H.9 Disabling A Secondary Network Interface For Audit Vault Server

Use this procedure to disable the configured secondary network interface card for Audit Vault Server.

Note:

The secondary network interface card cannot be disabled temporarily. However, it is possible to restrict access to the services running on the network interface card by setting a blank string or mark disabled for the keys SECONDARY_NIC_[N]_SSH and SECONDARY_NIC_[N]_AGENT. See sections Enabling SSH On A Secondary Network Interface Card For Audit Vault Server and Enabling Agent Connectivity On Secondary NICs for Audit Vault Server for similar information.

To disable a secondary Network Interface, follow this procedure:

Execute the following command to open the configuration file:
vi /usr/local/dbfw/etc/dbfw.conf
Remove all keys from the file beginning SECONDARY_NIC.
Execute the following command:
/usr/local/dbfw/bin/priv/configure-networking

Execute the commands listed in the table below depending on configuration:

Configuration Commands

Configuration	Commands
SECONDARY_NIC_[N]_AGENT	`/etc/init.d/dbfwlistener restart`
SECONDARY_NIC_[N]_SSH	`/usr/local/dbfw/etc/privileged-migrations/ssh-sshd-conf.rb` `/etc/init.d/sshd reload`

SECONDARY_NIC_[N]_AGENT

/etc/init.d/dbfwlistener restart

SECONDARY_NIC_[N]_SSH

/usr/local/dbfw/etc/privileged-migrations/ssh-sshd-conf.rb

/etc/init.d/sshd reload