Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Usenet -> c.d.o.server -> Re: Tunneling SQLPlus with ssh

Re: Tunneling SQLPlus with ssh

From: Howard J. Rogers <howardjr_at_www.com>
Date: Sun, 4 Feb 2001 15:35:14 +1100
Message-ID: <3a7cdbfc@news.iprimus.com.au> 






You might also look at Connection Manager (CMAN), which if placed on either
side of a firewall can effectively tunnel through it, in a secure manner -if
that makes sense.



Bit of a high-end solution, I agree -particularly since it will only work if
you've enabled multi-threaded server (which is actually strongly recommended
for NT installations anyway).



Regards


HJR






"John Alexander" <jalexander_at_summitsoftwaredesign.com> wrote in message
news:5H1f6.87125$8V6.11615159_at_typhoon.tampabay.rr.com...




> Port 1521 is used to get the initial connection. Oracle then chooses a

> random open port and sends the client back the new address, making it

> difficult if your traffic is coming through a firewall. Your resulting

 error


> will be TNS-12203.

> Check out Note 2064550.102 in MetaLink for some work-arounds to avoid

> opening up your firewall. (Go to 'TECHNICAL LIBRARIES' and then choose the

> 'Firewalls' section).

>

> John Alexander

> www.SummitSoftwareDesign.com

> St. Petersburg, FL

>

> Christian Dueholm Christensen <chch_at_freesbee.wheel.dk> wrote in message

> news:slrn97p0to.500.chch_at_freesbee.wheel.dk...

> > Hi All

> >

> > I have an Oracle 8.0.5.0.0 database running on NT4 (not my choice of

> > platform but thats the small blows life gives you) and I have a number

> > of off-site developers that needs to make a connection with a sqlplus

> > client.

> > Instead of punching great big holes in my firewall I would prefer

> > to use ssh to tunnel the connection. I have tried forwarding port 1521

> > which does make tnsping work, but the sqlplus connection fails with

> > error code 12203.

> > After looking at the output from netstat -a on a machine at the same

> > network as the Oracle server it seems that the server opens a connection

> > back to the client on a more or less random port.

> > Is there a way for the client to request a specific port on the server

> > when the connection is set up?

> >

> > Has anbody done anything like this before?

> >

> > --

> > Christian D. Christensen

> >

> > "I think the sum of intelligence on the internet is constant. Only the

> > number of lusers grows..."  - Uwe Ohse in the monastery

> >

>

>

Received on Sat Feb 03 2001 - 22:35:14 CST












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US