Table of Contents
Advertisement
# If it is PROCESS_HEARTBEAT then a user-space process will need to run
# and configure the timer. This will provide the above protection in addition
# to application-specific protection as it is expected that the user space
# process will know what to watch and when to trigger the bypass condition.
export PROCESS_HEARTBEAT=0
# Create a bridge for passing traffic
export im_pair0=eth0,eth1
8 Enter the following command to turn on the bypass init script:
service bypass start
9 The file /etc/snmp/snmpd.local.conf enables SNMP integration with the NICs.
When this feature is enabled, you can query the real-time status of the bypass adapter by
entering the following command:
service bypass status
Something similar to the following will be returned:
(0) MODE: 0
(0) TIMEOUT:
(0) TIMER ACTIVE: TRUE
(0) BYPASS STATUS: CLOSED
(0) STATE: DEFAULT
Table
and states.
Status Items
Table C-1
State
(0)
MODE
TIMEOUT
TIMER ACTIVE
BYPASS STATUS
STATE
440 Novell ZENworks Network Access Control Users Guide
14
C-1,
Table
C-2, and
Table C-3
Description
The number in parentheses is the card index number. If there are two cards
in the system, the output doubles and increments the number to 1 to reflect
the second card.
Indicates what mode the card is operating in, typically mode 0.
Indicates the decimal seconds (approximate) of the timer. This is the
maximum amount of downtime the system could experience in the event of
a problem.
Indicates that a kernel-provided timer has been activated in the module as
well as on the card. This may also be interpreted such that no user-space
process is expected to provide the watch dog "kick" to re-set the timer.
Indicates the state of the relays. If in a CLOSED state, then traffic is flowing
across the host as is normal. Conversely an OPEN state indicates that
traffic is bypassing the host completely, indicating that either the time has
expired (which is essentially impossible in kernel mode, unless the module
is removed by hand), or that the user space process that was responsible
for updating the timer has gone away.
Indicates the state the card is in. A variety of states are possible as shown in
Table C-3 on page
describe the status items, and list their possible statuses
441.
Advertisement
Table of Contents
Related Manuals for Novell ZENWORKS NETWORK ACCESS CONTROL 5.0 - 09-22-2008
Related Products for Novell ZENWORKS NETWORK ACCESS CONTROL 5.0 - 09-22-2008
- NOVELL ZENWORKS NETWORK ACCESS CONTROL 5.0 - INSTALLATION GUIDE 09-22-2008
- Novell 3.6 05-2008
- Novell Access Manager 3.1 SP 1
- Novell Access Manager 3.1 SP 2
- NOVELL ACCESS MANAGER 3.1 SP1 - AGENT GUIDE
- NOVELL ACCESS MANAGER 3.1 SP1 - IDENTITY SERVER
- NOVELL ACCESS MANAGER 3.1 SP1 - S 11-20-2009
- NOVELL ACCESS MANAGER 3.1 SP1 - SSL VPN SERVER GUIDE 03-17-2010
- NOVELL ACCESS MANAGER 3.1 SP2 - J2EE AGENT GUIDE 2010
- NOVELL ACCESS MANAGER 3.1 SP2 - README 2010
- NOVELL ACCESS MANAGER 3.1 SP2 - SSL VPN USER GUIDE 2010
- Novell Access Manager 3.1 SP2 Beta 1
- NOVELL ACCESS MANAGER 3.1 SP2 BETA 1 - SCENARIOS 2009
- Novell Account Management 2.1
- NOVELL ADMINSTUDIO 9.5
- NOVELL APPARMOR - AND