PMDF Installation Guide
Linux Edition


Previous Next Contents Index

8.2 Using the Firewall Configuration Utility

This section presents a step-by-step procedure for generating your PMDF firewall configuration files using the PMDF firewall configuration utility, pmdf configure firewall. Refer to Chapter 9 for a sample configuration dialogue.

  1. Configuration of PMDF should be done by root to ensure that the necessary privileges are available to create the configuration files. If you are not logged in as root, do so now.
  2. Begin the configuration procedure by invoking the pmdf configure firewall utility as follows, assuming that you have /usr/bin in your search path:


    # cd /pmdf/table
    # pmdf configure firewall
    

  3. The configuration procedure will optionally print out detailed explanations of each prompt as it proceeds. Unless you are familiar with the procedure, enable the detailed output.
  4. Closely examine the example configuration presented in Chapter 9. Parts of the sample site are probably representative of your own network configuration. In addition, the example was run with detailed prompting enabled, and will prepare you for the answers you need to provide for your own site.
  5. Once you're completed running the pmdf configure firewall utility, type out or print the /pmdf/table/firewall.checklist file and complete the configuration by following the steps outlined in the checklist.
  6. If you have purchased and installed the optional PMDF-LAN, gateway for use on this firewall, you will need to run their configuration procedures after configuring PMDF with the pmdf configure firewall utility.
  7. Test out your configuration initially by sending mail from the firewall system to someone on an internal system. Using the PMDF pine utility, send a message to an address of the form


    username@domain
    
    where username@domain is a valid address. PMDF should accept the message and send it off the firewall system.

  8. If messages do not seem to be getting out, check the subdirectories in the /pmdf/queue area or use the pmdf cache -view utility to check whether the messages is stuck in the PMDF message queues on your system. Examination of log files in the /pmdf/log directory may help isolate network delivery problems. See the section Maintenance and Troubleshooting in the PMDF System Manager's Guide for additional information on tracking PMDF delivery problems.
  9. If everything appears to be functional, and you have completed your configuration for the present, you may want to compile your configuration for increased performance. Use the pmdf cnbuild utility. See the PMDF System Manager's Guide for more information.


Previous Next Contents Index