| Oracle FAQ | Your Portal to the Oracle Knowledge Grid | |
 |
 | |||
| Oracle FAQ | Your Portal to the Oracle Knowledge Grid | |
|
| |||
Home -> Community -> Mailing Lists -> Oracle-L -> Re: dataguard and firewall
On 6/9/05, deen dayal <deen.dayal_at_dol.state.nj.us> wrote:
> i am asked to come up with a HA solution for a database running in DMZ la=
yer.
> i have to create a standby database in another network layer which is beh=
ind a firewall.
>=20
> now my question is can it be done? if it can be, what ports needs to be o=
pened up. DB is 9.2.0.6, 10GB in size
>=20
>=20
Deen,
Assuming that you are a DBA (and possibly a SysAdmin) the network
connectivity between hosts isn't your responsibility - its the
responsibility of network operations.
Get them to setup and maintain the (virtual private) network between the ho=
sts.
Concentrate higher up the stack - you'll have a greater chance of success with less work than attempting to do everything yourself.
Get dataguard working between the hosts while they reside on the same network segment - then add in the complexity of the (vp) network between DMZs.
I have no experience running dataguard between hosts where NAT is involved. Typically where NAT is involved between a client and server, we use shared server connections with dispatchers on known ports - and shared servers are not for maintenance tasks. A properly configured VPN will allow for dedicated server connections to be used transparently.
What ports need to be opened up for dedicated server connections? Start with port 1024, end with port 65535.
hth.
Paul
-- http://www.freelists.org/webpage/oracle-lReceived on Thu Jun 09 2005 - 20:09:12 CDT
 |
 |