Novell Home

My Favorites

Close

Please to see your favorites.

Filtering (Firewall) Troubleshooting

(Last modified: 13Feb2003)

This document (10077314) is provided subject to the disclaimer at the end of this document.

goal

Filtering (Firewall) Troubleshooting

symptom

How do you install and configure the BorderManager Filtering "Firewall"?

fix

See TID # 10011235

symptom

  Are there documents that describe how to make exceptions to allow some types of traffic through the BorderManager "Firewall", like SMTP or WEB?

fix

  See TID # 10011235         

PING
--------
Can you ping the:
    - Workstation?
    - Internal servers?
    - DNS?
    - ISP server?
    - Public DNS?
    - Public Host? 
        

IPXPING
-------------
Can you ping the Workstation?
Can you ping the Internal servers?
Can you ping the External servers / Public servers? 
        

TCPCON-IP Routing Table
----------------------------------------
Are you seeing the routes you should have? 
        

IPXCON
------------
Forwarding
    - Are you seeing the network?
    - Are you seeing the networks you want?
Services
    - What service can you see?
    - Are you seeing the services you want? 
        

Logs
-------
To view log, at workstation start, NWADMN95->(choose gateway server)>Tools-> BorderManager>BorderManager(Tool bar)>View Packet Filtering Log>Display Records
        
Check the log to see if:
    - The packets that should NOT be blocked ARE coming through the firewall.
    - The packets that SHOULD be blocked are NOT coming through the firewall. 
        

IPTrace
------------
Loading syntax
    - load iptrace {ip address or host name]
    - Load without address or name, display full syntax of iptrace
        
Log
    - IPTRACE, sent information to sys:etciptrace.log
        
What to look for:
    - Was the route correct?
    - Did IPTRACE complete the task? 
        

View Filters
 ----------------
Save filter to a text file
    - This is an option in filtcfg
        
How does this help me?
This is a way the to see an overall picture of the filter that is applied, without having to go through each individual filter.
        
    sys:etcFILTER.CFG
        - This is the file created by FILTCFG.NLM; it stores all filtering information
        - DO NOT edit this file!
        - Although you can view this file, it is very hard to read 
        

Files Novell will need from to provide technical support
---------------------------------------------------------------------------------
    - sys:etc echwalk.out files ("load techwalk" at console)
    - Save filter to a text file (FILTCFG.NLM)
    - sys:etcFILTER.CFG
    - System map, with addresses
    - Sys:systemcslib*.log
    - Sys:systemcslib*.dat
    - Sys:systemcsliblogsatlogs*.arc
    - sys:etciptrace.log , if IPTRACE was used
    - LANalyzer traces, if created or requested

note

TID# 2928286

disclaimer

The Origin of this information may be internal or external to Novell. Novell makes all reasonable efforts to verify this information. However, the information provided in this document is for your information only. Novell makes no explicit or implied claims to the validity of this information.
Any trademarks referenced in this document are the property of their respective owners. Consult your product manuals for complete trademark information.

  • Document ID:
  • 10077314
  • Solution ID: NOVL84359
  • Creation Date: 03Dec2002
  • Modified Date: 13Feb2003
    • NovellGroupware

      BorderManager Services

Did this document solve your problem? Provide Feedback