Having explored this a couple times in the past, I can say it's not easy or straight forward. There are exit points that can pass ip addresses from TCPIP/TN3270 server on into VTAM and subsequently to your applications. Depending on the level of logging happening in your network, including firewalls, load balancers, VPN issues, you might be able to track back to a physical (or virtual) instance of a TN3270 emulator. Which, of course, might be driven by a screen scraper.
I would agree with the other option suggested. Announce and the tighten port 23 to require encryption. Fix those users whose emulators aren't ready. > -----Original Message----- > From: IBM Mainframe Discussion List <[email protected]> On > Behalf Of don isenstadt > Sent: Tuesday, March 03, 2020 9:32 AM > To: [email protected] > Subject: How to get a workstation name from ip address > > Hello..we have many users who are still using port 23 unsecured..so we can > easily identify them with a display tcpip command po=23. The list of ip > addresses needs to be translated to a workstation name because the ip > addresses are volitile. Ping -a does not work on the mainframe. We want the > command to be run from the mainframe. > Thanks, > -don > > ---------------------------------------------------------------------- > For IBM-MAIN subscribe / signoff / archive access instructions, send email to > [email protected] with the message: INFO IBM-MAIN ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
