Re: [SLUG] Oracle through a firewall
Hi Kevin, > Hi has anyone had any joy allowing oracle plus/sql through a firewall? We have that configured here with a double fire wall, first firewall lets packets through from the big bad internet to port 80 on the web server, second firewall lets packets through only from the web server to port 1521 on the DB server hosted on a private network. It works just fine. In this way there is no access to the database directly from the internet, it can only be accessed by applications on the web server which itself can only be accessed via port 80 from outside. About as secure as you can make it without actually turning it off ;-) The tcp port defaults to 1521 for Tnslistener but is configurable. You can check if the firewall is allowing the packets by telneting to the database server (from the web server) on port 1521 and seeing if you get a response. HTH Pete -- SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/ More Info: http://slug.org.au/lists/listinfo/slug
Re: [SLUG] Oracle through a firewall
On Tue, Oct 17, 2000 at 11:55:49AM -1000, Kevin Saenz wrote: > Hi has anyone had any joy allowing oracle plus/sql through a firewall? > Does anyone know what ports TNS use when sending and recieving > information Whatever port you tell it to. (Defaults to 1600 from memory, but I could be way out). Any of netstat, lsof and/or tcpdump should be able to tell you which for sure. Scott. -- SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/ More Info: http://slug.org.au/lists/listinfo/slug
Re: [SLUG] Oracle through a firewall
On Tue, 17 Oct 2000, Kevin Saenz wrote: > Hi has anyone had any joy allowing oracle plus/sql through a firewall? Do you really want to do this? Personally, I would have thought the security risk is too high. > While on the topic of firewall has anyone been using iptables? > What are the benefits moving from ipchains to iptables? There is no iptables for kernels < 2.4. As of 2.4 this is what you need to use INSTEAD of ipchains. tom. Consultant AUSSECPhone: 61 4 1768 2202 339 Blaxland Rd., Ryde NSW 2112 Email: [EMAIL PROTECTED] -- SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/ More Info: http://slug.org.au/lists/listinfo/slug
[SLUG] Oracle through a firewall
Hi has anyone had any joy allowing oracle plus/sql through a firewall? Does anyone know what ports TNS use when sending and recieving information While on the topic of firewall has anyone been using iptables? What are the benefits moving from ipchains to iptables? Thanks Kevin -- SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/ More Info: http://slug.org.au/lists/listinfo/slug
