Figure 44 Checking FireScreen Installation Prerequisites

2.Click on Install.

3.At this point in the FireScreen installation, the following startup variables are added to the

/etc/rc.config file:

SCREEND

Indicates whether the FireScreen daemon is to be started when the system is booted.

SCREEND_FLAGS

Indicates which options are to be used when the FireScreen daemon is started on the system.

SCREEND_MODE

Indicates whether screening is on.

SCREEND_KERNEL

Specifies the name of the kernel that contains support for the FireScreen daemon.

The FireScreen installation installs a startup script (/sbin/init.d/firescreen) to run the FireScreen daemon when the system boots, and it links /sbin/rc3.d/S11firescreen to /sbin/init.d/firescreen.

Note:

The FireScreen daemon and the system's routing daemon are started, in that order, when the system boots. This guarantees that no IP packets are forwarded across the gateway before FireScreen starts.

The /etc/inittab file is modified to set the default screening mode (on).

Finally, the default FireScreen configuration file, /etc/firescreen.conf, is installed and the FireScreen reference pages are linked (assuming the OSFMANOS reference pages subset is installed).

The default system configuration file and kernel are displayed.

172 Network Security Administration

Page 172
Image 172
HP UX Internet Express Software manual Checking FireScreen Installation Prerequisites, Etc/rc.config file