Novell LDAP Proxy 1.0 Administration Guide - NetIQ
Novell LDAP Proxy 1.0 Administration Guide - NetIQ
Novell LDAP Proxy 1.0 Administration Guide - NetIQ
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
• : The rule associated with the Connection Route policy that is configured. The element<br />
can have the following child elements:<br />
• : The client related identity to be evaluated. In the sample configuration, the<br />
condition specifies to allows any incoming client requests either from a network having IP<br />
address equal to 192.168.1.1 having 24 subnet bits or from a base ou=dept1,o=novell.<br />
This element can have the following child elements:<br />
• : The AND logical operator.<br />
• : The OR logical operator.<br />
• : The NOT logical operator.<br />
• : A network address to be evaluated. This element can have the<br />
following child elements specified by using the equal or not-equal attribute:<br />
• : The network address.<br />
• : The subnet mask.<br />
• : The subnet bits. This element must have a value in the range 0-<br />
32.<br />
NOTE: If the element is defined, you must also define either the<br />
or element.<br />
• : A network IP address. It is specified by using the equal or not-equal<br />
attribute.<br />
• : A network port number in the range 1-65536. It is specified by using the<br />
equal, not-equal, less-or-equal, or greater-or-equal attribute.<br />
• : The container value, which is specified by using the equal<br />
or not-equal attribute.<br />
• : The container type, which is specified by using the equal or not-equal<br />
attribute.<br />
• : The action to be performed if the condition evaluates to true.<br />
This element can have the following child elements:<br />
• : Denies the action.<br />
• : The route for all incoming requests. This element can have the<br />
following child elements:<br />
• : The term ref in this element indicates that this element is a<br />
pointer to a policy of type policy-client-network policy.<br />
• : This element is used to route the incoming request to a<br />
back-end server group. The term ref in this element indicates that this element<br />
is actually a pointer to a defined back-end server group.<br />
In the sample configuration, this element is defined<br />
within the element. It directs the incoming request to back-end<br />
server group connld. This is a mandatory attribute.<br />
When you define the element, you must ensure that:<br />
Manually Configuring <strong>Novell</strong> <strong>LDAP</strong> <strong>Proxy</strong> 47