You must run a separate instance of TFTP for each security
label you need to support.
Before you begin
Plan to run each instance of TFTP under a different job name
assigned to a user ID with the appropriate security label. Understand
that you can run multiple TFTP servers on the same unrestricted stack.
Procedure
Perform the following steps to run a separate instance
of TFTP for each security label:
- Define a VIPA in a network security zone with the appropriate
security label for each server on that stack.
- Perform one of the following actions:
- With a unique port number for each entry, use the PORT reservation
statement in the TCPIP profile to override the bind address of each
job name to the appropriate VIPA and port number.
- Instead of using the PORT reservation statement and specifying
the port using -p in the TFTP start procedure, use the -b TFTP start
option to specify the IP address to which this instance of TFTP should
bind. If the -b start option is used, each instance of TFTP can use
the same well-known port (69).
- Ensure the procedure for each instance of TFTP specifies
on which port or IP address it will run.
Results
You know you are done when you have established an environment
where separate instances of TFTP can use the same well-known port
(if the -b start option was used.)