Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Usenet -> c.d.o.misc -> Oracle and Firewalls

Oracle and Firewalls

From: Wayne Hammond <whammond_at_oregonvos.net>
Date: Sat, 09 Jan 1999 18:57:50 -0800
Message-ID: <IGUl2.16109$n4.122837616@WReNphoon2> 





We are using Firewall-1 in front of multiple Oracle databases on Solaris
servers.  All works just fine.



However, there is an issue if you use multi-threaded server.  The initial
connection is made on the port specified in the tnsnames.ora file.  Once,
the connection has been initially completed, mts drops and re-establishes
the connection on an arbitary high tcp port (above 1024).  If you don't
account for this in your firewall policy, these connections will be dropped
when you have to recompile and install new policies.



Dedicated server connections are unaffected.



Oracle support does have a paper that explains how to configure mts
to reconnect on specific high ports.  This will allow you to reduce the
size of the hole you must allow through your firewall.





   -**** Posted from remarQ, Discussions Start Here(tm) ****-
http://www.remarq.com/ - Host to the the World's Discussions & Usenet
Received on Sat Jan 09 1999 - 20:57:50 CST












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US