Manualshelf

HP-UX Internet Services Administrator's Guide (February 2007)

ManualsBrandsHP ManualsSoftwareHP-UX 11i v3 ONC and NFS Software
41424344454647484950
You can execute the tcpdmatch tool on the command line using the following formats:
1. /usr/bin/tcpdmatch [-d] [-i inet_conf] daemon client
2. /usr/bin/tcpdmatch [-d] [-i inet_conf] daemon@[server] [user@]client
daemon
Specifies a daemon name.
client Specifies the host name, network address, or the unknown or paranoid
wildcard formats.
server Specifies a host name or network address or the unknown or paranoid
wildcard formats.
user
Indicates a client user identifier, and specifies a login name or address. The
default user name is unknown.
You can use the first tcpd syntax when a server has more than one address or name.
Example 3-1 Sample Usage of the tcpdmatch Tool
The following example denotes how tcpd handles an ftp request from a local system:
# tcpdmatch ftpd localhost
If the host name lookup fails, the same request is handled by tcpd as follows:
# tcpdmatch ftpd 127.0.0.1
To determine what tcpd does when the client name and address do not match, execute
the following command at the command prompt:
# tcpdmatch ftpd paranoid
For more information on the tcpdmatch tool, type man 1 tcpdmatch, and for more
information on wildcard patterns, type man 5 hosts_access at the HP-UX prompt.
The try-from Utility
The try-from utility identifies the detailed information regarding to a connection.
This utility must be called via a remote shell command to determine if the host name
and the address are recognized properly, and also if the user name lookup works.
The try-from utility can be executed from the command line as follows:
# remsh host /usr/bin/try-from
When the try-from utility is invoked, it prints the following output:
client address (%a): client hostname (%n): client username (%u): client info (%c):
server address (%A): server hostname (%N): server process (%d): server info (%s):
TCP Wrappers Files 43