Manualshelf

HP-UX Secure Resource Partitions (SRP) A.02.01 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX Containers (SRP) Software
51525354555657585960
60
Valid Input: One or more TCP port numbers each in the range 1- 65535,
separated by commas.
Default: None.
IPFilter UDP port
numbers
Specifies the local UDP port numbers for IPFilter rules that allow inbound
packets.
Variable Name: ipf_udp_ports.
Valid Input: One or more UDP port numbers each in the range 1-
65535,
separated by commas.
Default: None.
9.1.2.2 Configuration Data
If the compartment address is an IPv4 address, SRP adds IPFilter rules to the
/etc/opt/ipf/ipf.conf file. If the compartment address is an IPv6 address, SRP adds IPFilter
rules to the /etc/opt/ipf/ipf6.conf file.
SRP configures rules that allow inbound packets from any remote IP address to the compartment IP
address with the specified destination TCP or UDP port numbers.
SRP inserts these rules at the top of the IPFilter rules file and uses the quick keyword.
The IPFilter configuration file already contains rules from the base template to allow all outbound
TCP, UDP, and ICMP packets from the compartment IP address, as described in 9.1.3.2
Configuration Data
.
9.1.3 The provision Service
The provision service executes the customizable script /opt/hpsrp/bin/util/custom_setup
to provision (deploy) an additional application in the SRP compartment.
9.1.3.1 Input Data
SRP prompts for the following data. You can also specify a variable name and value in the command
line, as described in
13.1 Creating an SRP Compartment or Adding Data to a Compartment.
Provision Script
name
The provision script path to use to configure additional set of
applications .
Variable Name: script
Default: /opt/hpsrp/bin/util/custom_setup.
9.1.3.2 Configuration Data
By default, the /opt/hpsrp/bin/util/custom_setup script:
Prints the script name used by the instance during the verbose listing
Prints the arguments to the script in the verbose mode for any operation
Allows users to write his own functionality for each of the operations like add/delete/replace
9.2 Replacing or Deleting Custom SRP Data
Use the following command to replace custom template data from an SRP compartment:
srp -r[eplace] compartment_name -t custom [-s service[,service]...] id
instance