IBM SC41-5420-04 Creating Exit Programs, Adding Your Exit Program to the Registration Facility

Page 95

Table 9. TCP/IP Application Exit Points (continued)

TCP/IP Application

Exit Point

Exit Point Format

 

 

 

Note:

1The same interface format is used for request validation for the FTP client, FTP server, REXEC server, and TFTP server. This allows the use of one exit program for request validation of any combination of these applications.

2The same interface format is used for server log-on processing for the FTP server and REXEC server applications. This allows the use of one exit program to process log-on requests for both of these applications.

3For a detailed description of the DHCP exit points and how to use them, see System API Reference (http://publib.boulder.ibm.com/pubs/html/as400/v5r1/ic2924/info/apis/api.htm) in the Information Center. If you are using the Supplemental Manuals CD, then switch to the iSeries Information Center CD to access this information.

Creating Exit Programs

There are several steps involved in designing and writing exit programs. They include:

1.Review the purpose of the exit point and the format of its interface

2.Define the scope and operation of your exit program

3.Design the exit program

4.Code the exit program

5.Add the exit program to the appropriate exit point in the registration facility. (See “Adding Your Exit Program to the Registration Facility” for instructions on how to do this.)

Note: Only users with both *SECADM and *ALLOBJ authority are allowed to add and remove TCP/IP application exit programs.

6.Test your exit program

vTests for each user ID

vTests for each operation

The most important step in establishing security exit programs is verifying that the exit program works. You must assure that the security wall works and does not have any weaknesses.

Notes:

1.If the exit program fails or returns an incorrect output parameter, the operation will not be allowed by the TCP/IP application.

2.To ensure the highest level of security, create the exit program in a library that has *PUBLIC authority of *EXCLUDE and give the exit program itself a *PUBLIC authority of *EXCLUDE. The TCP/IP application adopts authority when it is necessary to resolve and call the exit program.

Adding Your Exit Program to the Registration Facility

To add your exit program, run the Work with Registration Information (WRKREGINF) command. The following display is shown:

Appendix B. TCP/IP Application Exit Points and Programs 81

Image 95
Contents TCP/IP Configuration and Reference Page TCP/IP Configuration and Reference Fifth Edition May Contents Index About TCP/IP Configuration and Reference SC41-5420 Vi OS/400 TCP/IP Configuration and Reference V5R1 Operations Navigator Prerequisite and related informationViii OS/400 TCP/IP Configuration and Reference V5R1 Page OS/400 TCP/IP Configuration and Reference V5R1 Summary of changes Xii OS/400 TCP/IP Configuration and Reference V5R1 What you need to know before you can configure TCP/IP Configuring TCP/IPGathering Information About your Network Planning for TCP/IP Installation and ConfigurationLine Description Parameters Checklist TCP/IP Planning ChecklistsInterfaces to Local TCP/IP Networks Local TCP/IP Host Information Checklist25 / Remote System Information Installing the TCP/IP Application ProgramsTcpadm Using the TCP/IP Administration MenuUsing the Configure TCP/IP Menu Cfgtcp Configure TCP/IP MenuProtocol table Configuring TCP/IP using the EZ-Setup WizardConfiguring TCP/IP using the Command Line Interface Services tableInternet address Configuring a Line DescriptionConfiguring a TCP/IP Interface Important NoteAutomatic start Subnet maskLine description Associated local interfaceDo you need to add routes at all? Configuring TCP/IP RoutesMaximum Transmission Unit MTU size Route destinationDftroute None Preferred binding interfaceAdding TCP/IP routes NO, *YES Multiple Default RoutesNormal Adding Remote System Information Configuring TCP/IP attributesConfiguring TCP/IP Remote System Information IP Datagram ForwardingLind 15, *LIND, *TRANSMIT PVCNone NONE, *REQUEST, *ACCEPT Adding an Entry to the Host Table Configuring TCP/IP Host Table EntriesWork with TCP/IP Host Table Display DNS BernMacian Localhost SYSNAM890Loopback AnyNet/400 Appc over TCP/IP Configuring the Local Domain and Host NameLocal Domain Name System DNS ServerDspmsg Qsysopr Dspmsg Qtcp Starting TCP/IP and TCP/IP ServersJob Name Description TCP/IP JobsEnd TCP/IP Endtcp Verifying the TCP/IP ConnectionSuccessful Ping Messages Verifying Additional TCP/IP ConnectionsVerify TCP/IP Connection Vfytcpcnn Verify TCP/IP ConnectionCOMP, *ESCAPE Verifying TCP/IP Connections with Host Name-ExampleVerify TCP/IP Connection Ping VERBOSE, *QUIETVerifying TCP/IP Connections with Internet Address-Example Saving Your TCP/IP ConfigurationConfiguring TCP/IP 32 OS/400 TCP/IP Configuration and Reference V5R1 Work with TCP/IP Network Status Menu Network StatusInternet Network Line Work with TCP/IP Interface StatusWork with TCP/IP Network Status Work with TCP/IP Interface StatusMaxthrput Opt Address Mask ServiceStarting TCP/IP Interfaces Internet Subnet TypeEnding TCP/IP Interfaces Route Subnet Next Opt Destination Mask Hop Available Display TCP/IP Route InformationDisplay TCP/IP Route Information Bottom Route Type Opt Destination ServiceWork with TCP/IP Connection Status Type SourceRemote Local Opt Address Port User Bytes Out Work with TCP/IP Connection StatusRemote Local Opt Address Port Idle Time State TCP Ending TCP/IP ConnectionsALL Remote Local Opt Address Port TypeConfirm End of TCP/IP Connections Working with Configuration StatusTrnline Active Trnlinet Trnlitcp Qtcpip Displaying TCP/IP Network Status InformationDisplay Multicast Groups Opt Description Status JobHost Group Hardware Address Displaying TCP/IP InterfacesDisplay Multicast Host Groups MSB Displaying Associated RoutesDisplay TCP/IP Interface Status TrlanRoute Subnet Next Opt Destination Mask Hop Displaying Route Details OptionDisplay Associated Routes Direct Displaying TCP/IP Route InformationDisplay TCP/IP Route Details Display TCP/IP Route Information, Display 1 Display TCP Connection Status Displaying TCP/IP ConnectionsDisplay TCP/IP Connection Status, Display 2 Displaying Connection TotalsDisplay TCP/IP Connection Totals TCP/IP Host TablesHost Table Information with *NIC Files Managing TCP/IP Host TablesHost File Formats Host Table Information with *AIX FilesHost Table Information with *AS400 Files Tips for Merging Host TablesMerging TCP/IP Host Tables Managing the Host Table from a Central Site Merge the File Dead Gateway Processing Negative Advice from TCP or the Data Link LayerMultihoming Function How IP Responds to Negative AdviceMultihoming Single Host, Single Network, Single Line Per physical LAN only Multihoming TCP/IP Network Example The Multihoming functionLoopback None Type of Service TOSX25LINE TOS Example Multiple RoutesTCP/IP Port Restriction Paolo Configuring TCP/IP Port RestrictionsGerry UDP, *TCPOnly Related Tables and the Host Table Configure Related Tables MenuWork with Service Table Entry Display IBM Using X.25 PVC instead of SVCMulticast Restrictions Chglintrn Lindtrnline FCNADRC00000040000 70 OS/400 TCP/IP Configuration and Reference V5R1 TCP/IP Protocol Support Provided by IOP Base Pool SizeTCP/IP Jobs Outbound batching of TCP and UDP datagrams Running TCP/IP Only Performance Considerations Merge Host Table Performance74 OS/400 TCP/IP Configuration and Reference V5R1 Line type Configuration command Line Description Name Configuration StepsSource Service Access Point Creating the Line DescriptionDetermining the Maximum Size of Datagrams Setting the Maximum Transmission Unit78 OS/400 TCP/IP Configuration and Reference V5R1 TCP/IP Exit Points and Exit Programs Appendix B. TCP/IP Application Exit Points and ProgramsTCP/IP Application Exit Points OS/400 Registration FacilityAdding Your Exit Program to the Registration Facility Creating Exit ProgramsQAPP0100 Select your exit pointAdd your exit program Select the Add Exit Program optionYourlib Removing Exit ProgramsApplication identifier Exit Point Interfaces for TCP/IP Application Exit PointsTCP/IP Application Request Validation Exit Point Interface Required Parameter GroupLength of remote IP address Operation identifierUser profile Remote IP addressAllow operation Usage NotesLength of operation-specific information QSYS.LIB file system pathnames are always in uppercase Point Command stringLength of command string Character conversion option Command processor identifierQshell interpreter not installed 92 OS/400 TCP/IP Configuration and Reference V5R1 Copyright IBM Corp Trademarks Programming Interface InformationDB2 96 OS/400 TCP/IP Configuration and Reference V5R1 Index Special Characters Interface Qtgtelnets Qtsmtpsrvr Page SC41-5420-04