Checking for active filter rules

Your network communications might be failing because IP packet filters are stopping your incoming or outgoing data. You can find out if filter rules are limiting your communication.

Packet filter rules are designed to protect a network by filtering packets according to rules that the network administrator defines. Packet rules might have been created on either your system or the destination system, and the packet rules might filter data that is incoming or outgoing. Rules might have also been defined on one or more intermediate routers.

To find out whether you have active filter rules on your system, follow these steps:

1. In iSeries™ Navigator, expand your system > Network > IP policies > Packet rules. If the right pane is empty, then your system is not currently using packet rules. If the right pane contains a list of interfaces, then proceed with the next step.

2. Select the interface that you suspect contains the active filter rules.

3. View the list of active packet rules in the right pane. Click Help to find out how to edit and work with packet rules.

To remove active filters on the system, type RMVTCPTBL *ALL (Remove TCP/IP Table) at the command line. This command also causes virtual private networking (*VPN) tunnels to fail, so use this command with caution.

To find out whether filter rules are active on the destination system, call the network administrator at that location.

Parent topic:

Related concepts
IP filtering and network address translation