This topic provides information
for resolving several common problems that you may encounter when you install
your firewall. You may find it helpful to review the topic firewall error messages.
This topic provides a list of error messages, explanations of their meanings,
and how you should respond to each one.
- Client Web browser gets no response from the HTTP *ADMIN server
- If the HTTP *ADMIN server does not respond from your Web browser, look in
the *ADMIN server job log for error messages. If you have a message in
the job log, consult the help text for the message as a guide for resolving
the problem. See the IBM HTTP Server for AS/400 Webmaster's
Guide for more information about the *ADMIN server.
- Blank page appears in client Web browser
- If you receive a blank page in the client Web browser, install the most
current PTFs for the 5769-FW1 and 5769-DG1 products to correct the
problem.
- Selecting Configuration icon or Administration icon results in an error
message
- The firewall is installed, but whenever you select the Configuration or
Administration icon, the browser displays an error message. For more
information, see the topic Resolving
firewall configuration problems
- Firewall starts, but ends after a few minutes
- If you experience this problem, you may have multiple IP addresses
configured for the AS/400 system or the *INTERNAL LAN connection to the
firewall. This problem can occur when you reinstall the firewall one or
more times. To resolve this problem, remove the extra interfaces
(CFGTCP, option 1). Remove all but one interface for the line that
connects to the firewall (firewall-name00)
- Firewall network server description does not vary on
- If you receive an error message of CPD8FFF with a reason code of
X'0000001D' in your job log when you vary on the firewall NWSD, look
at the previous messages in the job log. If you have a message of
"TCP9503 File QATOCTCPIP in library QUSRSYS not available," someone is
probably using the CFGTCP command. You cannot vary on the NWSD while
someone is using the CFGTCP command.
To determine who, if anyone has a lock on the file, use the command
WRKOBJLCK OBJ(QUSRSYS/QATOCTCPIP) OBJTYPE(*FILE) to view the Object
Locks display. This display shows information about which files are
locked and which user profiles own the locks.
For more information about handling these and other firewall error
messages, see the topic resolving error
messages.
If these activities do not resolve your problems, you should try one of the
other available problem
determination and resolution techniques.