Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Usenet -> c.d.o.server -> Re: database in firewall

Re: database in firewall

From: FM <fabrizio.magni_at_mycontinent.com>
Date: Sun, 19 Sep 2004 18:36:08 GMT
Message-ID: <414DD197.3080603@mycontinent.com> 





Sybrand Bakker wrote:



> On Sun, 19 Sep 2004 12:51:45 GMT, FM <fabrizio.magni_at_mycontinent.com>

> wrote:

> 

> 


>>*Not true*
>>
>>On unix system the socket is always opened on the listening port.
>>Only windows systems need use_shared_sockets.
>>
>>Here are an example of two systems of mine: one aix, the other linux.
>>
>>Only the client side use different ports. T




> 

> 

> You seem to contradict yourself. Run a sqlnet trace on level 16 on

> your client, notice the word 'redirected' in the trace, retract your

> statement and apologize. The listener is a broker only, actual

> communication will always take place on a *different* port.

> The listener port is not redirected but there is also no communication

> over the port.

> 

> 

> 

> 

> 

> --

> Sybrand Bakker, Senior Oracle DBA




 From my point of you I didn't have to make this test but you asked my 
apologize (in a really rude way) so here you are.



My client is a linux machine suse linux enterprise server 8, with 
SQL*Plus: Release 9.0.1.4.0 installed.


I enabled sqltrace level 16 setting in my sqlnet.ora (client side) the 
following lines:


trace_level_client  =  16
trace_file_client = client
trace_directory_client = /tmp





Ip of the client is: 192.168.24.21



Server is a suse linux enterprise edition 7 mounting one node of a RAC 
cluster (9.2.0.4). Ip is 192.168.25.189.



I connect from client to server and traced from oracle while taking 
information with unix commands.



Here the results:



orasuse:~ # lsof -i -n |grep "192.168.24.21"
sshd      17263   root    5u  IPv6 3447859       TCP 
192.168.25.189:ssh->192.168.24.21:59270 (ESTABLISHED)
oracle    17357 oracle   11u  IPv4 3448080       TCP 
192.168.25.189:ncube-lm->192.168.24.21:59271 (ESTABLISHED)




orasuse:~ # grep "ncube-lm" /etc/services

ncube-lm        1521/tcp                        # nCube License Manager
ncube-lm        1521/udp                        # nCube License Manager


orasuse:~ # ps -fe|grep 17357
oracle   17357     1  0 20:15 ?        00:00:00 oracleTESTRAC1 (LOCAL=NO)

orasuse:~ # netstat -an|grep "192.168.24.21"
tcp        0      0 192.168.25.189:1521     192.168.24.21:59271 


ESTABLISHED



As you can see all the connection are on port 1521. The server doesn't 
"redirect" anything from operating system point of you.



Now I checked the trace file:



-rw-r--r--    1 oracle   dba         90471 2004-09-19 20:19 client.trc
oracle_at_pain:/tmp> grep -i redirect client.trc
oracle_at_pain:/tmp>



Nothing.



I read the trace file (quickly) but if you wish I can send it to you.



You'll see that, as unix operating system theory claims, only the client 
port is "negotiated". The server side is fixed (same port as the listener).



I believe you are confusing server with client.



Still your post stay rude (as your reply to Eberhard).



Regards


-- 

Fabrizio Magni

fabrizio.magni_at_mycontinent.com

replace mycontinent with europe


Received on Sun Sep 19 2004 - 13:36:08 CDT












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US