If you did not choose to secure the public interfaces of Novell BorderManager 3.7 during installation, you can do so at any time. To set up default filters:
At the server console prompt, enter
LOAD BRDCFG
When prompted, select Yes to configure the set of default filters and press Enter.
When prompted to launch INETCFG, select No > press Enter.
From the Filter Configuration Options menu, select Setup filters on the Public interface > press Enter.
Select the Public interface from the list > press Enter.
Follow the prompts to enable and configure the default filters.
The default filter settings block all IPX and IP traffic except to and from the Novell IP Gateway, Proxy Services, and Virtual Private Networks (VPNs). Filter support for both IPX and TCP/IP is automatically enabled when the default filters are enabled.
To manually enable or disable the Filter Support option for the TCP/IP protocol:
At the server console prompt, enter
LOAD INETCFG
Select Protocols > TCP/IP > Filter Support > Status.
Select Enabled or Disabled > press Enter.
NOTE: When Filter Support is disabled, the protocol operates as if the filter module is not loaded, and no filtering occurs. When Filter Support is enabled, changes to the filter configurations take effect immediately without your having to reinitialize the server.
NOTE: This chapter describes the tasks required to set up an initial implementation of Novell BorderManager 3.7 packet filtering. For planning and conceptual information about packet filtering, refer to Novell BorderManager 3.7 Overview and Planning GuideNovell BorderManager 3.7 Overview and Planning Guide, available in the online documentation. Make sure you understand this information before setting up and configuring packet filtering.