Protecting the RRSF listener port

Protect the RRSF listener port so that only the RACF® subsystem address space has access to it. A default port number of 18136 has been reserved with the Internet Assigned Numbers Authority (IANA) for the RRSF listener port. Define the RRSF port in the TCP/IP profile, and assign it a name using the SAF keyword. For information about protecting ports, see the section on controlling access to particular ports in z/OS® Communications Server: IP Configuration Guide. For information about the PORT command, see z/OS Communications Server: IP Configuration Reference. For example, to assign the name RRSF to the listener port, you might create the following entry:
PORT 18136 TCP * SAF RRSF ; Listener port for RACF Remote Sharing
To protect access to the port, the security administrator creates a profile in the SERVAUTH class. For more information, see Establishing RACF security for RRSF TCP/IP connections in z/OS Security Server RACF Security Administrator's Guide.