Home » RDBMS Server » Networking and Gateways » Dynamic TCP Port on Windows Oracle server
 Dynamic TCP Port on Windows Oracle server [message #167991] |
Tue, 18 April 2006 05:39  |
networker
Messages: 5
Registered: April 2006
|
Junior Member |
|
|
Hi there,
I am trying to test a firewall between a client and its oracle database. Note that I am a networking guy, and not a database expert, so apologies up front if I am not able to describe the Oracle elements correctly 
The goal is to test the firewall's ability to pass the dynamically allocated ports from an Oracle's reply to the initial connection. The initial server port is 1521, and in some circumstances the oracle server will dynamically allocate a different port for the connection to continue on.
From the reading I have done, user's problem have been trying to turn this functionality off. I want it on! Also, that this should almost be the standard way of working on a windows setup. The workaround (to ensure the server continues to use TCP port 1521 only) is to set the windows variable USE_SHARED_SOCKET=TRUE.
My problem is that I am having a hard time getting my server to do the dynamic allocation.
My Setup is the default setup from the oracle downloads page (http://www.oracle.com/technology/software/products/database/xe/index.html) of the Oracle 10g Express Edition, running on windows XP and the sample database. The connectivity was from an excel spreadsheet.
If there are files that you need the configs from, I can supply these, just let me know.
Any pointers on what/where to look to get this working would be much appreciated.
thanks / regards
Mitchell
|
|
|
|
|
|
|
|
| Re: Dynamic TCP Port on Windows Oracle server [message #168831 is a reply to message #168825] |
Sun, 23 April 2006 10:01  |
markmal
Messages: 113
Registered: April 2006
Location: Toronto, Canada
|
Senior Member |
|
|
Does your FW have ALG for Net8 particularly?
Firewall should recognize a "redirect port command" from Listener to Client and open a secondary port accordingly. This "redirect port command" I think is specific to Net8, rather to IP stack, at least in Windows, thus some FW plug-ins or proxies that are specific to Net8 have to be implemented to allow FW to handle Net8 redirections.
I do not know if 10gX includes Cman. It is beta and is not documented in option availability docs.
Enterprise Edition and Personal Edition have CMan.
Install all options and subproducts. Check if you have cmctl binary in $OH/bin.
Also it is documented Metalink Note:131524.1
| Quote: |
III / Oracle8/8i (8.x) - Unix: Firewall without Network Address Translator (NAT)
---------------------------------------------------------------------------
1 - In dedicated server mode, Unix natively implements TCP/IP sharing, so there should be no problem with connectivity."
...
VI / Oracle8 (8.x) - Windows NT: Firewall without Network Address Translator (NAT)
-------------------------------------------------------------------------
Unlike Unix, Windows does not implement TCP/IP port sharing by default.
When using either dedicated or MTS mode, registry parameter USE_SHARED_SOCKET=TRUE
may be set in the Windows registry. The location of the parameter varies and
depends on the Oracle version. For registry location details, refer
Note 124140.1, which also discusses other methods to set the parameter.
|
Note:66382.1 "Firewalls, Windows NT and Redirections" may be helpful as well.
|
|
|
|
|
|
|
|
|
|
| Re: Dynamic TCP Port on Windows Oracle server [message #170079 is a reply to message #170051] |
Tue, 02 May 2006 00:41 |
markmal
Messages: 113
Registered: April 2006
Location: Toronto, Canada
|
Senior Member |
|
|
good.
yes. USE_SHARED_SOCKET=TRUE makes all clients go always via listener port. The drowback of it, all connections broken when you stop listener, which is not a case when USE_SHARED_SOCKET=FALSE.
what is a firewall, by the way?
|
|
|
|
Goto Forum:
Current Time: Thu Apr 10 16:10:17 CDT 2025
|
] 
Blog
Search
Help
Members
Register
Login
Home
