You can use Security Center to configure a security rules file to distinguish between inbound and outbound TCP dialogs and to differentiate access to ports on a TCP or UDP port basis.

Distinguishing between inbound and outbound dialogs makes it possible, for example, to allow all dialogs established by MCP applications to any IP address, but to prevent any dialog established from some IP addresses to MCP applications.

Differentiating between TCP and UDP ports is useful in the following type of situation. If access to ports 137 and 138 was previously restricted to some subsets of IP addresses, this would restrict access for both the TCP and UDP protocols. Access can now be restricted on a TCP or UDP port basis.

You can configure these features with the TCP Open (Active/Passive) and the Transport Protocol (TCP/UDP) attributes. These attributes have been added to the following screens:

The TCPIP SECURITY REPORT (18126) has been modified to add two new fields, TCP Open and Transport Protocol.

For further details on the rules file, refer to the MCP Security Overview and Implementation Guide. For further details on the modified TCPIP SECURITY REPORT, refer to the Networking Commands and Inquiries Help.