Manualshelf

HP-UX Secure Resource Partitions (SRP) A.02.01 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX Containers (SRP) Software
11121314151617181920
13
provision
Executes a script to deploy an application in an SRP compartment. HP provides provision
scripts for Apache Web Server, Tomcat Servlet Engine, and Secure Shell daemon (sshd)
templates.
network
Configures an IP interface for use by a compartment. By default, SRP IP interfaces will not
be shared between SRPs, however these interfaces are accessible by default from the INIT
compartment.
init
Creates compartment startup and shutdown scripts and a compartment-specific init
directory structure that replicates the /sbin/init.d directory structure. By default, the
scripts are automatically executed by the system startup and shutdown scripts.
ipfilter
Configures IPFilter rules for the compartment. For the base template, SRP configures rules that
restrict IP packets to the compartment's IP interface. When used with application templates,
SRP prompts you for local port numbers and configures rules that allow packets that match the
specified ports.
ipsec
Configures HP-UX IPSec policies for the compartment. SRP prompts you for the local and
remote IP addresses and configures IPSec polices to encrypt and authenticate packets that
match the address specifications. The ipsec service also configures an Internet Key
Exchange (IKE) policy and an IKE preshared key.
1.2.5 Configuration Synchronization Manager (CMGR) Utility and Libraries
The Configuration Synchronization Manager (CMGR) product is included in the SRP bundle. The
CMGR product includes the cmgr utility and libraries, which enables SRP to coordinate the
configuration of multiple subsystems. The srp utility invokes the cmgr utility.
For more information about CMGR, refer to the
HP-UX CMGR Administrator's and Developer's Guide.
1.3 Planning Considerations and Best Practices
This section contains information to consider when planning an SRP deployment and best practices to
follow when managing a system with SRP compartments.
1.3.1 Compatibility with Other Partitioning Continuum Products
HP-UX SRP is a component of the Partitioning Continuum for HP-UX and is compatible with HP-UX
nPartitions, HP-UX vPar, and Integrity Virtual Machine (VM) solutions. You can create an SRP in any
HP-UX OS image; the OS image can exist in an nPartition, vPar, Integrity VM, or directly on non-
partitioned server hardware.