Book description
The importance of modern computer networks is steadily growing as increasing amounts of data are exchanged over company intranets and the Internet. Understanding current networking technologies and communication protocols that are available for the IBM® mainframe and System z® operating systems is essential for setting up your network infrastructure with z/VSE®.
This IBM Redbooks® publication helps you install, tailor, and configure new networking options for z/VSE that are available with TCP/IP for VSE/ESA, IPv6/VSE, and Fast Path to Linux on System z (Linux Fast Path). We put a strong focus on network security and describe how the new OpenSSL-based SSL runtime component can be used to enhance the security of your business.
This IBM Redbooks publication extends the information that is provided in Security on IBM z/VSE, SG24-7691.
Table of contents
- Front cover
- Notices
- Preface
-
Chapter 1. Networking options overview
- 1.1 Overview
-
1.2 Hardware options
- 1.2.1 OSA-Express
- 1.2.2 OSA-Integrated Console Controller
- 1.2.3 OSA-Express in QDIO mode
- 1.2.4 OSA-Express
- 1.2.5 OSA for NCP support
- 1.2.6 Intra-Ensemble Data Network support
- 1.2.7 OSA-Express multi-port support
- 1.2.8 HiperSockets (IQD)
- 1.2.9 Virtual local area network
- 1.2.10 Shared OSA adapter versus HiperSockets
- 1.2.11 Using HiperSockets to communicate with Linux on System z
- 1.2.12 QDIO buffer configuration
- 1.2.13 Virtual OSA devices and VMAC
-
1.3 Software options
- 1.3.1 IPv4
- 1.3.2 IPv6
- 1.3.3 Why IPv6?
- 1.3.4 Dual stack support
- 1.3.5 Migration from IPv4 to IPv6
- 1.3.6 IPv6 products for z/VSE
- 1.3.7 Securing your connections with Secure Sockets Layer
- 1.3.8 Options for printing
- 1.3.9 Overview of APIs
- 1.3.10 Available applications
- 1.3.11 Choosing a socket API when designing your applications
- 1.3.12 Enabling your applications for IPv6
-
Chapter 2. TCP/IP for VSE/ESA
- 2.1 Overview
- 2.2 Standard features
- 2.3 Other optional features
- 2.4 Applications that are provided with TCP/IP for VSE
- 2.5 Application programming interfaces
- 2.6 Setting up and running TCP/IP for VSE
- 2.7 FTP hints
- 2.8 Partition priorities
- 2.9 Security
- 2.10 Remote running with REXX
- 2.11 Version checking
- 2.12 Datagram analysis
- 2.13 Known problems
-
Chapter 3. IPv6/VSE
- 3.1 Overview
- 3.2 Obtaining and activating a license key
- 3.3 Stack setup
- 3.4 Setting up FTP
- 3.5 Setting up TN3270
- 3.6 Setting up TN3270E printing
-
3.7 Setting up SSL
- 3.7.1 Installing the prerequisite programs
- 3.7.2 Creating the keystore
- 3.7.3 Removing the private CA key from the client keyring file
- 3.7.4 Deciding whether to use the SSL proxy server or AT-TLS
- 3.7.5 Specifying parameters
- 3.7.6 Configuring the SSL proxy server
- 3.7.7 Configuring the AT-TLS server
- 3.7.8 Considerations on blocking clear ports
- 3.7.9 Configuring wc3270 for SSL
- 3.7.10 Configuring IBM Personal Communications for SSL
- 3.7.11 Configuring secure FTP
- 3.7.12 Configuring VSE Connector Server
- 3.7.13 SSL client authentication
- 3.7.14 Using TLSv1.2
- 3.8 Setting up CICS Web Support
-
3.9 Known problems
- 3.9.1 VSE cannot be reached
- 3.9.2 BSTT075E LUNAME NOT AVAIL
- 3.9.3 SSL connect error with wc3270
- 3.9.4 Other SSL connect errors
- 3.9.5 Hang situation with BSTTATLS/BSTTPRXY
- 3.9.6 Return codes 3100 / 1700 from IJBCRLIB
- 3.9.7 BSTTFTPC fails to connect to Windows Server 2008
- 3.9.8 Batch email cannot relay mail
- 3.9.9 LDAP sign on by using SSL does not work
- 3.9.10 GnuTLS error -53: Error in the push function
- Chapter 4. Fast Path to Linux on System z
-
Chapter 5. OpenSSL
- 5.1 Overview
- 5.2 Access to the OpenSSL API
- 5.3 Creating random numbers
- 5.4 Keystore considerations
-
5.5 Programming
- 5.5.1 Include files
- 5.5.2 Passed socket number
- 5.5.3 Socket calls
- 5.5.4 Switching between GSK and OpenSSL socket calls
- 5.5.5 Specifying the key ring
- 5.5.6 Using a password-protected keyring
- 5.5.7 Supported cipher suites
- 5.5.8 Specifying cipher suites
- 5.5.9 Supported RSA key lengths
- 5.5.10 Debugging
- 5.5.11 Hardware crypto support
- 5.5.12 Programming example
- 5.6 Performing the OpenSSL speed test
- 5.7 How OpenSSL is used on z/VSE
- 5.8 OpenSSL vulnerabilities
- 5.9 Considerations on TLSv1.2
- 5.10 Restrictions
- Chapter 6. Comparison of stacks and protocols
- Appendix A. API reference
- Related publications
- Back cover
Product information
- Title: Enhanced Networking on IBM z/VSE
- Author(s):
- Release date: February 2014
- Publisher(s): IBM Redbooks
- ISBN: None
You might also like
book
Enhanced Networking on IBM z/VSE
The importance of modern computer networks is steadily growing as increasing amounts of data are exchanged …
book
The Virtualization Cookbook for IBM Z Volume 1: IBM z/VM 7.2
This IBM® Redbooks® publication is volume one of five in a series of books entitled The …
book
Home Networking Annoyances
The beauty of a home network is that it can make life so easy--what could be …
book
Create Your Own Home Networks
You have a family computer for e-mail and browsing the Internet. Your son and daughter have …