[Info-vax] TCP/IP on OpenVMS V8.4-L2
Stephen Hoffman
seaohveh at hoffmanlabs.invalid
Thu Jul 28 12:02:44 EDT 2022
On 2022-07-28 15:33:48 +0000, Single Stage to Orbit said:
> I have tried reading through the documentation for setting up TCP/IP on
> my AXP but it seems way too complicated for what I need it to do.
>
> I simply want to configure it to use DHCP to get the IP off my router,
> and configure SSH so I can access it from Linux, job done.
For configuration, @SYS$MANAGER:TCPIP$CONFIG.COM is the tool used, and
you will need some familiarity with IP networking to use it.
In my experience, OpenVMS isn't good at DHCP dynamic addressing in
general, and I'd tend to avoid that feature with OpenVMS.
Set your IP address to an IP outside the DHCP address pool and use
static addressing with no DHCP, or set the DHCP server to issue a
static address from within the DHCP address pool based on the OpenVMS
server MAC and set that same IP address on OpenVMS.
Servers aren't all that fond of DHCP dynamic addressing more generally
and that particularly around certificate-based connection security,
absent better DNS support (and shorter TTLs) than are usually found
with OpenVMS configurations.
Once you have the core components configured within TCP/IP Services,
ssh client and ssh server are switches to be enabled.
Getting ssh to work usually involves downgrading security to match that
expected by OpenVMS, assuming you don't have the OpenSSH kit.
Reposting from a few days ago:
https://groups.google.com/g/comp.os.vms/c/DhT_TWepPJ8/m/ReiPhF25CAAJ
This is a sanitized-for-publication version of the sethost bash shell
script I use to downgrade ssh security to connect into OpenVMS, or for
connections into an Integrity iLO.
I haven't installed the OpenSSH kit as yet, though that should address
most or all of the usual issues with ssh connectivity around encryption
and key exchange support; the reasons why connection security needs to
be downgraded.
I'll leave aside getting certificate-based passphrase-security going, for now.
Startup, shutdown, network configuration, certificate security,
software and patch kit installations and updates and kit-related
notifications and downloads, there are a number of inter-related areas
of server management that really need an overhaul within OpenVMS.
--
Pure Personal Opinion | HoffmanLabs LLC
More information about the Info-vax
mailing list