FS6200 Server System Implementation Guide - Public Support ...
FS6200 Server System Implementation Guide - Public Support ...
FS6200 Server System Implementation Guide - Public Support ...
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
• Microsoft Network Client<br />
This feature is supported by two services: Workstation and TCP/IP NetBIOS Helper.<br />
Microsoft Network Client enables users to share files, print, and log on to the network<br />
by creating and maintaining network connections to remote servers using the SMB<br />
protocol, and by providing support for the NetBIOS over TCP/IP (NetBT) service and<br />
NetBIOS name resolution for clients on the network.<br />
A set of firewall rules for file and printer sharing are enabled to enable the following<br />
outbound connections:<br />
- Ping requests for both IPv4 and IPv6<br />
- NetBIOS Datagram transmission and reception (UDP 138)<br />
- NetBIOS name resolution (UDP 137)<br />
- NetBIOS Session Service connections (TCP 139)<br />
- SMB transmission and reception (TCP 445)<br />
Consequently, from the JProcessor environment, you can ping a remote computer or<br />
map a drive to a share on a remote computer.<br />
Note: Inbound Internet Control Message Protocol (ICMP) requests to the host of the<br />
JProcessor environment are blocked by default. This restriction affects ping<br />
commands, which are ICMP echo requests. As a result, ping commands from remote<br />
computers cannot reach the Windows host of the JProcessor environment, not even<br />
those sent from the MCP. Refer to “Enabling MCP Ping Commands through the<br />
Intra-Platform Connection For JProcessors” in Section 4 of this guide for information<br />
on how to add a firewall rule to enable inbound ICMP requests.<br />
• Domain Name <strong>System</strong> (DNS) Client<br />
This feature is supported by a single service: DNS Client.<br />
DNS Client registers the host name of the JProcessor environment and enables you to<br />
use computer names, in addition to IP addresses, when accessing other computers in<br />
the network.<br />
A firewall rule is predefined to open UDP port 53 for outbound DNS requests.<br />
• Remote Desktop<br />
Setting Up and Operating the JProcessor Specialty Engine<br />
This feature is supported by three services: Remote Desktop Services, Remote<br />
Desktop Configuration, and Remote Desktop Services UserMode Port Redirector.<br />
You can make a Remote Desktop connection from your Operations <strong>Server</strong> to the host<br />
of the JProcessor environment and vice versa.<br />
To connect to a remote computer from the JProcessor environment, click Start, click<br />
All Programs, click Accessories, and then click Remote Desktop<br />
Connection.<br />
Included in the JProcessor Security Policy is a predefined Remote Desktop firewall<br />
rule for inbound connections. This rule opens TCP port 3389, which enables remote<br />
connection. However, the scope of the Remote Desktop firewall rule has been<br />
modified to restrict inbound remote connections, allowing connections only from the<br />
following IP addresses on the management LAN:<br />
8222 3694–000 6–3