oracle directory permssions and listener 2004-10-12 - By Hollis, Les
Interestingly, NONE of my databases use port 1521.I have set them to use
other than 1521...1561, 1566, 1599, 1531, 1541, 1514, you name it, we might
be using it. The only thing common is that they start with 15xx
Now, once the connection is MADE, through port 15xx (1521 if you prefer) a
response is sent to your client that directs the actual connection to a port
other than that of the listener. Your client then reconnects to the
database with the port number supplied to it.
Take a look at a listener.log and see what port numbers you are actually
conversing on somewhere in the 30000 and up range typically.... but not
always true it depends on the server.
And OH by the way, this is true of V7, 8i, 9i and 10g. I have all 4 running
this way.
Here's a small snip of a listener.ora log
12-AUG-2004 11:42:24 *
(CONNECT_DATA=(SID=TRATST)(SERVER=DEDICATED)(CID=(PROGRAM
=)(HOST=rydrsd01)(USER=trfprod))(SERVER=dedicated)) *
(ADDRESS=(PROTOCOL=tcp)(HOST=192.168.253.11)(PORT=47478)) * establish *
TRATST * 0
12-AUG-2004 11:42:27 *
(CONNECT_DATA=(SID=TRATST)(SERVER=DEDICATED)(CID=(PROGRAM=)(HOST=rydrsd01)(U
SER=trfprod))(SERVER=dedicated)) *
(ADDRESS=(PROTOCOL=tcp)(HOST=192.168.253.11)(PORT=47480)) * establish *
TRATST * 0
12-AUG-2004 11:42:41 *
(CONNECT_DATA=(SID=CDRTST)(SERVER=SHARED)(CID=(PROGRAM=)(
HOST=rydsup02)(USER=ym2uat))) *
(ADDRESS=(PROTOCOL=tcp)(HOST=192.168.252.12)(PORT=59409)) * establish *
CDRTST * 0
12-AUG-2004 11:42:51 *
(CONNECT_DATA=(SID=TRATST)(SERVER=DEDICATED)(CID=(PROGRAM
=)(HOST=rydrsd01)(USER=trfprod))(SERVER=dedicated)) *
(ADDRESS=(PROTOCOL=tcp)(HOST=192.168.253.11)(PORT=47482)) * establish *
TRATST * 0
12-AUG-2004 11:42:54 *
(CONNECT_DATA=(SID=TRATST)(SERVER=DEDICATED)(CID=(PROGRAM
=)(HOST=rydrsd01)(USER=trfprod))(SERVER=dedicated)) *
(ADDRESS=(PROTOCOL=tcp)(HOST=192.168.253.11)(PORT=47484)) * establish *
TRATST * 0
12-AUG-2004 11:42:57 *
(CONNECT_DATA=(SID=CDRTST)(SERVER=SHARED)(CID=(PROGRAM=)(
HOST=rydsup02)(USER=oracle))) *
(ADDRESS=(PROTOCOL=tcp)(HOST=192.168.252.12)(PORT=59412)) * establish *
CDRTST * 12518
NOTICE the port numbers 40k and 50k The actual listener is running on
port 1522 in this particular instance.
snip
> - your program talks to the listener on port 1521 using
> Oracle Networking
>
> * the listener tells the Oracle kernel to start up a
> dedicated process
> * - dedicated will connect to a free port other than 1521
> - there are firewall implications to this!
snip
=====>>>> Not true
Actually, in the *nix world the connection stays on 1521. So, the only
firewall issue is opening port 1521 to inbound connections. In the
windows world the default behavior is to open up and switch to another
free port other than 1521. BUT! In windows 2003 (and possibly Win2K)
there are registry settings that you can use that will KEEP the client
connected to the server via 1521, just like *nix. So, these days there
isn't a need for firewalls with SQLNet proxies.
All of our Oracle servers (Windows and Linux) are configured to allow
inbound traffic only on 1521 and they work perfectly with clients AND
other Oracle servers.
I think you are right in that older versions of SQL*Net used extra ports
besides 1521, but at least in 9i that behavior has changed. Weee! No
more firewall fixup rules!
Andy
--
To unsubscribe, email: suse-oracle-unsubscribe@(protected)
For additional commands, email: suse-oracle-help@(protected)
Please see http://www.suse.com/oracle/ before posting
--
To unsubscribe, email: suse-oracle-unsubscribe@(protected)
For additional commands, email: suse-oracle-help@(protected)
Please see http://www.suse.com/oracle/ before posting
|
|
