From ceb454107b8d876c733280862d723e36fb5cfa8e Mon Sep 17 00:00:00 2001
From: moshix <moshix@gmail.com>
Date: Fri, 9 Jun 2023 10:32:42 -0500
Subject: [PATCH] Create PROF.TCPIP

this recipee blocks all traffic except permitted.
---
 PROF.TCPIP | 12 ++++++++++++
 1 file changed, 12 insertions(+)
 create mode 100644 PROF.TCPIP

diff --git a/PROF.TCPIP b/PROF.TCPIP
new file mode 100644
index 0000000..c44022f
--- /dev/null
+++ b/PROF.TCPIP
@@ -0,0 +1,12 @@
+;IPSEC FILTERING EXAMPLE
+ ; 
+ ;  ADDED IPSECURITY TO IPCONFIG LINE BELOW FOR FILTERING 
+ITRACE OFF 
+IPCONFIG NODATAGRAMFWD IPSECURITY 
+; 
+IPSEC 
+;      IP OF Z/OS HOST  IP OF ALLOWED FOREIGN IP
+ IPSECR 562.228.231.252 95.59.95.45/29 PROTO TCP SRCPORT *  DESTPORT * 
+ ;  ALLOW ALL PINGS
+ IPSECR * * PROTO ICMP ROUTING EITHER 
+ENDIPSEC