Pages

Thursday, July 19, 2012

AIX TCP Wrapper Setup.


1. You have to install the fileset 'netsec.options' from the AIX Expansion DVD. The fileset can be found on the AIX 6.1 Expansion DVD. 


2. /etc/inetd.conf
ftp      stream  tcp    nowait  root    /usr/local/bin/tcpd     ftpd
telnet   stream  tcp    nowait  root    /usr/local/bin/tcpd     telnetd -a

3. /etc/hosts.deny
ALL : ALL

ALL : ALL : severity auth.info

4. /etc/hosts.allow
aix# vi /etc/hosts.allow
telnetd: 111.111.111.111 111.111.111.114

5. Restart the Internet Superdaemon

aix# refresh -s inetd
0513-095 The request for subsystem refresh was completed successfully.
You can check that telnet is wrapped now by tcpd:
aix# lssrc -l -s inetd 
                                              
Subsystem         Group            PID          Status                        
 inetd            tcpip            401640       active                        
                                                                              
Debug         Not active                                                      
                                                                              
Signal        Purpose                                                         
 SIGALRM      Establishes socket connections for failed services.             
 SIGHUP       Rereads the configuration database and reconfigures services.   
                                                                              
 SIGCHLD      Restarts the service in case the service ends abnormally.       
                                                                              
Service       Command                  Description              Status        
 telnet       /usr/sbin/tcpd           telnetd -a               active  

No comments:

Post a Comment