REPOST: Re: Best way to administer a DB over the internet

From: kc <kc_news2000_at_yahoo.com>
Date: 25 Jan 2002 13:37:42 -0800
Message-ID: <9$--$%%%_$%%_-__$$_at_news.noc.cabal.int>


ron_at_santillano.net (warlord52) wrote in message news:<e18465ab.0201210632.528439bd_at_posting.google.com>...
> I am looking for information on administering Databases via the
> internet. Primarily I would like to use Enterprise Manager - But how
> is the rest configured. If anyone could provide me with some ideas or
> websites to check.
>
> Thanks in advance.
>
> Ron

Ron,

How critical is the database? Your remote control plan should reflect the business function/importance of the database. Maybe encrypted connections aren't needed. Maybe they are.

I would stay away from using OEM or other database graphical tool connecting to your server over the internet. I would approach it from the philosophy of first connecting to your office network or server, then using a tool locally to connect to the database. Think VPN if you really must use OEM to connect over the internet.  

SSH is the best as far as security. Try Putty (http://www.chiark.greenend.org.uk/~sgtatham/putty/) as the windows client to connect to Unix SSH machine.

You might want to try VNCtight http://www.tightvnc.com/ or WinVNC http://www.uk.research.att.com/vnc/. These tools work on Unix, Windows, even Mac clients. The server can be Unix or Windows. It is similar to PCanywhere with lesser functions. They are open source and free. Basically they give you graphical desktop or X-window access to the machine. You can then use DBA Studio, OEM, Tora (http://www.globecom.se/tora/), Toad, Instance Monitor, etc. on the server machine without opening port 1521 to the internet. My preference is keeping your TNSlistener hidden from the internet. VNC uses port 5900 by default. The client portion will fit on a diskette. I have fixed problems on my servers dialing in from the In-law's house using VNC. Pick a goooood password and only cut it on if you know you can't use SSH or VPN first.

PCanywhere is great for windows only connections at both ends. You can file transfer and encrypt the connection. Pcanywhere will require opening port 22, 5631 and 5632 (UDP) to traffic through the firewall. But since most Oracle is run on Unix this may not be an option for remote control.

Kevin

  • WAS CANCELLED BY =======: From: kc_news2000_at_yahoo.com (kc) Control: cancel <a20fe1ab.0201251337.773040d2_at_posting.google.com> Subject: cmsg cancel <a20fe1ab.0201251337.773040d2_at_posting.google.com> Date: Mon, 28 Jan 2002 02:34:45 GMT Message-ID: <cancel.a20fe1ab.0201251337.773040d2_at_posting.google.com> X-No-Archive: yes Newsgroups: microsoft.test,alt.flame.niggers,comp.databases.oracle.tools NNTP-Posting-Host: w088.z064003087.lax-ca.dsl.cnc.net 64.3.87.88 Lines: 1 Path: news.uni-stuttgart.de!news.belwue.de!news.uni-ulm.de!rz.uni-karlsruhe.de!blackbush.xlink.net!blackbush.de.kpnqwest.net!netnews.web.de!newsfeed01.sul.t-online.de!t-online.de!newsfeed.hanau.net!fr.clara.net!heighliner.fr.clara.net!news.stealth.net!msrtrans1!msrnewsc1!cppssbbsa01.microsoft.com!tkmsftngp01!tkmsftngp04!u&n&a&c&anceller Xref: news.uni-stuttgart.de control:40718163

This message was cancelled from within The Unacanceller's glorious new software, Lotus 1-2-3 For Rogue Cancellers. Received on Fri Jan 25 2002 - 22:37:42 CET

Original text of this message