Oracle FAQ | Your Portal to the Oracle Knowledge Grid |
Home -> Community -> Usenet -> c.d.o.server -> Re: database in firewall
Sybrand Bakker wrote:
> On Sun, 19 Sep 2004 12:51:45 GMT, FM <fabrizio.magni_at_mycontinent.com>
> wrote:
>
>
>>*Not true* >> >>On unix system the socket is always opened on the listening port. >>Only windows systems need use_shared_sockets. >> >>Here are an example of two systems of mine: one aix, the other linux. >> >>Only the client side use different ports. T
From my point of you I didn't have to make this test but you asked my apologize (in a really rude way) so here you are.
My client is a linux machine suse linux enterprise server 8, with
SQL*Plus: Release 9.0.1.4.0 installed.
I enabled sqltrace level 16 setting in my sqlnet.ora (client side) the
following lines:
trace_level_client = 16 trace_file_client = client trace_directory_client = /tmp
Ip of the client is: 192.168.24.21
Server is a suse linux enterprise edition 7 mounting one node of a RAC cluster (9.2.0.4). Ip is 192.168.25.189.
I connect from client to server and traced from oracle while taking information with unix commands.
Here the results:
orasuse:~ # lsof -i -n |grep "192.168.24.21" sshd 17263 root 5u IPv6 3447859 TCP 192.168.25.189:ssh->192.168.24.21:59270 (ESTABLISHED) oracle 17357 oracle 11u IPv4 3448080 TCP 192.168.25.189:ncube-lm->192.168.24.21:59271 (ESTABLISHED)
orasuse:~ # grep "ncube-lm" /etc/services
ncube-lm 1521/tcp # nCube License Manager ncube-lm 1521/udp # nCube License Manager orasuse:~ # ps -fe|grep 17357 oracle 17357 1 0 20:15 ? 00:00:00 oracleTESTRAC1 (LOCAL=NO) orasuse:~ # netstat -an|grep "192.168.24.21" tcp 0 0 192.168.25.189:1521 192.168.24.21:59271ESTABLISHED As you can see all the connection are on port 1521. The server doesn't "redirect" anything from operating system point of you.
Now I checked the trace file:
-rw-r--r-- 1 oracle dba 90471 2004-09-19 20:19 client.trc oracle_at_pain:/tmp> grep -i redirect client.trc oracle_at_pain:/tmp>
Nothing.
I read the trace file (quickly) but if you wish I can send it to you.
You'll see that, as unix operating system theory claims, only the client port is "negotiated". The server side is fixed (same port as the listener).
I believe you are confusing server with client.
Still your post stay rude (as your reply to Eberhard).
Regards
-- Fabrizio Magni fabrizio.magni_at_mycontinent.com replace mycontinent with europeReceived on Sun Sep 19 2004 - 13:36:08 CDT