Subject: Re: osa & tcpip security
From: James M (jlm01801@gmail.com)
Date: Fri Nov 13 2009 - 14:57:13 EST
> Seems somebody might have a misconception as to what the OSA > actually is. Is your local network behind a firewall? If so, there is no > difference between connecting the mainframe to your local network via OSA or > via physical CTCA. I do have a firewall. But on the mainframe is a collection of different company's thus the worry about one company seeing traffic from another on the osa. > Also if you're talking about a virtual CTC connection > between VM TCP/IP and it's guests, or an IOCP cross-LPAR CTC from one Escon > port to another Escon port, then I say this is even LESS secure because you > have one TCP/IP stack on the mainframe having to relay traffic to another > TCP/IP stack on the same mainframe over these CTC connections. Thus, now > you have twice the exposure of the same data within a single operating > environment (VM or LPAR). It's an escon ctc and wouldn't a dedicated ctc device be more secure than sharing a osa device? -Jim > >
This archive was generated by hypermail 2b25 : Sun Nov 22 2009 - 16:20:07 EST