Configuring tcp/ip port restrictions – IBM SC41-5420-04 User Manual

the specified port. If no match is found, the requesting program is not allowed to
use the specified port. If any port in the 1-1023 range is restricted, the following
message is posted:

Port restriction added but may affect TCP/IP processing

If no user profiles are associated with a specific port, there are no restrictions.

It is not necessary to configure port restrictions unless you are writing your own
TCP/IP applications and you want to reserve the use of the applications to certain
user profiles.

Note:

For an installation in which user-written programs use ports other than the
well-known ports, you can consider restricting the use of the well-known
ports to the user profiles running the server application. As an example, for
File Transfer Protocol (FTP), this would be user profile QTCP.

Configuring TCP/IP Port Restrictions

To configure TCP/IP port restrictions, type option 4 on the Configure TCP/IP
menu. The Work with TCP/IP Port Restrictions display is shown (Figure 55).

Type option 1 (Add) at the input-capable top list entry to get to the Add TCP/IP
Port Entry (ADDTCPPORT) display shown in Figure 56 on page 64. You can go
directly to this display by typing ADDTCPPORT on any command line and
pressing F4.

Work with TCP/IP Port Restrictions

System:

SYSNAM03

Type options, press Enter.

1=Add

4=Remove

--Port Range---

User

Opt

Lower

Upper

Protocol

Profile

_

_____

*ONLY

____

__________

1050

1059

*TCP

PAOLO

Bottom

F3=Exit

F5=Refresh

F6=Print list

F12=Cancel

F17=Top

F18=Bottom

Figure 55. Work with TCP/IP Port Restrictions Display

Chapter 2. TCP/IP: Operation, Management, and Advanced Topics

63