Re: Keeping a DB from Phoning Home...

From: David Mann <dmann99_at_gmail.com>
Date: Thu, 12 Sep 2013 12:51:25 -0400
Message-ID: <CAGazuyXhzPqGU7Yu-u9UtY8hdH=OFuPxnXDyNXwKFTQQYxQUGQ_at_mail.gmail.com>

Thanks for the suggestions, I will push the networking angle more when I meet with the sysadmin. The biggest risk is probably from DB links which can be mitigated, but to be 100% sure looks like isolating it in a subnet or with firewall is the most reliable route. (Pun intended!) On Thursday, September 12, 2013, Martin Klier wrote:

> Hi David,
>
> I agree with Mark - but my first thought was: "Why not putting it behind
> a firewall, not allowing outgoing connections, and only allow the app
> server to connect in [to Port 1521 via TNS]?"
>
> Maybe easier to achieve than reconfiguring a legacy system to a new subnet.
>
> HTH
> Martin Klier
>
>
> Mark Bobak schrieb:
> > If you're not sure how to do that, you may want to have a chat with your
> > network engineering group. It should be pretty trivial to set up.
> >
>
> --
> Usn's IT Blog for Oracle and Linux
> http://www.usn-it.de
>
>

-- 
Dave Mann
General Geekery | www.brainio.us
Database Geekery | www.ba6.us | _at_ba6dotus | http://www.ba6.us/rss.xml


--
http://www.freelists.org/webpage/oracle-l

Received on Thu Sep 12 2013 - 18:51:25 CEST

This message: [ Message body ]
Next message: Austin Hackett: "Re: Use Netapp snapmirror to create DR for Oracle RAC with ASM"
Previous message: Mark Bobak: "Re: Keeping a DB from Phoning Home..."
Maybe in reply to: David Mann: "Keeping a DB from Phoning Home..."
Next in thread: gokulkumar.gopal_at_gmail.com: "Re: Keeping a DB from Phoning Home..."
Reply: gokulkumar.gopal_at_gmail.com: "Re: Keeping a DB from Phoning Home..."

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message