Mark, That did the trick. We can now SYNC or ENCRYPT from the zLINUX EKM server.
Thanks for your assistance, Ray Waters -----Original Message----- From: Linux on 390 Port [mailto:[email protected]] On Behalf Of Mark Post Sent: Wednesday, February 17, 2010 4:19 PM To: [email protected] Subject: Re: IBM Encryption Key Manager with zLINUX >>> On 2/17/2010 at 03:47 PM, Ray Waters <[email protected]> wrote: > Any Ideas as to what I am missing? > > On VM user LINUXEKM, I see the C06 tape controller(172.16.28.25) is > contacting LINUXEKM(172.16.28.63) > SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC= SRC=172.16.28.25 DST=172.16.28.63 > LEN=44 > TOS=0x00 PREC=0x00 TTL=59 ID=22745 DF PROTO=TCP SPT=52036 DPT=3801 > WINDOW=65535 > RES=0x00 SYN URGP=0 OPT (020405B4) > SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC= SRC=172.16.28.25 DST=172.16.28.63 > LEN=44 > TOS=0x00 PREC=0x00 TTL=59 ID=22755 PROTO=TCP SPT=52036 DPT=3801 > WINDOW=65535 RE > S=0x00 SYN URGP=0 OPT (020405B4) > SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC= SRC=172.16.28.25 DST=172.16.28.63 > LEN=44 > TOS=0x00 PREC=0x00 TTL=59 ID=22765 PROTO=TCP SPT=52036 DPT=3801 > WINDOW=65535 RE > S=0x00 SYN URGP=0 OPT (020405B4) > SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC= SRC=172.16.28.25 DST=172.16.28.63 > LEN=44 > TOS=0x00 PREC=0x00 TTL=59 ID=22780 DF PROTO=TCP SPT=52053 DPT=3801 > WINDOW=65535 > RES=0x00 SYN URGP=0 OPT (020405B4) > SFW2-INext-DROP-DEFLT IN=eth0 OUT= MAC= SRC=172.16.28.25 DST=172.16.28.63 > LEN=44 > TOS=0x00 PREC=0x00 TTL=59 ID=22783 DF PROTO=TCP SPT=52053 DPT=3801 > WINDOW=65535 > RES=0x00 SYN URGP=0 OPT (020405B4) This is your friendly Linux kernel firewall telling you that it is dropping packets from 172.16.28.25 that are destined for port 3801 on 172.16.28.63. I.e., the sender is talking, but the receiver isn't listening. You'll need to open port 3801 via YaST -> Security and Users -> Firewall -> Allowed Services. Mark Post ---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 NOTICE: This e-mail is intended solely for the use of the individual to whom it is addressed and may contain information that is privileged, confidential or otherwise exempt from disclosure. If the reader of this e-mail is not the intended recipient or the employee or agent responsible for delivering the message to the intended recipient, you are hereby notified that any dissemination, distribution, or copying of this communication is strictly prohibited. If you have received this communication in error, please immediately notify us by replying to the original message at the listed email address. Thank You. ---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390
