Question & Answer
Question
I want to support both secure and non-secure TN3270E traffic, but I do not want the same TN3270E port to support both secure and non-secure traffic. Can I use Telnet multiple port support to support both secure and non-secure TN3270E traffic?
Answer
The IP Configuration Guide points out:
"You can use Telnet multiple port support to enable a combination of secure and non-secure traffic.
"To use multiple port support, you define separate ports; one port is dedicated to non-secure traffic and another port is dedicated to secure traffic. Ports with the designation SECUREPORT or TTLSPORT can be secure.
"Intranet clients are not required to be secure. Intranet clients connect to the BASIC port.
"All clients connecting from the Internet are required to be secure; these clients use the SECUREPORT."
The PORT parameter statement in the TELNETPARMS block defines the port that Telnet listens on for non-secure (basic) connection requests.
The SECUREPORT parameter statement in the TELNETPARMS block defines the port that Telnet listens on for secure connection requests from a client using the SSL protocol.
The following Telnet profile statements define two ports with the following characteristics:
• Port 23 allows only basic connections.
• Port 992 allows only secure connections. No client authentication is requested.
TELNETPARMS ; basic port does not support secure connections
Port 23
ENDTELNETPARMS
TELNETPARMS ; port that allows only secure connections
SECUREPORT 992 ; no client authentication requested
KEYRING hfs /usr/keyring/tcp1.kdb ; keyring used by all SECUREPORTs
ENDTELNETPARMS ; any supported encryption algorithm
BEGINVTAM
Port 992 23
... ;Mapping statements
;no PARMSGROUP defined for these ports
;TELNETPARMS definitions used for all connections
ENDVTAM
Product Synonym
ZOSCS COMMSERVER
Was this topic helpful?
Document Information
Modified date:
28 August 2015
UID
dwa1210914