Issue
Is there a way to use firewalls to stop routing tables from being delivered? For example, can you shut down port 50069 to prevent routing tables from updating while you cleared device routing tables?
Product Line
TAC INET
Environment
I/NET Seven
Network with system-wide ethernet
Cause
There are bogus entries in the Routing tables in the PCs and NPRs in the I/NET system.
Resolution
Blocking the port will certainly stop I/O servers and NPRs from sharing their routing tables. The real problem, though, is in getting all devices cleared before you open the port back up.
The following would be a reasonable approach to clearing a routing table system from a desk, if the customer does not want to go to each location.
- Ask the IT department to block port 50069 for each device on the network
- Telnet into each NPR or Xenta 527 and PC to clear the routing table using the DELALL command
- Correct Reference Host settings
- Ask the IT department to open port 50069 to each device on the network after you have cleared all sites.
Please note that all of the devices have to be cleared before the firewall is taken down. If you have one of the devices offline at the time of the cleaning, you could re-populate the deleted routing table again.
Another option would be to firewall port 50069 between segments of the network to ensure only part of I/NET was visible to specific regions.
