Question & Answer
Question
Should the Defense Manager Daemon (DMD) always remain active even though NO rules are defined or should it be started and IPSec rules issued only when it is needed? Is there an overhead incurred if it remains active 24x7?
Answer
For the defensive filtering function, DMD can be up 24x7 with very little overhead incurred. DMD monitors the stacks to be aware of which ones are up but does very little processing if defensive filters are not being added/updated/deleted. So you should be able to have DMD active 24x7 with minimal overhead.
[{"Product":{"code":"SSSN3L","label":"z\/OS Communications Server"},"Business Unit":{"code":"BU054","label":"Systems w\/TPS"},"Component":"--","Platform":[{"code":"PF035","label":"z\/OS"}],"Version":"1.11;1.12;1.13;2.1;2.2","Edition":"","Line of Business":{"code":"LOB35","label":"Mainframe SW"}}]
Was this topic helpful?
Document Information
Modified date:
15 June 2018
UID
swg21618157