SafeNet ProtectServer External 2, Installation Manual

Page: 19 / 22

13
Once a table configuration has been created that provides suitable network access, it
can be stored as the active network configuration using the following command:
/etc/init.d/iptables save active
Before
iptables (8)
is completely configured it should have an inactive table
defined. This is less critical as there is very little running in the operating system by
the time the inactive table is loaded. The following is a suitable inactive table:
iptables -F INPUT
iptables -F OUTPUT
iptables -F FORWARD
iptables -A INPUT -j DROP
iptables -A OUTPUT -j DROP
iptables -A FORWARD -j DROP
/etc/init.d/iptables save inactive
The active iptables configuration must now be restored before
connections to the PSe are allowed. The following command will
restore the previously saved active configuration.
/etc/init.d/iptables stop
/etc/init.d/iptables start
SSH network access
After you have completed the network configuration, you can access the PSE2 over
the network using the SSH protocol. To access the PSE2 using SSH, you require an
SSH client such as puTTY (available for free from
www.putty.org ).
Note:
You must log in as the admin user when accessing the PSE2 over an SSH connection.
Restarting networking
After making any change to the networking configuration, reboot the PSE2 or enter
the following command to restart networking:
/etc/init.d/networking restart
Powering off the PSE2
You must be logged in as root to power off the PSE2.
To power off the PSE2
1. Enter the shutdown or poweroff command to shut down the operating system. The
fan and LEDs will remain operational.
2. Toggle the power switch, located on the rear of the PSE2, to the off position. The
fan and LEDs will turn off.
Upgrading the PSe
You can upgrade the PSE2 to a later revision using USB media, such as USB memory
sticks or a USB-connected CDROM drive.