Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Mailing Lists -> Oracle-L -> Re:RE: Oracle and SqlNet behind a firewall

Re:RE: Oracle and SqlNet behind a firewall

From: <dgoulet_at_vicr.com>
Date: Fri, 21 Jul 2000 09:19:52 -0400
Message-Id: <10565.112631@fatcity.com> 





Dan & Bob,



    Depending on which firewall your using there may be a predefined setup for
SQL*Net.  I know our Raptor firewall does.  Makes setting up & minding SQL*Net
so much easier for both us & the SA's



Dick Goulet


____________________Reply Separator____________________


Subject:    RE: Oracle and SqlNet behind a firewall
Author: "VanderMey; Bob" <BVanderMey_at_OrderZone.com>
Date:       7/21/00 4:34 AM



Dan,



Our security guys complained about the same thing.  When I looked into it, I
couldn't figure out how to limit the outbound ports.  The problem is that
the listener uses port 1521 (or another of your choice) but then hands off
to the database.  The database then picks a port to use when talking to the
client.  The best I could come up with at the time, wasz to have the
security guys see which ports were being used (they all stay within a
certain range) and then open up a range of ports somewhat lower and higher
than those being used.



If you do figure this out, please let me know what you did.



Bob VanderMey


Oracle DBA


OrderZone.com, Inc.


847 573-2687


bvandermey_at_orderzone.com


565 Lakeview Parkway, Suite 250


Vernon Hills, IL 60061


http://www.orderzone.com




-----Original Message-----


Sent: Thursday, July 20, 2000 4:08 PM


To: Multiple recipients of list ORACLE-L





Just put our first NT server with Oracle 8.0.5 and Net8 behind a firewall.



The security guys are complaining because all the inbound traffic goes in
through port #1521, but the outbound traffic is using multiple and random
ports.


They don't like this.



Anybody know anything about this?




-- 
Author: 
  INET: Dan.Hubler_at_midata.com

Fat City Network Services    -- (858) 538-5051  FAX: (858) 538-5051
San Diego, California        -- Public Internet access / Mailing Lists
--------------------------------------------------------------------
To REMOVE yourself from this mailing list, send an E-Mail message
to: ListGuru_at_fatcity.com (note EXACT spelling of 'ListGuru') and in
the message BODY, include a line containing: UNSUB ORACLE-L


(or the name of mailing list you want to be removed from).  You may

also send the HELP command for other information (like subscribing).

-- 
Author: VanderMey, Bob
  INET: BVanderMey_at_OrderZone.com

Fat City Network Services    -- (858) 538-5051  FAX: (858) 538-5051
San Diego, California        -- Public Internet access / Mailing Lists
--------------------------------------------------------------------
To REMOVE yourself from this mailing list, send an E-Mail message
to: ListGuru_at_fatcity.com (note EXACT spelling of 'ListGuru') and in
the message BODY, include a line containing: UNSUB ORACLE-L


(or the name of mailing list you want to be removed from).  You may



Received on Fri Jul 21 2000 - 08:19:52 CDT












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US