FS6200 Server System Implementation Guide - Public Support ...
FS6200 Server System Implementation Guide - Public Support ...
FS6200 Server System Implementation Guide - Public Support ...
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
• Domain Name <strong>System</strong> (DNS) Client<br />
This feature is supported by a single service: DNS Client.<br />
DNS Client registers the Windows host name of an environment and enables you to<br />
use computer names, in addition to IP addresses, when accessing other computers in<br />
the network.<br />
A firewall rule is predefined to open UDP port 53 for outbound DNS requests.<br />
• Remote Desktop<br />
This feature is supported by three services: Remote Desktop Services, Remote<br />
Desktop Configuration, and Remote Desktop Services UserMode Port Redirector.<br />
Included in the MCP Firmware Environment Policy is a predefined Remote Desktop<br />
firewall rule for inbound connections. This rule opens TCP port 3389. However, the<br />
scope of the Remote Desktop firewall rule has been modified to restrict inbound<br />
remote connections, allowing connections only from the following range of IP<br />
addresses on the management LAN:<br />
192.168.222.20 through 192.168.222.59<br />
If these addresses do not match your network configuration, use the<br />
ChangeRulesForMCP.ps1 script to modify the Remote Desktop rule. For more<br />
information on how to run this script, refer to “Using the ChangeRulesForMCP.ps1<br />
Script” later in this section.<br />
• SNMP<br />
Firewall Rules<br />
The SNMP service is enabled only on the systems management engine to allow the<br />
use of SNMP traps by the MCP Firmware. There following firewall rules that are<br />
associated with this service and are configured in support of this service:<br />
- SNMP Service (UDP In) – This firewall rule is disabled.<br />
- SNMP Trap Service (UDP In) – This firewall rule is enabled.<br />
• Local Application Installation<br />
This option is supported by one service: Windows Installer.<br />
Operating the <strong>Server</strong><br />
Installer enables you to install supported applications on an environment. This service<br />
also enables you to remove or modify applications.<br />
Note: Do not use Installer to install unsupported applications on an environment.<br />
Doing so can jeopardize the stability and security of the system.<br />
In addition to the default core networking rules and the predefined firewall rules that are<br />
associated with a previously discussed feature, Unisys created additional firewall rules<br />
that support specific MCP functions. These rules are described in Table 4-1.<br />
8222 3694–000 4–7