User Tools

Site Tools


test

This is an old revision of the document!


UC4 Firewall Change Procedure

This change procedure specifically addresses requests for access to the UC4 application servers via the “CP” ports, which allows both Agents and Dialog Clients access to the application.

To modify the ACL for the application servers:

  • Edit this wiki page and modify the custscope string by appending new IP address(es) with a short-form netmask, delimited by commas
  • Select the text of the entire code block (ensure the last new line is included) and copy it to the clipboard
  • Open a Remote Desktop session to hosts u1.cuit.columbia.edu and u2.cuit.columbia.edu
  • Open a command prompt with administrative privileges (right-click to open as Admin)
  • Paste the code into the command prompt

<code> set custscope=128.59.29.228/32,128.59.29.229/32,128.59.29.236/32,128.59.29.237/32,128.59.53.36/32,128.59.53.175/32,128.59.53.240/32,128.59.54.135/32,128.59.54.136/32,128.59.54.137/32,128.59.54.142/32,128.59.59.73/32,128.59.59.189/32,128.59.59.190/32,128.59.59.193/32,128.59.59.194/32,128.59.62.62/32,128.59.62.80/32,128.59.62.102/32,128.59.62.103/32,128.59.62.107/32,128.59.62.108/32,128.59.62.109/32,128.59.62.110/32,128.59.62.111/32,128.59.213.0/24,128.59.214.0/24,128.59.223.0/24,128.59.237.0/24,128.59.242.30/32,156.145.13.161/32,160.39.164.157/32,128.59.54.35/32,128.59.54.71/32,128.59.54.85/32,128.59.54.35/32,128.59.54.71/32,128.59.54.142/32,128.59.62.137/32,128.59.62.138/32

rem Quick and dirty datetime string rem replace leading space with “0”, remove “:”, strip milliseconds from time set mytime=%time: =0% set mytime=%mytime::=% set mytime=%mytime:~0,-3% rem set datetime var to re-ordered date with time appended set datetime=%date:~12date:~4,-8date:~7,-5%%mytime%

rem Dump current rules to log file netsh advfirewall firewall show rule “UC4 CP2217”

test.1311760255.txt.gz · Last modified: 2011/07/27 05:50 by ben