Loading...

Blocking Unauthorized CommCell Session Connections

When a remote client is force-deleted from the CommServe, the services for that client remain active. Such clients can still initiate session connections to other CommCell components. Communications from such unauthorized clients can adversely affect the performance of the software, especially if they grow in number. CommCell clients can be configured to blacklist and block any such connections using session blacklisting.

With session blacklisting, a CommCell validates every incoming connection, and if an unauthorized connection is identified, the IP address of the client initiating the session is added to a session blacklist. Any subsequent connection from the blacklisted client is immediately denied without verification. This list is dynamically created on each client. Optionally you can also record the list of such blacklisted clients in a log file for later reference, to be used to review the list of clients denied connection through blacklisting. The log file is stored in Software_Installation_Path/Log Files/blacklist.log.

The following additional settings control the blocking of unauthorized CommCell session connections:

To enable blacklisting and blacklist logging, add the additional settings to the CommServe computer.

Procedure

  1. Log on to your CommCell Console using administrative credentials.
  2. In the CommCell Browser, right-click the CommServe and click Properties.
  3. In the CommCell Properties dialog box, click the Additional Settings tab.
  4. Add the nEnableSessionBlacklist additional setting:
    1. Click Add.

      The Add Additional Settings dialog box appears.

    2. In the Name box, type nEnableSessionBlacklist. The Category and Type details automatically populate.

      If you prefer, you can click Lookup and search for the additional setting using the Find box.

    3. In the Value box, enter 1.
    4. Click OK.
  5. Add the nEnableSessionBlacklist additional setting:
    1. Click Add.

      The Add Additional Settings dialog box appears.

    2. In the Name box, type nEnableSessionBlacklistLogging. The Category and Type details automatically populate.

      If you prefer, you can click Lookup and search for the additional setting using the Find box.

    3. In the Value box, enter 1.
    4. Click OK.
  6. Click OK to close the CommCell Properties dialog box.