From oracle-l-bounce@freelists.org Tue Aug 30 17:16:24 2005 Return-Path: Received: from air891.startdedicated.com (root@localhost) by orafaq.com (8.12.10/8.12.10) with ESMTP id j7UMGNAK013275 for ; Tue, 30 Aug 2005 17:16:23 -0500 X-ClientAddr: 206.53.239.180 Received: from turing.freelists.org (freelists-180.iquest.net [206.53.239.180]) by air891.startdedicated.com (8.12.10/8.12.10) with ESMTP id j7UMGKIP013262 for ; Tue, 30 Aug 2005 17:16:20 -0500 Received: from localhost (localhost [127.0.0.1]) by turing.freelists.org (Avenir Technologies Mail Multiplex) with ESMTP id E93CB1E7D5B; Tue, 30 Aug 2005 17:16:15 -0500 (EST) Received: from turing.freelists.org ([127.0.0.1]) by localhost (turing [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 25701-03; Tue, 30 Aug 2005 17:16:15 -0500 (EST) Received: from turing (localhost [127.0.0.1]) by turing.freelists.org (Avenir Technologies Mail Multiplex) with ESMTP id 6DEB01E7DF9; Tue, 30 Aug 2005 17:16:15 -0500 (EST) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=Z+CTXvd+yncyXcM8SQT3Z+jI63N8qmtwuDLM0P0eRwXgWUKgA1V8YXjQeuPZYzurKNuGo/iQsGz2LuQdPuKjgKETgoAclwcEWQf50/+Zm3AIqszH18HjMR5bib48rcozhutmeIlRkklVKLpVzDVi9zz6Tv/7lZ1k9jIw9x8mOqI= Message-ID: Date: Wed, 31 Aug 2005 00:14:25 +0200 From: Mario Cariggi To: bdbafh@gmail.com Subject: Re: session timeout in 10g Cc: cstephens16@gmail.com, Oracle-L Freelists In-Reply-To: <910046b405083013586bb78ee6@mail.gmail.com> Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit X-MIME-Autoconverted: from quoted-printable to 8bit by Ecartis Content-Disposition: inline References: <910046b405083008082f817657@mail.gmail.com> <910046b405083013586bb78ee6@mail.gmail.com> X-archive-position: 24776 X-ecartis-version: Ecartis v1.0.0 Sender: oracle-l-bounce@freelists.org Errors-To: oracle-l-bounce@freelists.org X-original-sender: gelfand.transform@gmail.com Precedence: normal Reply-To: gelfand.transform@gmail.com X-list: oracle-l X-Virus-Scanned: by amavisd-new-20030616-p9 (Debian) at avenirtech.net X-mailscan-MailScanner-Information: Please contact the ISP for more information X-mailscan-MailScanner: Found to be clean X-MailScanner-From: oracle-l-bounce@freelists.org X-Spam-Level: X-Spam-Checker-Version: SpamAssassin 2.63 (2004-01-11) on air891.startdedicated.com X-Spam-Status: No, hits=-4.4 required=5.0 tests=AWL,BAYES_00 autolearn=ham version=2.63 Hi Paul, note below On 8/30/05, Paul Drake wrote: > Chris, > > That sounds like a classis case of attempting to obtain a dedicated server > session through a listener where NAT or a firewall is involved. The incoming > request to the listener is translated inbounds, but the redirected client > never finds its port in the storm. One can tnsping and get a reply, but not > create a session. > > Might you have setup iptables whereby all incoming connection attempts are > blocked except for those explicitly allowed? That is a laudable objective, > but you'll need to open the high TCP ports (>1024) for dedicated server > connections. You can restrict the range of ports used in the kernel > settings, if desired. sorry if I miss something but it seems to me that Linux uses shared socket, so there is no need to open the high TCP ports but 1521: it ain't so? Mario from Rome. -- http://www.freelists.org/webpage/oracle-l