Net 8 Port Range

I have Oracle 9i installed on a Solaris machine. There is an
Application server in the DMZ which is required to connect to
the Oracle 9i machine via the CheckPoint firewall machine.
Therefore, I need to add a rule in the firewall to let it go.
The default listening port for Net 8 is 1521. I found that the
port number used by Net 8 after authenticated is varied. Please
advise the port range used by Net 8, thanks.
SK

I do have the same problem and I guess the solution (using the firewall, not a VPN) is to set a range o high ports into the firewall and try to limit the response from Oracle to this range.
How can we set a range o high ports response into Oracle? I am using 8i.
Best Regards,
Rodolfo

Similar Messages

  • Data Transfer Port ranges in FTPS with SSL in File Adapter

    Hi,
    I would appreciate if you could give me pointers reagrding the below issue.
    We are on XI 3.0.
    For one interface, I have to configure the FTP File adapter to pick up the files from external server.
    The connection is secure and should be FTPS with SSL.
    I have the certificate from the 3rd party and have it installed on our XI development server.
    The change has been made in our firewall to allow the connection to the host IP and port 21 which is configured at the target party as Explicit FTPS port and they have allowed access to our Server IP in their firewall.
    I have configured other FTPS connections and they worked fine but this is the only one that has been giving me so much trouble.
    The error i get today is:
    Error occurred while connecting to the FTP server "60.234.48.106:21": java.net.SocketException: Connection reset
    Yesterday, i got the below error:
    Error occurred while connecting to the FTP server "60.234.48.106:21": iaik.security.ssl.SSLException: Server certificate rejected by ChainVerifier
    The Vendor has suggested to get the firewall ports 21 and 28000:30000 (data transfer) to be opened.
    He has also provided with the certificate passphrase additionally to the user name and password needed to make the connection.
    When i tried the connection from the XI development to the vendor server, via the Telnet, it looked like it worked.
    Please advice.
    Regards,
    Archana

    >
    Archana Singhai wrote:
    > Hi,
    > I would appreciate if you could give me pointers reagrding the below issue.
    > We are on XI 3.0.
    > For one interface, I have to configure the FTP File adapter to pick up the files from external server.
    > The connection is secure and should be FTPS with SSL.
    > I have the certificate from the 3rd party and have it installed on our XI development server.
    > The change has been made in our firewall to allow the connection to the host IP and port 21 which is configured at the target party as Explicit FTPS port and they have allowed access to our Server IP in their firewall.
    > I have configured other FTPS connections and they worked fine but this is the only one that has been giving me so much trouble.
    > The error i get today is:
    > Error occurred while connecting to the FTP server "60.234.48.106:21": java.net.SocketException: Connection reset
    > Yesterday, i got the below error:
    > Error occurred while connecting to the FTP server "60.234.48.106:21": iaik.security.ssl.SSLException: Server certificate rejected by ChainVerifier
    > The Vendor has suggested to get the firewall ports 21 and 28000:30000 (data transfer) to be opened.
    > He has also provided with the certificate passphrase additionally to the user name and password needed to make the connection.
    > When i tried the connection from the XI development to the vendor server, via the Telnet, it looked like it worked.
    > Please advice.
    > Regards,
    > Archana
    1. Open the port ranges. FTPS usually requires you to open ports in the range of 65024 through 65535 for Passive FTP data
    connections
    2. Use the CA name in the certificate. it should be same as of the host name of the FTPS server

  • [ERROR]:INST-08010: Error in validating the port range for auto port allocation

    I am installing OBIEE 11.1.1.7.0 on a linux x86 version. I get the below error when running the installer: [VALIDATION] [ERROR]:INST-08010: Error in validating the port range for auto port allocation. At least 2 ports should be free within the range 7000-7500 for the Adminserver and Adminserver SSL. [VALIDATION] [SUGGESTION]:Ensure that a minimum of 2 ports are free within the range 7000-7500 for auto port allocation to work correctly for the Adminserver and Adminserver SSL. [VALIDATION] [ERROR]:INST-08010: Error in validating the port range for auto port allocation. At least 3 ports should be free within the range 9500-9699 for the Weblogic Components for BI (WLS Managed Server, Managed Server SSL and NodeManager). [VALIDATION] [SUGGESTION]:Ensure that a minimum of 3 ports are free within the range 9500-9699 for auto port allocation to work correctly for the Weblogic Components for BI (WLS Managed Server, Managed Server SSL and NodeManager). [VALIDATION] [ERROR]:INST-08012: Error in validating the port range for auto port allocation. At least 3 consecutive ports should be free within the range 9500-9699 for the OPMN, in addition to 3 free ports required for Weblogic Components for BI (WLS Managed Server, Managed Server SSL and NodeManager). [VALIDATION] [SUGGESTION]:Ensure that a minimum of 3 consecutive ports are free within the range 9500-9699 for auto port allocation to work correctly for the OPMN, in addition to 3 free ports required for Weblogic Components for BI (WLS Managed Server, Managed Server SSL and NodeManager). installation Failed. Exiting installation due to data validation failure. Solution suggested on other post is below: your hosts file have duplicate name that point to two different IP addresses.  10.37.29.1    test1.xyz.com 10.10.10.1    test1.xyz.com But in my case, My host file has different entiries as shown below: 169.36.71.228 usl20027808.am.hedani.net  usl20027808 169.36.72.9    usl2002788.am.hedani.net usl2002788 Please suggest!

    In setDomainEnv.sh set debugFlag=false or you can just remove it.
    NodeManager is a charm after that. it can take any number of ports.
    Cheers !!

  • Tuxedo Application port range

    Hi All,
    Is there any way to restrict tuxedo application to use a specified range of ports while it is up & running (except JSL, WSL, GWTDOMAIN) ?
    Issue - The tux application comes up with random ports getting assigned to the application servers connecting to the DB, which at times occupy either of WSL, JSL, NWADDR of other tuxedo application that's scheduled to come up later on the same box.
    I am looking for a way to restrict the first tux application coming up within specified port range for the servers.So they don't overlap with other tuxes (WSL,JSL,NWADDR).
    Thanks in advance.

    Hi,
    OK, now I'm really really confused.  DB ports as specified in tnsnames.ora or somehow through the OPENINFO string are destination ports, i.e., ports that some Tuxedo process will be connecting to.  Server ports, i.e., ports that a local process opens for listening are only done by Tuxedo system servers such as the JSL, WSL, GWTDOMAIN, GWWS, etc.  Although you can have multiple Tuxedo SHM (or MP) domains on the same physical host, they cannot share TCP/IP ports.  That's a fundamental limitation of the socket implementation on most (all?) operating systems.
    Normal application servers, i.e., server built with the buildserver command don't ever open up listening ports.  All communication to application servers is done via System V IPC queues.  The only servers that listen on network ports are Tuxedo system servers, and all of them have configurable network addresses, including host and port.  So the JSL, WSL, GWTDOMAIN, etc., all can be configured to listen on specific host/port addresses.
    Regarding net.ipv4.ip_local_port_range, this is an OS parameter and not a Tuxedo parameter.  Tuxedo servers just listen on the ports configured in whatever configuration file is appropriate, i.e., WSL and JSL in UBBCONFIG, GWTDOAMIN in the DMCONFIG file, GWWS in the imported WSDF files.  For outgoing connections such as to the database, the source port for those connections is under the control of the operating system.  They should never conflict as the OS allocates free ports for each connection.
    Perhaps you can tell me what it is you are seeing that you would like to see behave differently so I can get a better feeling for what the problem is.  There should never be a port conflict assuming your Tuxedo network address are configured uniquely across whatever domains are on a specific host.
    Regards,
    Todd Little
    Oracle Tuxedo Chief Architect

  • Unable to Save in Port Range Forwarding

    I'm using the BEFW11S4 wireless router and am unable to save the new port range forwarding settings I have entered.  Everytime I click Save Settings, I receive a box which reads:
    "The server 192.168.1.1 at Linksys BEFW11S4 V4 requires a username and password.
    Warning: This server is requesting that your username and password be sent in an insecure manner (basic authentication without a secure connection)."
    When I enter the same u/p that I used to access the router in the first place, it rejects and keeps bringing up the log in screen.
    I cannot get the port range forwarding to save at all due to this.
    Does anyone have any suggestions?
    Thank you!

    try remembering the password you used for first time while installing the router .... if not then use default password admin with out any username ....
    If still not working then you need to reset the router ....

  • NAM 5.1 How to create Application with port range from cli?

    Hello,
    I can create new Applicaion with port range from GUI, but I can not do it from CLI
    If I do it by CLI as a:
    nam# application
    nam# name mkst-cur-A
    nam# match udp 16001-16009
    nam# exit
    then
    nam# show application app-tag 268435576
    custom:120 (268435576) mkst-cur-A
      udp 16001
    nam#
    But if I do it by GUI and than
    nam# show application app-tag 268435576
    custom:120 (268435576) mkst-cur-A
      udp 16001 - 16009
    nam#
    How to do it by CLI?

    Hi Alexey,
    Sure, the function you're looking for is in the ANALYSIS panel under the "CUrve Fitting" palette-- it's called "Linear Mapping".  You will need to create the desired X channel prior to calling this function, though, so you will probably need to use the ANALYIS function "Generate Numeric Channel" in the "Channel Functions" palette.
    Brad Turpin
    DIAdem Product Support Engineer
    National Instruments

  • OC4J_BPEL – no port available from the port range

    To All,
    We could not start our BPEL Process Manager and OC4J_BPEL. We have shut down and restarted the Linux server repeatedly and re-running the IRCA. All stacks are running except the OC4J_BPEL and BPM.
    We keep receiving the following message when we start the BPM:
    BPEL Process Manager
    OraBPEL : OC4J_BPEL – no port available from the port range
    OraBPEL : OC4J_BPEL - failed to start a managed process after the maximum retry limit
    OC4J_BPEL
    OraBPEL : OC4J_BPEL – no port available from the port range
    OraBPEL : OC4J_BPEL - failed to start a managed process after the maximum retry limit
    Our OraBPEL is on a single HP NetServer LH6000 with Red Head AS 3.0, Oracle 10g DB and AS middle tier all in the same machine. The server was running a batch BPEL process. After running 2 hrs and process 12,000 records it was brought down by a single runtime exception. We were able to bring back the Oracle 10g AS middle tier but not the OC4J_BPEL instance. Any help would be appreciated.

    I changed the OC4J_BPEL port from 3201 to 3211 fix the problem. It was conflicted with the home instance that is using port 3201. However that still can not get rid of the OC4J-BPEL failed to start a managed process after the maximum retry limit.

  • OBI11g intallation issue - Error in validating the port range for auto port

    I am using the intaller to install OBIEE 11g on my machine. When I get to step 6, I receive the error messages below. Currently I also have OBIEE 10g on my machine so the ports may be already used.
    Does any one know how I can resolve this issue? I previously installed both 10g and 11g on my old laptop but I can't figure out why I'm getting these errors this time.
    INST-08010: Error in validating the port range for auto port allocation. At least 3 ports should be free within the range 9500-9699 for the Weblogic Components for BI (WLS Managed Server, Managed Server SSL and NodeManager).
    Ensure that a minimum of 3 ports are free within the range 9500-9699 for auto port allocation to work correctly for the Weblogic Components for BI (WLS Managed Server, Managed Server SSL and NodeManager).
    INST-08012: Error in validating the port range for auto port allocation. At least 3 consecutive ports should be free within the range 9500-9699 for the OPMN, in addition to 3 free ports required for Weblogic Components for BI (WLS Managed Server, Managed Server SSL and NodeManager).
    Ensure that a minimum of 3 consecutive ports are free within the range 9500-9699 for auto port allocation to work correctly for the OPMN, in addition to 3 free ports required for Weblogic Components for BI (WLS Managed Server, Managed Server SSL and NodeManager).
    INST-08010: Error in validating the port range for auto port allocation. At least 9 ports should be free within the range 9700-9999 for the BI System Components.
    Ensure that a minimum of 9 ports are free within the range 9700-9999 for auto port allocation to work correctly for the BI System Components.

    your hosts file have duplicate name that point to two different IP addresses.
    10.37.29.1 test1.xyz.com
    10.10.10.1 test1.xyz.com

  • INST-08010: Error in validating the port range for auto port allocation

    Hello guys, I am using the installer to install OBIEE 11.1.7.0 on my machine. When I get to step 6, I receive the error messages below:
    INST-08010: Error in validating the port range for auto port allocation. At least 2 ports should be free within the range 7000-7500 for the Adminserver and Adminserver SSL.
    Ensure that a minimum of 2 ports are free within the range 7000-7500 for auto port allocation to work correctly for the Adminserver and Adminserver SSL.
    INST-08010: Error in validating the port range for auto port allocation. At least 3 ports should be free within the range 9500-9699 for the Weblogic Components for BI (WLS Managed Server, Managed Server SSL and NodeManager).
    Ensure that a minimum of 3 ports are free within the range 9500-9699 for auto port allocation to work correctly for the Weblogic Components for BI (WLS Managed Server, Managed Server SSL and NodeManager).
    INST-08012: Error in validating the port range for auto port allocation. At least 3 consecutive ports should be free within the range 9500-9699 for the OPMN, in addition to 3 free ports required for Weblogic Components for BI (WLS Managed Server, Managed Server SSL and NodeManager).
    Ensure that a minimum of 3 consecutive ports are free within the range 9500-9699 for auto port allocation to work correctly for the OPMN, in addition to 3 free ports required for Weblogic Components for BI (WLS Managed Server, Managed Server SSL and NodeManager).
    My Operating System  below:
    Linux Red Hat 5.9 X86 64bit
    My uname -a are below:
    Linux redhat59 2.6.18-348.el5 #1 SMP Wed Nov 28 21:22:00 EST 2012 x86_64 x86_64 x86_64 GNU/Linux
    My /etc/hosts file are  below:
    # Do not remove the following line, or various programs
    # that require network functionality will fail.
    127.0.0.1   localhost.localdomain localhost
    10.10.80.19 redhat59
    My /etc/sysconfig/network are below:
    NETWORKING=yes
    NETWORKING_IPV6=no
    HOSTNAME=redhat59
    GATEWAY=10.174.27.228
    My /etc/sysconfig/iptables are below:
    # Generated by iptables-save v1.3.5 on Tue Dec  3 17:01:17 2013
    *filter
    :INPUT ACCEPT [425:33860]
    :FORWARD ACCEPT [0:0]
    :OUTPUT ACCEPT [307:40164]
    COMMIT
    # Completed on Tue Dec  3 17:01:17 2013
    My ifconfig are below:
    eth0      Link encap:Ethernet  HWaddr 52:54:00:55:9B:C9
              inet addr:10.174.27.233  Bcast:10.174.27.255  Mask:255.255.255.0
              UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
              RX packets:200216 errors:0 dropped:0 overruns:0 frame:0
              TX packets:95849 errors:0 dropped:0 overruns:0 carrier:0
              collisions:0 txqueuelen:1000
              RX bytes:110668992 (105.5 MiB)  TX bytes:209784134 (200.0 MiB)
    lo        Link encap:Local Loopback
              inet addr:127.0.0.1  Mask:255.0.0.0
              UP LOOPBACK RUNNING  MTU:16436  Metric:1
              RX packets:109200 errors:0 dropped:0 overruns:0 frame:0
              TX packets:109200 errors:0 dropped:0 overruns:0 carrier:0
              collisions:0 txqueuelen:0
              RX bytes:257845896 (245.9 MiB)  TX bytes:257845896 (245.9 MiB)
    my /etc/sysconfig/network-scripts/ifcfg-eth0 are below:
    # Virtio Network Device
    DEVICE=eth0
    BOOTPROTO=static
    BROADCAST=10.174.27.255
    HWADDR=52:54:00:55:9B:C9
    IPADDR=10.174.27.233
    NETMASK=255.255.255.0
    NETWORK=10.174.27.0
    ONBOOT=yes
    Have any suggestion please?
    Many Thanks
    D

    In setDomainEnv.sh set debugFlag=false or you can just remove it.
    NodeManager is a charm after that. it can take any number of ports.
    Cheers !!

  • Passive FTP Port Range -- Server 10.3.x Panther

    I know that the port range for Passive FTP is >1024, but I want to define that to a smaller group of unused ports so that I can specify that those ports are open in the Firewall.
    Can, how, and where do I define this port range??

    I just opened from 13658-65534 and this seems to be fine (although not been running very long). I took the view that opening a stack of ports was not really any worse than just opening a quarter as much. Arguably, it's no worse than just opening one.
    However, we only use it from time to time and FTP services is off unless specifically required. If I was going to run it for serious use I think I would put it on a dedicated server and put it in a DMZ.
    Reading up on FTP security is on my To-Do list...
    -david
    [EDIT] The server is also well locked down for SSH.

  • What port-range in the firewall of a Socks (e.g. JSocks) server?

    Hi there,
    I am using the JSocks implementation of a socks v5 server.
    Some of my questsions are quite general (not only specific to JSocks) and I hope that someone knows the answer. Unfortunately the forum of JSocks (sourceforge) is only rudymentary so I think this place is better to answer my questions.
    However...
    As I understand the socks proxy, the server waits on a specific port - normally 1080 and processes the client requests (bind, connect, accept...).
    For example one client requests a bind. Then the socks server opens a port locally on the socks host and (if successful) replies the new listening port and ip to the requesting client. ...
    (Forget authentication, cascaded proxies and ip-ranges at this point!)
    Now, if other clients should be able to access this port, the firewall (if any) needs to allow connection to this port.
    My questions:
    What should be an adequate port range for the socks proxy? With other words: what is the port range of the new ports that are created for the requesting clients?
    How schould a seperate firewall be configured not to conflict with a socks proxy?
    Specific to JSocks (if somebody knows this he wins a virtual cookie): What is the port range that JSocks uses if it opens (generates) new ports for its clients?
    Where is the port range defined in the jsocks - I havent found any?
    Imagine that on the same machine there are other running applications that are listening on predefined ports. (e.g. 8080, 21, ...) - what is the best way to exclude the ports in jsocks?
    Any hints and explanations are welcome!
    Edited by: krafzig on Oct 28, 2008 8:27 AM

    You only need one port.OK, initially I need only - lets say port 1080.
    But then for example a client c1 requests a bind. The socks server opens a new socket for the client (e.g. on 50000) and tells the client on which port on the socks he is now listening, right?
    In order to allow client c2 to connect to this new port the firewall needs to allow access to the new port (50000) first.
    So there are more ports - there might be hundrets or thousands, right?
    If its on a seperate box it doesn't matter. If its on the same box it should manage different ports.yes, different ports!
    However, it should allow access to the ports that the socks opens for the clients, right?
    Optimal would be a dynamic adaptation of the firewall, whenever the socks opens a new port the firewall grants access.
    I assume its configurable, so its up to you.No, unfortunately it is not configurable. At least I havent found anything.
    Probably won't either.???
    Don't use ports already used. `netstat -a` will list all the used port on that box. obviously, and Jsocks allows to configure reusage of ports by flag true/false;
    Has anybody setup a socks proxy with a firewall and knows how this is/should be done normally?
    Has anybody experiences with JSocks?

  • Can I open a port range in the firewall for one host?

    Can I open a port range in the firewall for one host?  In other words, I want to be able to open ports 54001 to 54050 to allow one remote host in my LAN to access that port range in my Mac Server.  Is this possible?  Currently, the only option I see is to open individual ports for all external hosts (eg http or https)
    Thanks in advance!

    Which version of OS X Server are you using?
    Server 2.2 and earlier includes an interface to a software firewall that can be configured to open specific ports very easily. Descriptions of how to configure the firewall can be found in the documentation for these versions.
    Server 3.x no longer has an interface to the software firewall - it is still there, but you need to use other methods do configure it.  A popular example of such a method is the icefloor utility.
    Apple suggest that for Server 3 you delegate firewall duties to an external router.  Server 3 includes the ability to configure the firewall component of Apple Airport routers 'automatically'
    if you connect a machine running Server 3 directly to an Airport Router the router appears in the LH pane in the Server.app window (usually second line, below the entry for the server itself), and you can control what services are 'enabled' through the firewall there.
    a more common solution perhaps is to use a non-apple router, and configure the firewall (and so open specific ports) through whatever control interface is provided for that router.  There are many many kinds of hardware router you could use, and the control interfaces used vary widely - so you will have to consulting the documentation for your own router to work out how to do this.
    If you post information about your software versions, and hardware configuration, it is possible that you can get more specific help with the tasks involved in opening the ports.
    Hope this helps.

  • Router won't save settings of Single Port Forward or Port Range Forwarding

    Hi everyone, I'm having a bit of trouble tonight trying to get my Playstation 3 to play games online and in doing so I'm attempting to enable Single Port Forwarding and or Port Range Forwarding.
    To start, I am using this link below this paragraph as a guide.
    http://portforward.com/english/routers/port_forwarding/Cisco/Linksys-E1000/PS3_Endless_Saga.htm
    Each time I go and set the settings and click save, it tells me the settings have been saved successfully then when I click continue onto the next page it shows they actually haven't saved at all. My router is out of it's 90 day phone support with Linksys and I refuse to pay anything extra for support so I'm hoping someone else will be able to help me with my issue since they refuse to unless I pay them.

    Hello. Sucks you ran into trouble just after PSN got back online
    Try clearing your cache / cookies then re-do the settings. Also, try using a different Internet browser.

  • Oracle 10g database listener port range?

    Hi there
    Can you share me oracle 10g database listener port range (start port to end port No). default port is 1521
    Regards
    Jewel
    Edited by: user623166 on Jul 31, 2012 10:41 PM

    I think you will find your answer in below thread :
    listener port number
    Osama ..

  • No Port Available from the port range

    Hi, Im getting "no port available from the port range" for the default_group/home/default_group process when I attempt to start opmn. I changed the port no through the application server control panel, and now I cant start opmn to change it back again! Could anyone tell me how to go about changing it back please?
    The error report looks like this:
    There are some errors while stopping the following components. Refer to the generated error report for more details.
    ==================================================
    ias-component: default_group
    process-type: home
    process-set: default_group
    Error Message:no port available from the port range
    ==================================================
    ==================================================
    ias-component: default_group
    process-type: home
    process-set: default_group
    Error Message:failed to start a managed process after the maximum retry limit
    ==================================================
    ==================================================
    ias-component: default_group
    process-type: home
    process-set: default_group
    Error Message:no port available from the port range
    ==================================================
    ==================================================
    ias-component: default_group
    process-type: home
    process-set: default_group
    Error Message:no port available from the port range
    ==================================================
    Can anyone help?

    See the Oracle Application Server Administrator's Guide. Here's a link for the 10.1.2.0.2 version of the book:
    http://download-west.oracle.com/docs/cd/B14099_19/core.1012/b13995/ports.htm#i1038905
    Helen

Maybe you are looking for

  • To update the status of the Sale Order through Pl/sql(backend)

    Hi folks. May I how to alter the status of Sale Order from 'Entered' to 'Awaiting for Approval' when the sale order was booked.After approval only it needs to change into 'BOOKED'. Requirement Scenaria as follows: Activity Status 1) Sale Order Creati

  • How do I change a saved ID for a site and delete the old ID, using Mac OS X and Firefox 3.6.8?

    I have changed an ID at a website I use all the time. I want to delete the old ID from Firefox. When I go to the site I am offered a list of ID options when I click in the ID box on the site. I do not want the old ID to be offered to me as an option

  • KDE4 randr + Samsung TV HDMI [SOLVED]

    Hello, I have following HW config: HP laptop with  Radeon HD 6370 with HDMI output Samsung LED TV UE46c6500, native resolution 1920x1080 Laptop display resolution is 1600x900 When I connect laptop with  TV using HDMI cable and message saying "new mon

  • OBIEE - error after upgrade .

    Hi Guru's ... I upgraded OBIEE from 10.1.3.3.2 to 10.1.3.4.1. After this i see all process coming up but i m not able to access the bi page . I see this error in sawserver.out.log after restart . /u001/app/oracle/product/10.1.3/OracleBI/web/bin/sawse

  • Ssh: Operation timed out

    running 10.4.5 server and 10.4.5 on clients; network setup with different subnets (wlan, gigabit-ethernet):178-net for wlan and 2-net for gigabit-ethernet; dns-service for both subnets supplied by server; server: host g4d003.local gives 192.168.178.5