Bypassing JDBC through Firewall

I build an applet that connect to Oracle 8i through JDBC.
However, my web server has firewall in it (Tunnel Agent Network)
and the oracle database also located in the same web server. My
applet can't connect to the database because of the firewall.
Therefore, I was wondering if there is a way, trick, or tips to
bypass the firewall? If not, what's my alternative?
Thanks
-ed-
null

Here are a couple of my thoughts.
When you say GUI I'm making the assumption that you are talking about a single tier / rich client application written using Swing.
It is impractical to develop a single tier GUI application with JDBC to connect to a public database server on the Internet. The architecture is simply to difficult to implement because of the wide variety of security mechanisms in place on the Internet. Worse yet, attempting to make it work will open up security holes on the users computer.
A more common approach would be to use a web server / application server to manage the database access (sometimes called 2 tier or multi-tier). This would of course require you to write a web based interface for user interaction.
If you require a single tier GUI application with JDBC to connect to a private database server through (not on) the Internet that can often be done using a Virtual Private Network (VPN).
There might be other options (there are actually) but it depends on what your are hoping to accomplish. The single sentence from your post probably isn't enough to discuss a full blown architecture.

Similar Messages

  • Thin JDBC through firewall - what ports need to be open?

    We are running Oracle 7.3, and Oracle Web Server on the same
    computer. The firewall is set up to allow connections to that
    computer from anywhere, on ports 80 and 1521.
    Our thin JDBC applet works perfectly from inside the firewall,
    but from outside, I get a time-out error trying to open the JDBC
    connection.
    What else needs to be done get JDBC through? Do other ports need
    to be open on the firewall?
    The JDBC FAQ mentions a "Net8 compliant" or "SQLNet certified"
    firewall - is that relevant to this problem, and if so, what does
    it really mean?
    We are supposed to be operational right now, so many many thanks
    for any help on this!
    - Joe Wielgosz
    null

    Try in the Lion Server Forum?
    Regards,
    Colin R.

  • JDBC through Applet...

    We are getting 'AccessControlException' while using JDBC through Applet.
    Can anybody suggest the changes to be made in the policy file OR security setting OR security Manager.

    The tutorial gives help about it at :
    http://java.sun.com/docs/books/tutorial/security1.2/tour1/index.html
    hope it will help.

  • Client connecting through firewall

    Hi
              We have two clustered servers.Our client is connecting through
              firewall NAT. When iam connect to first server the response is very slow and
              at the same time clustering is not working.If i stop the second server the
              response fast .
              The same configaration is working fine when my client is local.
              Can you explain the reason for this problem ?
              Presently iam using weblogic 6.1 version.
              Thank you
              

    OK I spoke too soon. The user looked like it was working but it was working because it matched another IAS policy further down the list. It seems as though the PIX refuses to use ms-chap of any sort. If I include the authentication type in the VPN policy conditions as ms-chap, it skips the VPN policy I am using to authenticate this. If I remove it, then it gives an invalid authentication type as if whatever the PIX is sending the IAS server does not understand as ms-chap.
    It seems like the PIX authentication is totally wrong for use with IAS. What else do I need to add to this configuration to gewt it to work with ms-chap of any kind? I really don't get it.

  • Discoverer through firewall

    Hi all,
    hi have installed Oracle Business Intelligenge 10g (10.1.2). I
    I lunch Oracle discoverer plus in the local network and all work fine. But when i try to access to oracle discoverer by interner (through firewall ) i see the logon page but after input User Name Password ed cnnect string a obtained Page not Found.
    Thank in advance.
    Best Regards
    Giuseppe Marcello

    By Default, Discoverer uses JRMP protocol, which does not necessarily pass
    through the firewall.
    Configure Discoverer to use HTTP instead of JRMP and it will solve your problem.
    The 10.1.2 Discoverer Enterprise Manager allows you to configure this.

  • Itunes gets blocked through Firewall

    I have Sonic Wall TZ 150 Standard as a firewall gateway and allowing hand ful of websites in to the allowed list of domains in Sonic wall so as to restrict others. But with this my Itunes was getting blocked and not allowing My IPHONE to update. So I run netstat utility and added all list of IP address coming up in to the allowed list of domains but still ITUNES is getting blocked.
    So can you tell me if apple is using specific IP address list or is there any other process to get Itunes working through firewall.

    and the McAfee Security programs
    Doublechecking ... do your McAfee products include McAfee Family Protection?
    If so, check to see if your McAfee Family Protection is currently blocking iTunes, as per the following McAfee document:
    Using McAfee Family Protection Web Blocking
    If iTunes is currently being blocked, unblock it.
    Are you able to get through to the Store now?

  • Can RMI get through firewall?

    my java applet will have to communicate with SAP server using JCO
    so the applet connects to an RMI server then the RMI server connects to SAP server.
    in between applet and RMI server there is a firewall. will RMI get through firewall?

    The answer is "maybe". It depends on
    o How the service is coded. Probably has to be written to communicate using a fixed port number, rather than randomly assigned. (Most firewalls allow access to only specified ports.)
    o Changing the firewall settings.
    o Whether or not your server tries to call back the client, and whether the client is also behind a fireall. If these two details are both true, then you are probably dead in the water.
    There are HTTP tunelling techniques for getting through firewalls. Haven't used them, but if you look back through this forum you'll probbly find some info.

  • Urgent_Socket Programming through firewall

    Hi all...
    I am developing multiple client-one server application through socket programming.
    I have one client who will send real time data on request of another client.
    This whole data will pass through socket connection.(something like video conferencing)
    Steps:
    1.Client B sends request to Client A through server.
    2.Server accepts connection and gives Client B's IP address and port number
    to Client A.
    3.Client A sees the request and starts transferring real time data to Client B by opening Socket connection.
    I have following doubts:
    1. What exactly role of server
    2. Important is  What about firewall?* This communication has to happen through firewall also.*
    What technique has to be used to pass data through FIREWALL.
    Thanks In Advance.

    Hi..
    can you please give me some details about how to write program using SOCKS.
    i have developed simple application using Socket and Server socket.
    I want this application to be run over web,from anywhere,from any machine.
    Thanks

  • Is it possible to restrict SNMP access through firewall

    My appoligies if there is already an answered discussion about this, that I didn't find.
    In addition to just limiting the IP addresses allowed to have access and TCP/UDP port and direction of access, is it possible to further restrict SNMP traffic through an ASA firewall.  Example 1:  Can IP address IP_A on network A be forcibly limited to have only readonly SNMP polling access to IP_B on network B on the other side of an ASA firewall regardless of the community string it issues(or the configuration of device IB_B )?
         IP_A   ------- FW -------- IP_B
    Example 2:  Can IP address IP_A on network A be forcibly limited to have only readonly access to specific OID via SNMP polling access to IP_B on network B on the other side of an ASA firewall regardless of the community string it issues (or the configuration of device IP_B)?
         IP_A ------>  FW ------> IP_B
    It looks like IOS 10.3 and above allow devices to have such access limiting.  I was wondering if this could also be done via ASA for any end device.
    Thanks
    Jim

    No.
    An ASA can, as you noted, restrict source and destination IP and port. To do what you are asking, one would need to prevent a string within the payload from being transmitted (or only accept certain strings).
    You should just put the access-list on the destination device(s) restricting what host(s) are allowed snmp rw (as you alluded to). That's a very common implementation straight out of the textbook.

  • ITunes will not connect to iTunes store.  Internet is valid and iTunes is allowed through firewall. Help.

    Every time I try to connect to the iTunes store or use the internet in any sort of way through iTunes I recieve an error message that says "network connection refused."  Obviously my internet connection is still working or I wouldn't be on this website, and I've checked both windows firewall, and the McAfee Security programs and there are no blockages in either case.  I'm thinking a recent version on iTunes caused the problem.  Running on Windows Vista Home edition.

    and the McAfee Security programs
    Doublechecking ... do your McAfee products include McAfee Family Protection?
    If so, check to see if your McAfee Family Protection is currently blocking iTunes, as per the following McAfee document:
    Using McAfee Family Protection Web Blocking
    If iTunes is currently being blocked, unblock it.
    Are you able to get through to the Store now?

  • Transport management through firewall

    Hi,
    I am facing an issue with setting up a transport landscape wirth one system in the "LAN" and another system in the DMZ.
    The LAN system is the domain controller.
    <b>Additional constraint is that no communication initiated by the DMZ system is allowed due to security roles.
    </b>
    Current observation is that the DMZ system as the one the transport goes to sends an async confirmation after the files have been transferred.
    Question is if there is any way to either avoid this async confirmation or turn it in a syncronious one in order to match the constraint given above.
    Best regards
    Uli

    If you plan on ftping your transports through the firewall, then you'll need to create both systems as domain controllers and make virtual servers within their domains.  That will allow the transports to be created in the /usr/sap/trans/data and cofile directories so that you can ftp them. 
    Obvisously, the best solution would be to open the port for transporting but if your situation doesn't allow that, then go with the ftping of the transports and create the virtual systems.

  • Not able to access ports through firewall

    I'm setting up our new server, and we want to run a Quark license server through port 1028.
    In the Server Admin, under Firewall->Services->Settings, I set up a service for the license server on port 1028 using TCP and UDP protocols. It's allowed for any traffic.
    under Firewall->Advanced->, I set up a rule to:
    Allow all Quark services
    Source: any port 1028
    Destitnation: any port 1028 interface IN
    when I scan the open ports onthe server, I don't get a reponse from this port, or any ports. I've tried turning the firewall off completely, and it still doesn't show in the port scan.
    The only major change we're made to this server is that we're running bonded Ethernet on the 2 ports. Could this be stopping the ports from getting through?
    I've checked with IT, and they've (supposedly) verified that there aren't any blocked ports on our switch. The old license server runs fine on port 1028, and it's on the same switch.
      Mac OS X (10.4.7)  

    You are running a firewall on a non public server?
    Usually source and destination are not the using the same port number.
    Source is usually chosen from a range of high port numbers.
    Nevertheless if the QLA server isn't running on the server you woun't get an indication when portscanning the server (try portscanning on the server and use either localhost/127.0.0.1 or the "real" bonded interface IP).
    To my knowledge a switch can't block portnumbers but for a bonded interface the switch needs LACP capability for the trunk. There could also be different VLANs and routing.

  • Activation failure - Requesting I need to activate Photoshop CS5.1 despite having done this previously & used Photoshop. Adobe can't connect to internet to activate, yet program is allowed through Firewall and not having connectivity issues through Browse

    Hi,
    I currently have Photoshop CS5.1 on Windows 7 (64 bit) and it's now requesting I need to re-activate it, despite having already done this with a serial number when I installed it and even used the program numerous times.
    I get a screen saying "Product activation is required" but every time I try to activate it, it says there was a connection issue and asks me to connect to the internet.
    I've checked my firewall settings and Adobe is allowed through. No connection issues using my Browser, Skype etc.
    Anyone got any solutions?
    Thanks,
    Westy

    Sign in, activation, or connection errors | CS5.5 and later

  • Photosmart Premium C309A Wireless can't get through firewall

    I have a new Photosmart Premium (wireless) and it is going offline and then when I change it to online through the control panel feature on the computer, it still won't print.  It gives me the message "Printing", then after a minute or so, "Document Failed to Print".  In talking to HP, they determined it can't communicate because of the firewall.  Ok so now I know the problem, but for the life of me, I can't find the proper name of the program and it's path to put in as an exception for my firewall.  I am using Panda Internet Security. My operating system is Windows XP Home.  The HP person, Amy in online chat said she couldn't help me and just disconnected. UGH!
    Anyone have any suggestions?Thanks.

    Unfortunately, I believe the Panda Internet Security suite may not be compatible with network printer SW.  A simple test would be to temporarily uninstall the Panda SW and then reinstall the printer SW and see if printing works.
    In general, the security SW (aka firewalls) on the PC needs to allow 3rd party programs, like HP printer drivers, to have access to the local network.  How this is configured is specific to each firewall vendor.
    Currently, our software uses the following ports to communicate with the printer. Note that each port name consists of a protocol (either UDP or TCP), a number, and a connection type (either inbound or outbound):
    TCP 9100 outbound
    UDP 427 inbound
    UDP 427 outbound
    UDP 161 outbound
    UDP 139 outbound
    TCP 139 outbound
    TCP 9220 outbound
    TCP 9290 outbound
    TCP 9500 outbound
    You best bet is to contact Panda support and ask them how to configure their firewall to operate with the HP Photosmart Inkjet printers.
    Regards / Jim B / Wireless Enthusiasts
    ( While I'm an embedded wireless systems engineer at work, on this forum I do not represent my former employer, Hewlett-Packard, or my current employer, Microsoft )
    + Click the White Kudos star on the left as a way to say "thank you" for helpful posts.

  • Jdbc through mysql

    how i can connect jdbc to a java program through mysql in netbean 6.9.1 with user name and password.

    Quite old hint but maybe will be helpful. Look here.

Maybe you are looking for

  • Sound not Playing on iOS Devices?

    Hello, I am having a problem getting audio to play on my iOS devices (iPhone 4 and iPad Mini, both running iOS 7.1.2) but on desktop and BlackBerry BB10 devices it seems to be fine. All of the animation functions appear to be working fine. I have the

  • WAD : Call Javascript Function only on Initial Load

    Hi I need to replicate the functionality found in the web template parameter ACTION_BEFORE_FIRST_RENDERING in a Javascript function. I need to to do this in order to read a querystring parameter, and then perform actions based on that querystring par

  • Can't Upgrade XP / Can't Upgrade iTunes

    My XP license is no good apparently, therefore I can't update XP on microsoft update, therefore, I can't get iTunes 7.6.1.9, and that means there are certain albums that I can't purchase from iTunes. I just want to upgrade iTunes, not pay $150 to upd

  • Validation in iw31

    Dear expert, in iw31/iw32 I want to validate plant section field under location tab with recipient field in component tab.that means when user create order with material he will enter recipient as a plant section . & if this two field are not equal r

  • Apex: Removing leading and trailing blanks

    Hi, when observing end users working with my little apex application I noticed the input of leading and trailing blanks in a report search field. What do you recommend for removing this undesired input? I tried an ltrim(rtrim(:p1_searchfield)) in the