Is there a location on the IPSO file system where site-specific commands may be executed at bootup?
On disk-based platforms, /etc/rc.local is a Bourne shell script that is executed in startup. Any commands you wish to run on boot should be put in this file. You may need to add a sleep command to the beginning of this script as interfaces and other devices may not be up at the time this file is executed.
On flash-based (or hybrid) systems, /etc/rc.flash is similar to /etc/rc.local except for two critical differences:
You cannot put Check Point spceific commands in rc.flash as the Check Point packages won't even be unpacked when rc.flash is run.
rc.flash is part of the Operating System image, whereas rc.local is not. This means that rc.flash will need to be backed up before an IPSO upgrade and restored after the upgrade is complete, whereas rc.local is independent from the OS image.
To modify /etc/rc.flash:
ipso[admin]# mount -uw /
ipso[admin]# vi /etc/rc.flash
ipso[admin]# mount -ur /
The system will execute /etc/rc.local as a bourne shell script, if it exists. Edit the /etc/rc.local and put your commands in this file. Essentially, any command you can execute when logged into a Nokia IP Security Platform can be placed in this file. You may need to add a sleep command to the beginning of this script as interfaces and other devices may not be up at the time this file is executed.
Note that /etc/rc.local is indepdendent of the OS image that is running and will not be touched on a system upgrade.
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.