NOTE: The product names used in this section are OVPA and OVPM, even though the names were different for earlier versions, as shown in the reference table.
OVPA will communicate with the OVPM using a combination of TCP and UDP protocols with the following port numbers:
The protocol used to connect to port 135 on the OVPM system has changed from UDP to TCP, regardless of the version of OVPA. If you previously had OVPM getting data from OVPA through a firewall, then you had port 135/UDP opened in the firewall. This must be changed in the firewall configuration to open port 135/TCP instead.
The following
formula will help determine a suitable port range for OVPA on UNIX.
MWA_PORT_RANGE=(# rep_server)*7 + (#
pvalarmd)*2+10
1. Log in as user root.
2. Edit the /etc/services
file to restrict the port numbers before starting the agdbserver
and
rep_server.
RPC_RESTRICTED_PORTS=ncadg_ip_udp[xxxx-yyyy]
export RPC_RESTRICTED_PORTS
where xxxx-yyyy is a range of unused ports calculated previously for the MWA_PORT_RANGE.
3. Restart the OVPA servers by executing:
/opt/perf/bin/mwa restart server
1. Using the MWA_PORT_RANGE
formula, the range of ports would be:
MWA_PORT_RANGE=(#
rep_server)*7 + (# pvalarmd)*2+10 =
(1*7) + (1)*2 + 10 = 19 ports
2. Edit the /etc/services
file to restrict the port numbers before starting the agdbserver
and rep_server.
RPC_RESTRICTED_PORTS=ncadg_ip_udp[14001-14019]
export RPC_RESTRICTED_PORTS
3. Restart the OVPA servers by executing:
/opt/perf/bin/mwa restart server
1. Using the MWA_PORT_RANGE
formula, the range of ports would be
MWA_PORT_RANGE=(#
rep_server)*7 + (# pvalarmd)*2+10 =
(3*7) + (1)*2 + 10 = 33 ports
2. Edit the /etc/services
file to restrict the port numbers before starting the agdbserver
and rep_server.
RPC_RESTRICTED_PORTS=ncadg_ip_udp[14001-14033]
export RPC_RESTRICTED_PORTS
3. Restart the OVPA servers by executing:
/opt/perf/bin/mwa restart server
1. Log in as user root.
2. Stop the OVPA
server by executing:
/opt/perf/bin/mwa stop server
3. Stop the dced
daemon by executing:
/etc/init.d/hplwdce stop
4. Edit the DCE
startup script /etc/default/hplwdce.
Uncomment out the following lines:
RPC_RESTRICTED_PORTS=ncadg_ip_udp[xxxx-yyyy]
:ncacn_ip_tcp[xxxx-yyyy]
export RPC_RESTRICTED_PORTS
where xxxx-yyyy is a range of unused ports calculated previously for the MWA_PORT_RANGE. The default recommended range is at least [10500-10540].
5. Start the dced
daemon by executing:
/etc/init.d/hplwdce start
6. Start the OVPA servers by executing:
/opt/perf/bin/mwa start server
1. Log in as user root.
2. Stop the OVPA server by executing:
/usr/lpp/perf/bin/mwa stop server
3. Stop the dced daemon.
4. Edit the DCE start up script /etc/dce/rc.dce. Add the following lines:
RPC_RESTRICTED_PORTS=ncadg_ip_udp[xxxx-yyyy]
:ncacn_ip_tcp[xxxx-yyyy]
export RPC_RESTRICTED_PORTS
5. Edit the script
/etc/default/mwa. Uncomment out
the following lines:
RPC_RESTRICTED_PORTS=ncadg_ip_udp[xxxx-yyyy]
:ncacn_ip_tcp[xxxx-yyyy]
export RPC_RESTRICTED_PORTS
where xxxx-yyyy is a range of unused ports calculated previously for the MWA_PORT_RANGE. The default recommended range is at least [10500-10540].
6. Start the dced
daemon.
7. Start the OVPA servers by executing:
/usr/lpp/perf/bin/mwa
start server
1. Log in as user root.
2. Stop the OVPA
server by executing:
/usr/opt/perf/bin/mwa stop server
3. Stop the dced daemon.
4. Edit the DCE startup script. Depending on your DCE software version, the DCE startup script is located as follows:
Add the following lines:
RPC_RESTRICTED_PORTS=ncadg_ip_udp[xxxx-yyyy]
:ncacn_ip_tcp[xxxx-yyyy]
export RPC_RESTRICTED_PORTS
Replace the line RPC_RESTRICTED_PORTS="" with
RPC_RESTRICTED_PORTS=ncadg_ip_udp[xxxx-yyyy]
:ncacn_ip_tcp[xxxx-yyyy]
export RPC_RESTRICTED_PORTS
[xxxx-yyyy] represents the range of addresses you have chosen. The default recommended range is [10500-10540].
5. Edit the /etc/default/mwa file and uncomment out the following lines:
RPC_RESTRICTED_PORTS=ncadg_ip_udp[xxxx-yyyy]
:ncacn_ip_tcp[xxxx-yyyy]
export RPC_RESTRICTED_PORTS
6. Start the dced
daemon.
7. Start the OVPA servers by executing:
/usr/opt/perf/bin/mwa start server
Please note that
there is no capability of restricting the port ranges on the Windows NT/2000
platform on a per application basis. The MWA_PORT_RANGE for OVPA on Windows
NT/2000 will be any port greater than 1023.
1. Edit the \%windir%\system32\drivers\etc\Services
file. Add the following lines:
agdbserver xxxx/tcp
rep_server yyyy/tcp
where xxxx and yyyy
are unused port numbers. This will cause agdbserver
and rep_server to register at
the specified ports. If there are multiple data sources configured in the perflbd.mwc
file, then the first rep_server
will use the yyyy port specified above. All other rep_servers
will add one to the last used port number.
2. Restart the
OVPA servers. You can restart the OVPA services on Windows by using the OVPA
GUI. From the main window, select the menu Agent _ Start/Stop. In the OVPA Services
window, select the "Stop Services" button, then select the "Start
Services" button.
1. Log in as user "Administrator".
2. Edit the \%windir%\system32\drivers\etc\Services
file. Add the following lines:
agdbserver 20001/tcp
rep_server 20002/tcp
3. Restart the OVPA servers. You can restart the OVPA services on Windows by
using the OVPA GUI. From the main window, select the menu Agent _ Start/Stop.
In the OVPA Services window, select the "Stop Services" button, then
select the "Start Services" button.
1. Log in as user "Administrator".
2. Edit the \%windir%\system32\drivers\etc\Services
file. Add the following lines:
agdbserver 20001
rep_server 20002
rep_server 20003
rep_server 20004
3. Restart the OVPA servers. You can restart the OVPA services on Windows by
using the OVPA GUI. From the main window, select the menu Agent _ Start/Stop.
In the OVPA Services window, select the "Stop Services" button, then
select the "Start Services" button.
1. Log in as user root.
2. Configure a
port range for the dced/rpcd dynamically
allocated ports:
HP-UX 10.20
/sbin/init.d/ncs and /sbin/init.d/dce
HP-UX 11.00 /sbin/init.d/Rpcd
and /sbin/init.d/dce
add the following
lines:
RPC_RESTRICTED_PORTS=ncadg_ip_udp[xxxx-yyyy]
:ncacn_ip_tcp[xxxx-yyyy]
export RPC_RESTRICTED_PORTS
where
[xxxx-yyyy]represents
the range of addresses you have chosen.
3. Add the same two lines defined above to the beginning of the /opt/perf/bin/pvalarmd.start script.
4.
Rename
/opt/perf/bin/pv to /opt/perf/bin/pv.bin.
Create a new file with the following contents:
#!/bin/sh
# replace [xxxxx-yyyyy] by a range of unused port numbers.
RPC_RESTRICTED_PORTS=ncadg_ip_udp[xxxxx-yyyyy]
export RPC_RESTRICTED_PORTS
/opt/perf/bin/pv.bin $*
5. Save the file
as /opt/perf/bin/pv and change
the file permissions to 555.
6. Kill and restart
rpcd or dced
daemon. Start daemon in either of the following ways:
/opt/dce/sbin/rpcd
or
/opt/dce/sbin/dced -b
7. Restart pvalarmd by executing:
/opt/perf/bin/pvalarmd.start
1. Log in as user root.
2. Stop the dced daemon:
/etc/init.d/hplwdce stop
3. Edit the DCE startup script /etc/default/hplwdce. Insert the following lines:
RPC_RESTRICTED_PORTS=ncadg_ip_udp[xxxxx-yyyyy]:ncacn_ip_tcp[xxxxx-yyyyy]
export RPC_RESTRICTED_PORTS
where [xxxxx-yyyyy] specify a range of unused port numbers.
4. Add the same two lines defined above to the beginning of the /opt/perf/bin/pvalarmd.start script.
5.
Rename /opt/perf/bin/pv
to /opt/perf/bin/pv.bin. Create
a new file with the following contents:
#!/bin/sh
# replace [xxxxx-yyyyy] by a range of unused port numbers.
RPC_RESTRICTED_PORTS=ncadg_ip_udp[xxxxx-yyyyy]
export RPC_RESTRICTED_PORTS
/opt/perf/bin/pv.bin $*
6. Save the file
as /opt/perf/bin/pv and change
the file permissions to 555.
7. Start the dced
daemon:
/etc/init.d/hplwdce start
8. Restart pvalarmd
by executing:
/opt/perf/bin/pvalarmd.start