ibm-information-center/dist/eclipse/plugins/i5OS.ic.rzajb_5.4.0.1/rzajbrzajb1whatis.htm

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE html
  PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html lang="en-us" xml:lang="en-us">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta name="security" content="public" />
<meta name="Robots" content="index,follow" />
<meta http-equiv="PICS-Label" content='(PICS-1.1 "http://www.icra.org/ratingsv02.html" l gen true r (cz 1 lz 1 nz 1 oz 1 vz 1) "http://www.rsac.org/ratingsv01.html" l gen true r (n 0 s 0 v 0 l 0) "http://www.classify.org/safesurf/" l gen true r (SS~~000 1))' />
<meta name="DC.Type" content="concept" />
<meta name="DC.Title" content="Packet rules concepts" />
<meta name="abstract" content="Packet rules comprise both network address translation (NAT) rules and IP filtering rules. These two functions run at the IP layer of the TCP/IP stack and help protect your system against potential risks that are commonly associated with TCP/IP traffic." />
<meta name="description" content="Packet rules comprise both network address translation (NAT) rules and IP filtering rules. These two functions run at the IP layer of the TCP/IP stack and help protect your system against potential risks that are commonly associated with TCP/IP traffic." />
<meta name="DC.Relation" scheme="URI" content="rzajbrzajb0ippacketsecuritysd.htm" />
<meta name="DC.Relation" scheme="URI" content="rzajbrzajbdefipterms.htm" />
<meta name="DC.Relation" scheme="URI" content="rzajbrzajb2nativevsnonsd.htm" />
<meta name="DC.Relation" scheme="URI" content="rzajbrzajb4natsd.htm" />
<meta name="DC.Relation" scheme="URI" content="rzajbrzajb1afilter.htm" />
<meta name="DC.Relation" scheme="URI" content="rzajbrzajboffiles.htm" />
<meta name="DC.Relation" scheme="URI" content="rzajbrzajbom-files.htm" />
<meta name="DC.Relation" scheme="URI" content="rzajbspoofprotection.htm" />
<meta name="copyright" content="(C) Copyright IBM Corporation 2000, 2006" />
<meta name="DC.Rights.Owner" content="(C) Copyright IBM Corporation 2000, 2006" />
<meta name="DC.Format" content="XHTML" />
<meta name="DC.Identifier" content="rzajb1-whatis" />
<meta name="DC.Language" content="en-us" />
<!-- All rights reserved. Licensed Materials Property of IBM -->
<!-- US Government Users Restricted Rights -->
<!-- Use, duplication or disclosure restricted by -->
<!-- GSA ADP Schedule Contract with IBM Corp. -->
<link rel="stylesheet" type="text/css" href="./ibmdita.css" />
<link rel="stylesheet" type="text/css" href="./ic.css" />
<title>Packet rules concepts</title>
</head>
<body id="rzajb1-whatis"><a name="rzajb1-whatis"><!-- --></a>
<!-- Java sync-link --><script language="Javascript" src="../rzahg/synch.js" type="text/javascript"></script>
<h1 class="topictitle1">Packet rules concepts</h1>
<div><p>Packet rules comprise both network address translation (NAT) rules
and IP filtering rules. These two functions run at the IP layer of the TCP/IP
stack and help protect your system against potential risks that are commonly
associated with TCP/IP traffic.</p>
<div class="p">To better understand how packet rules work, you should be familiar with
these concepts and how they apply to your iSeries™ server:<ul><li>Packet rules versus other iSeries security solutions</li>
<li>NAT</li>
</ul>
</div>
</div>
<div>
<ul class="ullinks">
<li class="ulchildlink"><strong><a href="rzajbrzajbdefipterms.htm">Packet rules terminology</a></strong><br />
Here are the useful terms related to packet rules.</li>
<li class="ulchildlink"><strong><a href="rzajbrzajb2nativevsnonsd.htm">Packet rules versus other iSeries security solutions</a></strong><br />
In high-risk situations, such as securing a production system or
securing communications between your iSeries server and other systems in a
network, you might investigate other iSeries security solutions to broaden
your protection.</li>
<li class="ulchildlink"><strong><a href="rzajbrzajb4natsd.htm">Network address translation (NAT)</a></strong><br />
Network address translation (NAT) allows you to access the Internet safely without having to change your private network IP addresses.</li>
<li class="ulchildlink"><strong><a href="rzajbrzajb1afilter.htm">IP filtering</a></strong><br />
Though not a fully functional firewall in itself, packet rules
provide a solid component that can filter packets for your iSeries server.</li>
<li class="ulchildlink"><strong><a href="rzajbrzajboffiles.htm">Organize NAT rules with IP filter rules</a></strong><br />
While network address translation (NAT) and IP filtering work independently of each other, you can use NAT in conjunction with IP filtering.</li>
<li class="ulchildlink"><strong><a href="rzajbrzajbom-files.htm">Organize multiple IP filter rules</a></strong><br />
When you create a filter rule, it refers to a one-rule statement.
A group of filter rules is called a <dfn class="term">set</dfn>. The filters within a
set are processed top-to-bottom, in physical order. Multiple sets are processed
in physical order within a FILTER_INTERFACE statement.</li>
<li class="ulchildlink"><strong><a href="rzajbspoofprotection.htm">Spoof protection</a></strong><br />
Spoofing occurs when someone attempts to access your system by pretending to be within a system that you normally trust within your own network. It is a good idea to protect any interfaces that are linked to a public network from this type of attack.</li>
</ul>

<div class="familylinks">
<div class="parentlink"><strong>Parent topic:</strong> <a href="rzajbrzajb0ippacketsecuritysd.htm" title="IP filtering and network address translation (NAT) act like a firewall to protect your internal network from intruders.">IP filtering and network address translation</a></div>
</div>
</div>
</body>
</html>
Add readme and dist folders 2024-04-02 14:02:31 +00:00			`<?xml version="1.0" encoding="UTF-8"?>`
			`<!DOCTYPE html`
			`PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">`
			`<html lang="en-us" xml:lang="en-us">`
			`<head>`
			`<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />`
			`<meta name="security" content="public" />`
			`<meta name="Robots" content="index,follow" />`
			`<meta http-equiv="PICS-Label" content='(PICS-1.1 "http://www.icra.org/ratingsv02.html" l gen true r (cz 1 lz 1 nz 1 oz 1 vz 1) "http://www.rsac.org/ratingsv01.html" l gen true r (n 0 s 0 v 0 l 0) "http://www.classify.org/safesurf/" l gen true r (SS~~000 1))' />`
			`<meta name="DC.Type" content="concept" />`
			`<meta name="DC.Title" content="Packet rules concepts" />`
			`<meta name="abstract" content="Packet rules comprise both network address translation (NAT) rules and IP filtering rules. These two functions run at the IP layer of the TCP/IP stack and help protect your system against potential risks that are commonly associated with TCP/IP traffic." />`
			`<meta name="description" content="Packet rules comprise both network address translation (NAT) rules and IP filtering rules. These two functions run at the IP layer of the TCP/IP stack and help protect your system against potential risks that are commonly associated with TCP/IP traffic." />`
			`<meta name="DC.Relation" scheme="URI" content="rzajbrzajb0ippacketsecuritysd.htm" />`
			`<meta name="DC.Relation" scheme="URI" content="rzajbrzajbdefipterms.htm" />`
			`<meta name="DC.Relation" scheme="URI" content="rzajbrzajb2nativevsnonsd.htm" />`
			`<meta name="DC.Relation" scheme="URI" content="rzajbrzajb4natsd.htm" />`
			`<meta name="DC.Relation" scheme="URI" content="rzajbrzajb1afilter.htm" />`
			`<meta name="DC.Relation" scheme="URI" content="rzajbrzajboffiles.htm" />`
			`<meta name="DC.Relation" scheme="URI" content="rzajbrzajbom-files.htm" />`
			`<meta name="DC.Relation" scheme="URI" content="rzajbspoofprotection.htm" />`
			`<meta name="copyright" content="(C) Copyright IBM Corporation 2000, 2006" />`
			`<meta name="DC.Rights.Owner" content="(C) Copyright IBM Corporation 2000, 2006" />`
			`<meta name="DC.Format" content="XHTML" />`
			`<meta name="DC.Identifier" content="rzajb1-whatis" />`
			`<meta name="DC.Language" content="en-us" />`
			`<!-- All rights reserved. Licensed Materials Property of IBM -->`
			`<!-- US Government Users Restricted Rights -->`
			`<!-- Use, duplication or disclosure restricted by -->`
			`<!-- GSA ADP Schedule Contract with IBM Corp. -->`
			`<link rel="stylesheet" type="text/css" href="./ibmdita.css" />`
			`<link rel="stylesheet" type="text/css" href="./ic.css" />`
			`<title>Packet rules concepts</title>`
			`</head>`
			`<body id="rzajb1-whatis"><a name="rzajb1-whatis"><!-- --></a>`
			`<!-- Java sync-link --><script language="Javascript" src="../rzahg/synch.js" type="text/javascript"></script>`
			`<h1 class="topictitle1">Packet rules concepts</h1>`
			`<div><p>Packet rules comprise both network address translation (NAT) rules`
			`and IP filtering rules. These two functions run at the IP layer of the TCP/IP`
			`stack and help protect your system against potential risks that are commonly`
			`associated with TCP/IP traffic.</p>`
			`<div class="p">To better understand how packet rules work, you should be familiar with`
			`these concepts and how they apply to your iSeries™ server:<ul><li>Packet rules versus other iSeries security solutions</li>`
			`<li>NAT</li>`
			`</ul>`
			`</div>`
			`</div>`
			`<div>`
			`<ul class="ullinks">`
			`<li class="ulchildlink"><strong><a href="rzajbrzajbdefipterms.htm">Packet rules terminology</a></strong><br />`
			`Here are the useful terms related to packet rules.</li>`
			`<li class="ulchildlink"><strong><a href="rzajbrzajb2nativevsnonsd.htm">Packet rules versus other iSeries security solutions</a></strong><br />`
			`In high-risk situations, such as securing a production system or`
			`securing communications between your iSeries server and other systems in a`
			`network, you might investigate other iSeries security solutions to broaden`
			`your protection.</li>`
			`<li class="ulchildlink"><strong><a href="rzajbrzajb4natsd.htm">Network address translation (NAT)</a></strong><br />`
			`Network address translation (NAT) allows you to access the Internet safely without having to change your private network IP addresses.</li>`
			`<li class="ulchildlink"><strong><a href="rzajbrzajb1afilter.htm">IP filtering</a></strong><br />`
			`Though not a fully functional firewall in itself, packet rules`
			`provide a solid component that can filter packets for your iSeries server.</li>`
			`<li class="ulchildlink"><strong><a href="rzajbrzajboffiles.htm">Organize NAT rules with IP filter rules</a></strong><br />`
			`While network address translation (NAT) and IP filtering work independently of each other, you can use NAT in conjunction with IP filtering.</li>`
			`<li class="ulchildlink"><strong><a href="rzajbrzajbom-files.htm">Organize multiple IP filter rules</a></strong><br />`
			`When you create a filter rule, it refers to a one-rule statement.`
			`A group of filter rules is called a <dfn class="term">set</dfn>. The filters within a`
			`set are processed top-to-bottom, in physical order. Multiple sets are processed`
			`in physical order within a FILTER_INTERFACE statement.</li>`
			`<li class="ulchildlink"><strong><a href="rzajbspoofprotection.htm">Spoof protection</a></strong><br />`
			`Spoofing occurs when someone attempts to access your system by pretending to be within a system that you normally trust within your own network. It is a good idea to protect any interfaces that are linked to a public network from this type of attack.</li>`
			`</ul>`

			`<div class="familylinks">`
			`<div class="parentlink"><strong>Parent topic:</strong> <a href="rzajbrzajb0ippacketsecuritysd.htm" title="IP filtering and network address translation (NAT) act like a firewall to protect your internal network from intruders.">IP filtering and network address translation</a></div>`
			`</div>`
			`</div>`
			`</body>`
			`</html>`