Oracle FAQ | Your Portal to the Oracle Knowledge Grid |
Home -> Community -> Usenet -> c.d.o.misc -> Re: How to restrict Oracle to my PC vs Internet
Oracle 9i, version 2, Windows XP Pro Sp1
I start two oracle services only:
1. OracleOraHom92CRDBSAC (the database)
2. OracleOraHom92TNSListener
Using Zone Alarm and the Enterprise Manager Console, I find that:
My computer name is 3CG7501
I named the service CRDBSAC.CG7501 because the Database Configuration
Wizard would not allow a domain name beginning with a number. There
is no domain controller (peer network).
I have imported the following HOSTS file for the network connection: (using network connection-> properties->TCP/IP Properties->General tab->Advanced button->WINS Tab->Import LMHOSTS button)
127.0.0.1 localhost 127.0.0.1 CRDBSAC.3CG7501 127.0.0.1 3CG7501
The HOST parameters in tsnames.ora look correct: # TNSNAMES.ORA Network Configuration File: C:\oracle\ora92\network\admin\tnsnames.ora # Generated by Oracle configuration tools.
CRDBSAC =
(DESCRIPTION =
(ADDRESS_LIST =
(ADDRESS = (PROTOCOL = TCP)(HOST = 3CG7501)(PORT = 1521))
)
(CONNECT_DATA =
(SERVER = DEDICATED)
(SERVICE_NAME = CRDBSAC.CG7501)
)
)
INST1_HTTP =
(DESCRIPTION =
(ADDRESS_LIST =
(ADDRESS = (PROTOCOL = TCP)(HOST = 3CG7501)(PORT = 1521))
)
(CONNECT_DATA =
(SERVER = SHARED)
(SERVICE_NAME = MODOSE)
(PRESENTATION = http://HRService)
)
)
EXTPROC_CONNECTION_DATA =
(DESCRIPTION =
(ADDRESS_LIST =
(ADDRESS = (PROTOCOL = IPC)(KEY = EXTPROC1))
)
(CONNECT_DATA =
(SID = PLSExtProc)
(PRESENTATION = RO)
)
)
CRDBSAC.CG7501 =
(DESCRIPTION =
(ADDRESS_LIST =
(ADDRESS = (PROTOCOL = TCP)(HOST = 3CG7501)(PORT = 1521))
)
(CONNECT_DATA =
(SID = CRDBSAC)
(SERVER = DEDICATED)
)
)
On Fri, 12 Dec 2003 09:18:44 -0800, Daniel Morgan <damorgan_at_x.washington.edu> wrote:
>Moritzio wrote: > >> Sorry, Oracle 9.2, Standard. >> >> On Wed, 10 Dec 2003 20:15:19 -0800, Daniel Morgan >> <damorgan_at_x.washington.edu> wrote: >> >> >>>Moritzio wrote: >>> >>> >>>>I'm just starting to develop on Oracle. I just finished the first VB >>>>sample program that connects to the database. During that test, I >>>>noticed that several Oracle tools and services are dependent having >>>>access to the internet, even though the database is on my PC. Zone >>>>Alarm reports that the several java programs, Listener and Agent >>>>services want access to the internet, not just my trusted LAN. Since >>>>all development and testing will be on the internal LAN, I want to >>>>restrict these programs from accessing or acting as server on the >>>>internet. If I use Zonealarm to enforce this requirement, agent and >>>>listener services fail. I have to allow them access to local and >>>>remote ips or I cannot connect to the database on my own machine. >>>> >>>>Is there a way I can be more restrictive? >>>> >>>>-Mo >>>> >>> >>>No Oracle product/version information. What is it tonight? You want >>>answers and you think all versions of Oracle are the same? >>> >>>Are we supposed to guess what you have? > >There is nothing in the 9.2 database that cares whether you are attached >to the internet: Not even the Apache server. You are going to need to be >very specific as to what you are doing as whatever it is it has nothing >to do with the database itself.Received on Fri Dec 12 2003 - 19:11:26 CST