Hiding old HP server behind proxy/firewall

We have an old HP server which is running a legacy application.    Every now and then the network interface will totally freeze.  Our support provider says it is because of stray traffic or somebody running a scan on the IP address.   Running any kind of network discovery tools or port mapper against the server will cause the interface to freeze.

We are careful about what we run against it but now and then corporate submits a scan looking for unauthorized computers/software and kills the interface.  

It was suggested that we place it behind a firewall / proxy and block all but the required ports to see if this would help.  

Has anyone tried anything like this?   It would be great to place something inline so we would not have to change any IP addresses.
qvfpsAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

giltjrCommented:
What OS is this server running?
0
qvfpsAuthor Commented:
I think it is HP-UX
0
giltjrCommented:
HP-UX should have iptables, which you can setup to only allow the traffic you need in and out and block all other traffic.  

This may be easier to do instead of setting up another box to sit in front of the HP-UX box.
0
Challenges in Government Cyber Security

Has cyber security been a challenge in your government organization? Are you looking to improve your government's network security? Learn more about how to improve your government organization's security by viewing our on-demand webinar!

qvfpsAuthor Commented:
I would have to check.   It is sort of a black box we don't touch and the support company has just said don't run scans against that IP.
0
qvfpsAuthor Commented:
It is running MPE\IX
0
giltjrCommented:
Oh man.   Umm, you know the last time I worked with a MPE system it didn't  have TCP/IP.  We were running HP-3000/44's, I think we were running MPE-V.

Get a cheap PC, two NIC's, Linux and learn iptables.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Networking

From novice to tech pro — start learning today.