Should the Defense Manager Daemon (DMD) always remain active even though NO rules are defined or should it be started and IPSec rules issued only when it is needed? Is there an overhead incurred if it
remains up 24/7?
For the defensive filtering function, DMD can be up 24x7, not just started when you want to add a defensive filter. DMD monitors the stacks to be aware of which ones are up but does very little processing if defensive filters are not being added/updated/deleted. So you should be able to have DMD up 24x7 with minimal overhead.
Rate this page:
Copyright and trademark information
IBM, the IBM logo and ibm.com are trademarks of International Business Machines Corp., registered in many jurisdictions worldwide. Other product and service names might be trademarks of IBM or other companies. A current list of IBM trademarks is available on the Web at "Copyright and trademark information" at www.ibm.com/legal/copytrade.shtml.