Appendix A. Firewall and network configuration 799
5. Double-click Connection Control under Traffic Control.
6. Select
Regenerate Connection Rules and Activate, and click Execute.
7. Click Close.
8. Test from client.
– Get Web servers running with Network Dispatcher. Configure HTTP
connection (80, 443).
– Test from client to the Network Dispatcher cluster to the Web servers.
Services configuration
Services are used to group one or more rules. To define services, it is best to
modify a copy of one of the predefined services:
1. Select
Traffic Control -> Connection Templates -> Services in the
configuration client navigation tree to see the list of service templates on your
firewall.
HTTP in Ack
1/2
TCP/ACK in port
80 secure
permit tcp/ack =80 >1023 secure route inbound
HTTP in Ack
2/2
TCP/ACK out
port 80
non-secure
permit tcp/ack =80 >1023 non-secure route outbound
fw2 http port 9080 for Web server plug-in access to Default Server application server
HTTP 9080
in 1/2
TCP in port
9080
non-secure
permit tcp >1023 =9080 non-secure route inbound
HTTP 9080
in 2/2
TCP out port
9080 secure
permit tcp >1023 =9080 secure route outbound
HTTP 9080
in Ack 1/2
TCP/ACK in port
9080 secure
permit tcp/ack =9080 >1023 secure route inbound
HTTP 9080
in Ack 2/2
TCP/ACK out
port 9080
non-secure
permit tcp/ack =9080 >1023 non-secure route outbound
Rule name Description Action Protocol Source
port
Dest.
port
Interface Routing Direction
Note: During the initial configuration, it may be necessary to allow all traffic for
debug purposes. To do so, select
All permit under connection services.
Get WebSphere Commerce V5.4 Handbook: Architecture and Integration Guide now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
