Load and Unload IP filter (LODIPFTR) command added to 7.1

News

Abstract

Content

You are in: IBM i Technology Updates > General IBM i Operating System > Load and Unload IP filter (LODIPFTR) command added to 7.1

Prior to this enhancement, the internet protocol (IP) filter rules could be loaded and unloaded using IBM i Navigator.

PTF SI47941 provides the new Load/Unload IP Filter (LODIPFTR) command.

This command allows the user to load and unload IP filter rules in a green screen or CL environment.

Help text is not available on 7.1 for the command, but can be viewed as shown below.

Load/Unload IP Filter (LODIPFTR)

Where allowed to run: All environments (ALL) Threadsafe:* No	Parameters Examples Error messages

The Load/Unload IP Filter (LODIPFTR) command is used to load or unload internet protocol (IP) filter rules.

Restrictions:

You must have input/output system configuration (*IOSYSCFG) special authority to use this command.

Parameters

Keyword	Description	Choices	Notes
OPTION	Option	LOAD, UNLOAD	Required, Positional 1
LIND	Line description	Name, *ALL	Required, Positional 2
	STMF	Stream file	Path name	Optional
	INCVPN	Include VPN rules	NO, YES	Optional

Option (OPTION)

Specifies whether to load or unload the IP filter rules.

This is a required parameter.

*LOAD: The IP filter rules will be loaded.
*UNLOAD: The IP filter rules will be unloaded

Line description (LIND)

Specify the line description on which to load or unload the IP filter rules.

This is a required parameter.

Single values

*ALL: Load or unload the IP filter rules for all line descriptions.

name: Specify the name of the line description to be used.

Stream file (STMF)

Specifies the path name of the stream file containing the IP filter rule to load. The path name is required when the OPTION is *LOAD.

path-name: Specify the path name of the stream file. The path name can be 512 characters or less.
For more information on specifying path names, refer to "Object naming rules" in the CL topic collection in the Programming category in the IBM i Knowledge Center at Object naming rules - Path names.

Note: This parameter is Unicode-enabled. See "Unicode support in CL" in the CL topic collection in the Programming category in the IBM i Knowledge Center at Calling Unicode-enabled commands.

Include VPN rules (INCVPN)

Specifies whether to load the GUI generate VPN filter rules. The GUI product automatically creates these filter rules that VPN requires in order to work properly.

*NO: The GUI generated VPN filter rules will not be loaded.
*YES: The GUI generated VPN filter rules will be loaded.

Examples

Example 1: Load Filter Rules on a Single Interface

LODIPFTR OPTION(*LOAD) LIND(ETHLINE)
         STMF('/QIBM/UserData/OS400/TCPIP/PacketRules/test.i3p')
         INCVPN(*NO)

This command loads the filter rules from stream file /QIBM/UserData/OS400/TCPIP/PacketRules/test.i3p on the ETHLINE line.

Example 2: Load Filter Rules on All Interfaces

LODIPFTR OPTION(*LOAD) LIND(*ALL)
         STMF('/QIBM/UserData/OS400/TCPIP/PacketRules/test.i3p')
         INCVPN(*YES)

This command loads the filter rules from stream file /QIBM/UserData/OS400/TCPIP/PacketRules/test.i3p on all of the interfaces.

Example 3: Unload Filter Rules from All Interfaces

LODIPFTR OPTION(*UNLOAD) LIND(*ALL)

This command unloads the filter rules from all of the interfaces.

Error messages

*ESCAPE Messages

TCP5A50: Load of IP filter rules failed.
TCP5A51: Unload of IP filter rules failed.

[{"Business Unit":{"code":"BU058","label":"IBM Infrastructure w\/TPS"},"Product":{"code":"SWG60","label":"IBM i"},"Component":"","Platform":[{"code":"PF012","label":"IBM i"}],"Version":"All Versions","Edition":"","Line of Business":{"code":"LOB57","label":"Power"}}]

Tips

Load and Unload IP filter (LODIPFTR) command added to 7.1

News

Abstract

Content

Load/Unload IP Filter (LODIPFTR)

Was this topic helpful?

Document Information

UID

Share your feedback

Need support?