On Friday, 04/30/2010 at 12:29 EDT, "Martin, Terry R. (CMS/CTR) (CTR)" <[email protected]> wrote: > Thanks a bunch Rich for the information! I think the Firewall guys think > if we use a Hipersocket than you do not need the Firewall rules. But I > told them that even if Hipersockets are used you would still need > Firewall rules if required.
Yes, and that's why I said you can't use HiperSockets to connect LPARs in different zones: No firewall. Any time data transits to a different zone, it goes thru a firewall. It is the firewalls that create the zones. Note that "firewall" and "packet filter" are not the same. A host may have a resident IPS/IDS solution, but it isn't a firewall. Firewalls are stand-alone devices. Alan Altmark z/VM Development IBM Endicott
