Tool

kchendil's picture
tool
Reads:

4497

Score:
2
2
1
 
Comments:

0

Traffic Tool

Author Info

30 January 2007 - 11:12am
Submitted by: kchendil

Author Blog
Author Profile

Tags

Tags Map

(View Disclaimer)

download url: 
http://www.novell.com/coolsolutions/tools/downloads/traffic_tool.tar.gz
license: 
Free

Novell BorderManager provides Remote Access Solution through IPSec and IKE technologies. Administrators can define the networks to allow or deny access for specific users using iManager framework.

In BM 3.8 and BM 3.8 SP1 a traffic rule can contain multiple Destination Networks. But with later support packs a traffic rule can hold only one Destination network. The iManager framework restricts the administrator from adding more than one Destination network to a traffic rule. The Destination network can be either IP Address Range or a Network. So the Migration from BM 3.8 or BM 3.8 SP1 to Later Versions will have problems with Client-To-Site functionality. In the sense though the traffic rules are pushed to the client the networks cannot be accessed because of the technical constraint.

This tool will split the single rule with multiple networks into individual rules each containing a single network.

Prerequisites

  1. Linux OS
  2. Perl 5.8 or above is installed in the machine.

Instructions

  1. Unzip the file (tar -zxvf traffic_tool.tar.gz)s
  2. cd traffic_tool
  3. ./script.sh
  4. Enter the BM VPN Server IP
  5. Enter the BM VPN Server Port(Enter the clear text LDAP Port eg 389)
  6. Enter the administrator username
  7. Enter the administrator password
  8. Enter the Traffic rule name in the following format(This the Traffic rules in the Traffic Rules Tab in the iManager policyRuleName=<PolicyRuleName<,cn=VPN Rules,cn=<C2S Service Name>,<container> Example: policyRuleName=TheRule,cn=VPN Rules,cn=NovellC2S,o=novell
    Note: Make sure there is no space after the commas
  9. If you have more rules, enter y and enter the rules in the above format.
  10. You can retain the original rule or delete the original rule. Press 'n' if you do not want to retain the old rule.

Result

The rule with multiple networks will be split and added as single rules with corresponding networks.


Disclaimer: As with everything else at Cool Solutions, this content is definitely not supported by Novell (so don't even think of calling Support if you try something and it blows up).

It was contributed by a community member and is published "as is." It seems to have worked for at least one person, and might work for you. But please be sure to test, test, test before you do anything drastic with it.



Related Articles


User Comments

© 2013 Novell