a documented interface.
  WER.dll is Windows error reporting for Vista/Win7.
  MFC90D.dll is the Microsoft Foundation classes and MSVCR90D.dll is the MS C runtime library, both as debug variant.
  So all the DLLs you mention are actually MS DLLs! You haven't identified the DLL that you try to access in LabVIEW that causes these error messages. IESHIMS and WER are usually delay loaded by any component that needs it and should not likely be used by non MS code.
  What is the DLL you try to load into LabVIEW and by whom? Get the provider of that DLL to provide you a non Debug build of the DLL. Installing Visual C on all the machines just to make the DLL load is not a solution, besides that it is likely not legal since I doubt you have that many licenses.
  Rolf Kalbermatter
  CIT Engineering Netherlands
  a division of Test & Measurement Solutions

• One of my dll's in my vi doesn't run with the error "application configuration is incorrect"

  I just installed LV2011 and one dll from my vi won't load with the error "application configuration is incorrect", which is Windows lingo for "missing package dependencies".  All the computers at my company with 2010 loaded seem to do OK.  When I do a Dependencies Walk I get missing Visual C debug dll's missing plus IEshims and wer which both have a whole tree of dependencies missing on my machine.  The Windows install is the same "Windows XP version 2002 Service Pack 3"  So I'm thinking I have to uninstall 2011 and go back to 2010.  Is this correct?  Those VC debug dll's were installed on the machines with 2010 in them but were not installed in mine.
  Thanks in advance.

  Hm,
  it seems that you might have more success in the LabVIEW forum here; this one is for LabWindows/CVI...

• IDOC and ALE Configuration with cross application with SD

  Hi Sap Gurus,
  Please send me some document on IDOC and ALE Configuration with cross application with SD.
  Please send me the material on my mail id [email protected]
  Regards
  shekhar

  Dear Shekhar,
  concerning EDI concept in SD: the EDI concept is intended to realize the sales and distribution process completely automatically with the help of electronical documents. These documents are sent from one customer to another, are processed mostly on the background and give a possibility to realize the sales process extremely efficiently.
  If MM-customer would like to purchase the goods then he creates the IDOC of type ORDERS and send it to SD-customer. On the SD-side the IDOC is processed via the function module IDOC_INPUT_ORDERS and creates the sales order. As confirmation the SD-side can send to MM-side the Order-Response IDOC (function IDOC_OUTPUT_ORDERS). The MM-customer can every thime send a change to the existiong order, then on SD side the ORDCHG IDOC will be processed. It can change the order like in VA02. The creation of the invoice can be made via IDOC of message type INVOIC (function IDOC_OUTPUT_INVOIC).
  So, the process can be realized completely automatically between SD and MM partners with the help of IDOCs: ORDERS, ORDCHG, ORDRSP, INVOIC.
  That's all concerning the SD-EDI.
  Additional processes in SD, where EDI are used:
  1) application of delivery schedules to the scheduling agreement: IDOC of type DELINS
  2) creation of a delivery order to the scheduling agreement: IDOC of type DELORD
  3) creation of external agent service delivery to scheduling agreement: IDOC of type EDLNOT
  4) creation of credit advice / credit memo in the frames of self-billing: IDOCs of type GSVERF, SBWAP and for external invoice creation SBINV.
  It is all processes which are realized in the SD module via EDI.
  I hope this info helps.
  Kind regards,
  Akmal Vakhidov
  Development Support SAP, Walldorf/Germany

• Configure sap xi with third party application?

  Hi fredz,
  Can any pls explain with technical details and steps how do i configure sap xi with third party application and what type of connectivity and interfacing communication channel is preffered?
  Is there any option to web-services for interfacing between <b>SAP system-SAP XI system-Third party Application</b>.
  Pls be specific if and only if u have done this scenario.
  Regards,
  Ameet
  Message was edited by:
          Ameet Jassani
  Message was edited by:
          Ameet Jassani

  Hi
  <br>
  This is a very generic question. There are some getting started guides available in the main XI section on SDN, and also some step-by-step guides in the wiki section. A quick search will get you tons of information.
  <br>
  The choice of connectivity and interfacing communication channel is really dependent on the capabilities of the third party system.
  <br>
  Also, to get good results on this forum, please read the <a href="https://wiki.sdn.sap.com/wiki/display/HOME/RulesofEngagement">rules of engagement</a>
  <br>
  Regards
  Manish

• B2B with Firewall configuration for Outgoing messages

  Hi,
  We have put B2B midtier within Intranet. We have firewall configuration for our network.
  When B2B sends the business message to remote trading partner.The connection first hits the firewall. Inorder to pass through the firewall what ports do we need to open on firewall ..?
  Any suggestions..?
  Thakls

  Hello Praveen,
  Please use B2B in the rever proxy configuration with OHS. Pleae refer to 5.5 Configuring Reverse Proxies and Load Balancers in the Oracle® HTTP Server Administrator's Guide 10g Release 2 (10.1.2)
  In tip.properties pleae give proxy host and port (10.60.15.24 and port 4085) and restart the B2B server and follow above document for configuring OHS in reverse proxy mode by changing the http.conf
  Please let me know.
  Rgds,Ramesh

• Configuring LDAP with Disscussion Forum Application

  Hi,
  I am using the Discussion Forum app available on the packaged applications list on the OTN site. I have tried configuring LDAP settings with this forum application, but it does not seem to work...
  Expecting a reply from anyone who has used this app and tried configuring this with LDAP.
  Thanks,
  Shini Menon

  As far as I know, it will not work without modifying some parts of the application.
  Why not?
  LDAP is a table of users with access-rights.
  In the forum-applicytion the table odf_users regsiters the people having access to this.
  So, you need to solve the problem of two user-tables.
  Hope this helps.
  Leo

• Problems with port 6000 from my GUI application

  Hi,
  I have a GUI application that try to open a Corba connection with a server on a dedicated port, but when I put my port to 6000 and launch my GUI application it will try eternally to open the Corba connection and blocks. I think that the 6000 port is used by X11 that is listning , is there any solution to disable the listning of X11 server on 6000 port.
  Regards,

  Well, you shouldn't technically be using Port 6000-6063. They are registered to X11. See http://www.iana.org/assignments/port-numbers.
  A similar port conflict exists with the Oracle Distrubted Lock Manager and X11 on Sun Cluster
  environments (and probably VCS as well). Someone at Oracle got silly and used ports 6000-6031 for
  the UDLM . 6000 is registered to X11 - Don't use it.
  But that's not answering your question.
  cd /etc/rc2.d/
  sh S99dtlogin stop
  mv S99dtlogin .NOS99dtlogin
  That should take care of stopping X11 from starting at boot time.

• SP 2013 Upgrade error - web application is configured with claims authentication mode however the content database you are trying to attach is intended to be used against a windows classic authentication mode.

  Hi there,
  I get this error when I perform a DB Attach upgrade from SharePoint 2010 to SharePoint 2013. 
  "web application is configured with claims authentication mode however the content database you are trying to attach is intended to be used against a windows classic authentication mode."
  Any help is appreciated. Thanks.

  There is other way of fixing this issue apart from what Amit mentioned. Create a classic based web application in SP 2013 using PowerShell.
  New-SPWebApplication -Name "TestApplication" -ApplicationPool "TestApplicationAppPool" -AuthenticationMethod "NTLM" -ApplicationPoolAccount (Get-SPManagedAccount "sppoc\spfarm") -Port 100 -URL "http://sp2013demo"
  Now mount the content database from SP 2010 on to the web application created above 
  Mount-SPContentDatabase WSS_Content_100 -DatabaseServer SQL2012Demo -WebApplication http://sp2013demo:100
  Once the mount is complete, convert the web application to use claims and migrate the user to use claims identity.
  Convert-SPWebApplication -Identity "http://sp2013demo:100" -To Claims –RetainPermissions -Force
  $w = Get-SPWebApplication "http://sp2013demo:100"
  $w.MigrateUsers($True)
  See my blog post about it: http://www.sharepointnadeem.com/2014/01/upgrade-from-sharepoint-2010-classic.html
  Please remember to up-vote or mark the reply as answer if you find it helpful.

• Remove configuration custom STS with old web application using powershell ?

  HI
  i configured a custom sts with sharepoint 2010 web application using following commands,
  $cert = New-Object System.Security.Cryptography.X509Certificates.X509Certificate2("c:\signing.cer")
  $map1 = New-SPClaimTypeMapping -IncomingClaimType "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress" -IncomingClaimTypeDisplayName "EmailAddress" –SameAsIncoming
  $map2=New-SPClaimTypeMapping -IncomingClaimType "http://schemas.microsoft.com/ws/2008/06/identity/claims/role" -IncomingClaimTypeDisplayName "Role" –SameAsIncoming
  $realm=”http://claimauthweb/_trust/default.aspx”
  $ap=New-SPTrustedIdentityTokenIssuer -Name "SimplePassiveSTS" -Description "A simple Asp.Net STS on DevBox." –Realm $realm -ClaimsMappings $map1,$map2 -ImportTrustCertificate $cert -SignInUrl "https://devbox/SimpleSTS/default.aspx" -IdentifierClaim $map1.InputClaimType
  after that i create the new web application with claimauthweb and selected trusted identity provider. 
  but when i create again new web application with different name and ip , after when i login to new web application using custom
  sts it redirects to sts login page and after it goes to claimauthweb application not the new web application.
  so here how i unregister with old web application and again register sts with new web applicatio?
  adil

  I believe if you want to run this you will need to remove the provider from all Web Applications in CA. Then you should be able to run Remove-SPTrustedIdentityTokenIssuer.
  If this is helpful please mark it so. Also if this solved your problem mark as answer.