| Oracle FAQ | Your Portal to the Oracle Knowledge Grid | |
 |
 | |||
| Oracle FAQ | Your Portal to the Oracle Knowledge Grid | |
|
| |||
Home -> Community -> Usenet -> c.d.o.server -> Re: sqlnet and firewall
Jim,
I've got a white paper from '95 that mentions something about Oracle producing a firewall proxy server....but I haven't come across it. The part# is Part C10451 'SQL*Net and Firewalls'.
tnsping will work fine to prove you can reach your database, but rather link doing an ip ping (ICMP packet), doesn't prove anything else.
I'm aware that Oracle will try and use the same port# for the client connection as the listener, but that doesn't seem to happen on NT. Instead it spawns another dedicated server process and obtains a new ip port# to service the request.
So you end up with lots of possible port# having to be allowed via the firewall, which won't make your network guys happy.
I'm going to have a play with tunneling the named pipes driver, just to see if that remains constant. I'm assuming your clients are ms-windows based.
Chris
Jim Kennedy wrote:
>
> Anyone know how to access SQL net through a firewall?
> Scenario:
> Oracle on NT inside with an address say 10.10.10.2
> and a fire wall makes that address appear as 200.200.200.5 to the outside
> world. tnsping80 works fine, but not a connection.
> It looks like the reply on a connection redirects to another port and sends
> the address back (and the firewall does not catch the 10.10.10.2 and
> translate it to 200.200.200.5)
> Ip addresses have been changed to protect the innocent.
> Jim
Received on Tue Feb 16 1999 - 02:56:21 CST
 |
 |