Before you can administer packet rules on your System i™ platform, ensure that you have the necessary access authorities. You must have *IOSYSCFG special authority in your user profile.
If you plan to administer packet rules from the QSECOFR user ID, or from a user ID of type, *SECOFR, or you have *ALLOBJ authority, you have the correct authority. If you do not have the correct user ID or *ALLOBJ authority, have authority to the following directories, files and QSYS user ID:
/QIBM/ProdData/OS400/TCPIP/PacketRules/Template4PacketRules.i3p /QIBM/ProdData/OS400/TCPIP/PacketRules/Template4PacketRules.txt /QIBM/ProdData/OS400/TCPIP/PacketRules/Template4PacketRules.tcpipml
/QIBM/UserData/OS400/TCPIP/PacketRules /QIBM/UserData/OS400/TCPIP/OpNavRules
/QIBM/UserData/OS400/TCPIP/OpNavRules/VPNPolicyFilters.i3p /QIBM/UserData/OS400/TCPIP/OpNavRulesPPPFilters.i3p
These are the default directories and files that the Packet Rules Editor uses. If you choose to store your files in directories other than those in the preceding list, you need authority to those directories.