Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Usenet -> c.d.o.server -> Fixing oracle ports on NT

Fixing oracle ports on NT

From: Jimmy Tan <jimmytan007_at_yahoo.com>
Date: Wed, 08 Sep 1999 03:12:16 GMT
Message-ID: <37d5d2a1.392032432@news.pacific.net.sg>

Hi,

Please pardon my ignorance, I am a newbie to Oracle server and SQLNet.

So this problem will probably sound simple to some of you.

I run Oracle Server (pre-8.X) on windows NT 4.0. If assuming under unique circumstances and having valid reasons, I do not have a firewall in place between the SQLNet client and the oracle server, and the only filtering device I have is a router in between. I understand that Oracle uses ports 1521 and 1526. I also understand from the newsgroups and related documentation that the Oracle server will spawn off another port to handle the request after receiving a connection at port 1521. Subsequently the client connects to this new port. Please correct me if I'm wrong.

My concern, as you can probably guess by now, is in the security aspects of behaviour. That if I were to allow a range of ports on the Oracle Server for the client to access, it opens up the oracle server to potential attacks at those range of ports.

Unfortunately I cannot apply a SQLNet proxy in between, nor upgrade to Oracle 8.X, which I was told can fixate the service ports at certain ports. I only have a few clients with low volume of access, so single-threaded access is alright. I was told that it is possible to fixate the service ports to 1521 if the oracle server is configured to be single-threaded, and by specifying the static service ports in the configuration files. Subsequently, I can apply filter rules on the router to limit client access to port 1521.

Do you know how the Oracle server (NT) can be setup with a fixed service port ? (Would really appreciate if you can provide the oracle configuration files for this to work). TIA.

Best Regards,
--
JIMMY TAN Received on Tue Sep 07 1999 - 22:12:16 CDT

Original text of this message

HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US