OAS 4.0.8 and HTTP Listener Configuration

Similar Messages

• Manually starting Intelligent Agent Configuration Assistant and HTTP Listener

  I have installed Oracle 9i on Solaris 8 and it stopped with an "Out of Memory" error during the Starter Database creation. I have fixed the memory problem and have now manually started the Database Configuration Assistant manually and managed to install a new database. Now I am trying to start the Intelligent Agent Configuration Assistant and the Apache HTTP Listener, but I cannot find out how to do this so that I can continue on with and complete the installation process from where I left off.
  Do anyone know how to do this? I would appreciate any help that anyone can give.
  Thanks
  Anthony

  Lets start with what product you are installing and why. An Oracle database installation, in and of itself, does not install an HTTP server.
  Of course one might also wonder why you are, just now, installing software so old it is in desupport.

• HTTP Listener configuration

  How do I configure the HTTP listener running on 8i personal edition (NT/2000) and
  9i Developer suite (NT/2000/XP), my OS is XP pro?
  I am able to connect forms to the database and build the forms. But when I try to "run" the form I get a "FRM-10142: The HTTP Listener is not running on (computer/host name) at port 8888. Please start the listener..." message.
  I've look in the on-line documentation but cannot find a specific method to explicitly start the HTTP Listener.
  Any help would be appreciated. Thanks, Bill.

  Found the answer as you probably did in some of the earlier Forum content - ie: executing the "Start OC4J Instance" item under the Forms Developer sub-menu fixes it up - asked me to install Jinitiator, but able to run forms fine after that.

• OAS , Http listener , Netscape Enterprise Server, SSL

  Hi All,
  We are planning to implement SSL 3.0 on OAS Pl/SQL cartridge.
  We will be configuring Netscape Enterprise server as the hhtp
  listener.
  I have a couple of questions.
  1. Can the Netscape Enterprise server(NES) be on a different
  machine and can we configure it to be a listener for the OAS?
  2. When NES is the listener , should we get a digital
  certificate for NES or OAS by using genreq(for SSL
  implementation)? Which certificate should be installed?
  Is it enuf if the NES alone has a certificate?
  Please respond as soon as possible.
  Thanx a lot for any help given
  Radhika
  null

  Hi,
  Please let me know, The below information.
  1. is there any errors? in error log.
  3. let me know the .perf output of your server.
  4. iWS service pack ??
  And please try to increase RqThrottle(magnus.conf) and file descriptors value( at OS side).
  and let see any improvements.
  (http://docs.iplanet.com/docs/manuals/ enterprise/41/scaling/html/estune.htm)
  And to confirm the sceniro iWS becomes
  unresponsive after particular load. I would request you
  to create one more test instance without enableing
  Cylink PrivateWire security software. And test it out
  whether iWS becomes unresponsive after some concurrent users increase.
  Thanks,
  Thanks,
  Dakshin.
  Developer Technical Support
  Sun Microsystems
  http://www.sun.com/developers/support.

• Can one portal 11g middletier listen on both https and http simultaneously?

  Specifically behind a reverse proxy?
  I know in 10G I was able to do this but in 11G there is a configuration item in the weblogic enterprise manager (Portal Farm) where you configure the:
  Portal Wire Congiguration
  - Portal Middle Tier
  Specify the Middle Tier settings that Portal should use.
       Published Host     
  Listening Port     
  SSL Protocol     (is a checkbox whose hover over text is: "Specifies the protocol of the Portal URL. It can be either HTTP (NONSSL) or HTTPS (SSL)")
  These setting would indicate to me that for a given portal middle tier you can not have it listen and respond to requests on http and https at the same time.
  IE...
  https://myhost/portal/pls/portal/
  http://myhost/portal/pls/portal/
  Can someone verify if this is indeed true?
  D

  Have you tired using wlw-runtime-config.xml?
  http://e-docs.bea.com/workshop/docs81/doc/en/workshop/reference/configfiles/con_wlw-runtime-config_xml_ConfigurationFile.html?skipReload=true
  -D

• Oracle service, Listener and http server does not start automatically

  Hello,
  I have Oracle 9i release 2 installed on Unix HP box if system restart in case of power failure the Oracle service, Listener and http server does not start automatically, is there any ready reference available to check what's wrong is happening(I don't have knowledge of Unix).
  Thanks, Khawar.

  Hi Rajesh,
  Thanks for reply, I will check this link and will be back if facing problem.
  Regards, Khawar.

• WCCP Configuration HTTP and HTTPS

  Looking for anyone that might have a clue in on this, im attempting to configure a pair of routers to use WCCP to redirect HTTP and HTTPS traffic to two content keeper devices. The network im building is going to be used for a guest internet connection where defining proxies on end devices would be unusable.
  I'll drop the configs in below but for now what i have are 2 cisco 3925 routers configured for HSRP. 2 content keeps running squid for the cache engine. with my current configurations, I have wccp web-cache and wccp service 70 configured (all 4 devices are available/usable in both services). this is a layer 2 setup. HTTP traffic is picked up and redirected to the content keepers without issue. https traffic does not appear to be detected by the routers. I have chosen not to use ACLS for WCCP and use the redirect in because we want to capture http(s) traffic from all hosts.
  for HTTP, I see hits counters rise on the router under show ip wccp, i see hit counters for the content keepers increase, i see http traffic on the firewall from the content keepers and I get the web page on the device
  For HTTPS I do not see hit counters under wccp increase, I do not see any traffic on the content keepers bridge, and i see traffic on the firewall from the hosts orginal ip address.
  interface0/2 internal LAN
  interface 0/0 content keepers (no WCCP commands)
  interface 0/1 gateway firewalls. (no WCCP commands
  ip wccp check services all
  ip wccp web-cache
  ip wccp 70
  interface GigabitEthernet0/2
  description To Lan
  ip address x.x.x.x
  ip wccp web-cache redirect in
  ip wccp 70 redirect in
  standby 1 ip x.x.x.x
  standby 1 priority 150
  standby 1 preempt
  duplex auto
  speed auto
  Global WCCP information:
      Router information:
          Router Identifier:                   x.x.x.2
      Service Identifier: web-cache
          Protocol Version:                    2.00
          Number of Service Group Clients:     2
          Number of Service Group Routers:     2
          Total Packets Redirected:            17999
            Process:                           0
            CEF:                               17999
          Service mode:                        Open
          Service Access-list:                 -none-
          Total Packets Dropped Closed:        0
          Redirect access-list:                110
          Total Packets Denied Redirect:       0
          Total Packets Unassigned:            0
          Group access-list:                   -none-
          Total Messages Denied to Group:      0
          Total Authentication failures:       0
          Total GRE Bypassed Packets Received: 0
            Process:                           0
            CEF:                               0
      Service Identifier: 70
          Protocol Version:                    2.00
          Number of Service Group Clients:     2
          Number of Service Group Routers:     2
          Total Packets Redirected:            0
            Process:                           0
            CEF:                               0
          Service mode:                        Open
          Service Access-list:                 -none-
          Total Packets Dropped Closed:        0
          Redirect access-list:                -none-
          Total Packets Denied Redirect:       0
          Total Packets Unassigned:            0
          Group access-list:                   -none-
          Total Messages Denied to Group:      0
          Total Authentication failures:       0
          Total GRE Bypassed Packets Received: 0
            Process:                           0
            CEF:                               0
  Show details and show service attached.

  Hello Josh,
  1. Yes, port-specific ACL is not supported. But it is not a big problem. Usually on WCCP server you can configure very specific bypass (Cisco WSA supports that - do not know about Sophos). For bypassed traffic WCCP server will reinject that packet in GRE and send back to ASA which will decapsulate it and send as normal packets.
  It's a good design, because you can have very granural bypass policy on WCCP server.
  2. Yes, configuration is correct, although it's better to be more specific (not send all traffic to WCCP if there is no need for that).
  3. Yes, you can use deny in redirect-list to exclude traffic.
  4. WCCP keepalives are being send by WCCP server by default every 10 seconds. If ASA does not see that replies for some time it marks server as dead and uses other ones.
  Michal

• Configuring WCCP for http and https

  How do I configure wccp on a 6509 to redirect http and https trafic to a S650. I am using the following config and http is working fine:
  ip wccp version 2
  ip wccp web-cache redirect-list aclwccp
  interface Vlan23
  description Rede Firewall
  ip address 10.0.23.20 255.255.255.0
  ip access-group 172 out
  ip wccp web-cache redirect out
  mls rp vtp-domain coc_block1
  mls rp ip
  mls netflow sampling
  end
  Should I config an other service for the https protocol?

  Cecato,
  The WSA can be configured to send 80 and 443 traffic, in the WCCP settings area (5.2.0+). There are some things you will need to be aware of before doing this though:
  1. If you are on 5.2.0-x, you will not be able to inspect HTTPS traffic. Only version 5.5.0+ has the ability to decrypt HTTPS traffic. Because of this, it is not recommended to redirect port 443 on WSA version 5.2.
  2. You will most likely need to specify a service ID other then web-cache. On most Cisco devices, web-cache is reserved for port 80 traffic only and cannot be changed. Any other service ID will work as you want it to.

• Configuration on rac and http cluster

  We installed Rac database 10g(10.2.03) and 2 http server OAS 10.1.3.
  We are planning to have 2000 concurrent users.
  What is your advice for parameter changes: database and http for the best performance?
  Thanks MB.

  Hello Mary,
  Have you had a look through the APEX & RAC whitepaper, available here -
  http://www.oracle.com/technology/products/database/application_express/pdf/apex_rac_wp.pdf
  John.
  Blog: http://jes.blogs.shellprompt.net
  Work: http://www.apex-evangelists.com
  Author of Pro Application Express: http://tinyurl.com/3gu7cd
  REWARDS: Please remember to mark helpful or correct posts on the forum, not just for my answers but for everyone!

• Https and http configuration

  Hello All
  Can anyone tell me how to configure a website which contain both https and http pages? I mean for example, if you go to your online banking website, all the pages before you reach the Login page are in http. But once you have login, all the pages are under https.
  For my own project, I have also installed the SSL onto my Tomcat, it works fine. However, all the pages are under https, even the index.html page. Below is my server.xml, hope it may give you more information.
  Many thanks
  Viola
  ============================================================================
  <!-- Define a non-SSL Coyote HTTP/1.1 Connector on port 8081 -->
  <Connector className="org.apache.coyote.tomcat4.CoyoteConnector"
  port="8080" minProcessors="5" maxProcessors="75"
  enableLookups="true" redirectPort="8443"
  acceptCount="100" debug="0" connectionTimeout="20000"
  useURIValidationHack="false" disableUploadTimeout="true" />
  <!-- Note : To disable connection timeouts, set connectionTimeout value
  to -1 -->
  <!-- Define a SSL Coyote HTTP/1.1 Connector on port 8443 -->
  <Connector className="org.apache.coyote.tomcat4.CoyoteConnector"
  port="8443" minProcessors="5" maxProcessors="75"
  enableLookups="true"
  acceptCount="100" debug="0" scheme="https" secure="true"
  useURIValidationHack="false" disableUploadTimeout="true">
  <Factory className="org.apache.coyote.tomcat4.CoyoteServerSocketFactory"
  clientAuth="false" protocol="TLS" />
  </Connector>
  <!-- Define a Coyote/JK2 AJP 1.3 Connector on port 8009 -->
  <Connector className="org.apache.coyote.tomcat4.CoyoteConnector"
  port="8009" minProcessors="5" maxProcessors="75"
  enableLookups="true" redirectPort="8443"
  acceptCount="10" debug="0" connectionTimeout="20000"
  useURIValidationHack="false"
  protocolHandlerClassName="org.apache.jk.server.JkCoyoteHandler"/>

  True for my version of TOMCAT
  I think that if you check http://localhost:8080
  you will find that you can access your pages
  with out using http also.
  You are applying ssl to the server not the individual
  war files. So you can access the files using both
  https and http.
  What you need todo is set the security parameters of the
  war file that you want to access using https to only allow
  connection using https.
  So now you can access the web pages using http or https
  but you can only access the file with the security settings
  using https.
  Note if you are using sessions becareful you don't jump between
  http & https and leave the session id exposed.

• Why the scan lister and listener configure/start from GRID home why not from Oracle Home.

  Hi
     why the scan lister and listener configure/start from GRID home why not from Oracle Home.

  > why the scan lister and listener configure/start from GRID home why not from Oracle Home.
  Because Oracle says that's the way it has to be.
  As @MohaAGOU said, starting in 11gR2, the Listeners (both SCAN and traditional) are now cluster resources. Let's start with the SCAN Listener. There are only 3 of them, even if you have 4 or more nodes in the cluster. If a node goes down and a SCAN Listener were running on it, Grid Infrastructure will relocate the SCAN Listener to a surviving node. Much easier to do this if the entire resource were in the GI home. Note that an instance cannot be relocated and it is running on a different home.
  As for the traditional listener. The Listener itself won't be relocated during a node termination, but its VIP will.
  Cheers,
  Brian

• Certificate Requirements and HTTPS configuration

  if implement we https communication on configuration manager doe it mean all computers have to go through https

  No you can run both http and https by adding an additional MP / DP.
  http://blogs.technet.com/b/configmgrteam/archive/2012/05/25/system-center-2012-configuration-manager-r-i-p-native-mode.aspx
  Some good info here:
  I have used the below multiple times with no issues, it's very easy to follow.
  http://sccmguy.com/2013/11/26/pki-certificates-for-configuration-manager-2012-r2-part-1-of-4-web-server-certificate/
  http://www.petervanderwoude.nl/post/five-key-configuration-steps-for-implementing-internet-based-clients-in-configmgr-2012/

• Need help with possible dual listener configuration and listener traffic

  Hello:
  We seperate our network traffic to the database servers using VLAN's. We have application traffic on 192.168.1.x and replication/admin traffic on 10.112.28.x. We are looking to configure 2 listeners for the database, one to listen and respond on 192.168.1.x and one to listen and respond on 10.112.28.x. Right now, we have one listener that is configured for both networks, however, for servers that are connected to both networks, the client sends on 192.168.1 but receives a TNS redirect to 10.112.28. For clients only on the 192.168.1, the TNS redirect to 10.112.28 times out because the client cannot resolve the address. I can make available a Visio diagram of our current configuration. We also utilize server-side load balancing.
  Here is our dilemma, confirmed by analyzing packet traffic to and from the database on a Fluke:
  1) For servers in our environment that reside on BOTH network segments (multihomed), application "traffic" generated on 192.168.1.x arrives at the listener. Through server-side load balancing, a TNS redirect string is returned to the client, which, based on the following listener configuration, redirects the connection to the 10.112.28.x segment:
  LISTENER_RMLNDB01 =
  (DESCRIPTION_LIST =
  (DESCRIPTION =
  (ADDRESS_LIST =
  (ADDRESS = (PROTOCOL = TCP)(HOST = 10.112.28.8)(PORT = 1521)(IP = FIRST))
  (ADDRESS_LIST =
  (ADDRESS = (PROTOCOL = TCP)(HOST = 192.168.1.8)(PORT = 1529)(IP = FIRST))
  (ADDRESS_LIST =
  (ADDRESS = (PROTOCOL = IPC)(KEY = EXTPROC))
  2) For servers that reside on only one network (ex. 192.168.1.x), when the redirect is returned to that server, it experiences a timeout and connection failure because it cannot physically reach 10.112.28.x
  Is there any way, through tnsnames, splitting listener.ora, VLAN's, the database itself, anything, for us to have requests for 192.168.1 be returned on 192.168.1 and not redirected. Would client side load balancing be a better option? Any way to manipulate the service registrations?
  Thanks for all future responses!
  Paul

  Hello:
  We seperate our network traffic to the database servers using VLAN's. We have application traffic on 192.168.1.x and replication/admin traffic on 10.112.28.x. We are looking to configure 2 listeners for the database, one to listen and respond on 192.168.1.x and one to listen and respond on 10.112.28.x. Right now, we have one listener that is configured for both networks, however, for servers that are connected to both networks, the client sends on 192.168.1 but receives a TNS redirect to 10.112.28. For clients only on the 192.168.1, the TNS redirect to 10.112.28 times out because the client cannot resolve the address. I can make available a Visio diagram of our current configuration. We also utilize server-side load balancing.
  Here is our dilemma, confirmed by analyzing packet traffic to and from the database on a Fluke:
  1) For servers in our environment that reside on BOTH network segments (multihomed), application "traffic" generated on 192.168.1.x arrives at the listener. Through server-side load balancing, a TNS redirect string is returned to the client, which, based on the following listener configuration, redirects the connection to the 10.112.28.x segment:
  LISTENER_RMLNDB01 =
  (DESCRIPTION_LIST =
  (DESCRIPTION =
  (ADDRESS_LIST =
  (ADDRESS = (PROTOCOL = TCP)(HOST = 10.112.28.8)(PORT = 1521)(IP = FIRST))
  (ADDRESS_LIST =
  (ADDRESS = (PROTOCOL = TCP)(HOST = 192.168.1.8)(PORT = 1529)(IP = FIRST))
  (ADDRESS_LIST =
  (ADDRESS = (PROTOCOL = IPC)(KEY = EXTPROC))
  2) For servers that reside on only one network (ex. 192.168.1.x), when the redirect is returned to that server, it experiences a timeout and connection failure because it cannot physically reach 10.112.28.x
  Is there any way, through tnsnames, splitting listener.ora, VLAN's, the database itself, anything, for us to have requests for 192.168.1 be returned on 192.168.1 and not redirected. Would client side load balancing be a better option? Any way to manipulate the service registrations?
  Thanks for all future responses!
  Paul

• Oracle HTTP listener not working...

  hi
  i have configured Oracle App Svr 4.0.8 on a Windows NT machine.
  (sorry for putting this Qs in 9iAS forum, but i thought this was better than putting on forms forum).
  i am trying to deploy oracle forms on the web using OAS and forms server.
  my machine is named appsvr on the Intranet and 202.54.41.36 is its IP address on the Internet.
  i have configured http listener in the OAS at port 80.
  Using CGI method, i have a static1.html file created and this shows the form in the browser when accessed on the intranet.
  ie. http://appsvr:80/forms60/static1.html gives desired results - shows working form.
  however, when accessed from the Internet, http://202.54.41.36:80/forms60/static1.html, i get http 400 - Bad Request error. The full message text is given below.
  Pls advice where i may be going wrong...
  ==================
  The page cannot be found
  The page you are looking for might have been removed, had its name changed, or is temporarily unavailable.
  Please try the following:
  If you typed the page address in the Address bar, make sure that it is spelled correctly.
  Open the 202.54.41.36 home page, and then look for links to the information you want.
  Click the Back button to try another link.
  Click Search to look for information on the Internet.
  HTTP 400 - Bad Request
  Internet Explorer
  =========================
  thanks
  ashwin

  corrected the problem...
  it was due to settings in the Network part of the listener which did not give the IP address of the Internet...

• Https front end and http backend

  Hi there....I am having a small issue....I have a web app that is https based....I have installed the cert on the CSS, and DNS for this app points to the VIP....the client is wanting to have an https front end, and then load balance in http to the backend servers....the issue I am running into is that this only works if I have an active port 80 rule on that same VIP....if I suspend the port 80 rule and only leave the port 443 rule active on that VIP, it doesn't work....please see appropriate config portions below....Thanks in advance!
  Sandeep
  ANy suggestions? I have been trying this for a couple of days now...it works fine if the backend sessions are also https, but the client has changed their requirement....
  ssl-proxy-list SSL1
  ssl-server 1
  ssl-server 1 rsakey app1-test
  ssl-server 1 rsacert app1-test
  ssl-server 1 vip address 10.19.55.10
  ssl-server 1 cipher rsa-with-rc4-128-md5 10.19.55.10 81
  backend-server 1
  backend-server 1 port 81
  backend-server 1 server-ip 10.19.55.132
  backend-server 1 ip address 10.19.55.132
  backend-server 2
  backend-server 2 port 81
  backend-server 2 server-ip 10.19.55.133
  backend-server 2 ip address 10.19.55.133
  backend-server 3
  backend-server 3 port 83
  backend-server 3 server-ip 10.19.55.132
  backend-server 3 ip address 10.19.55.132
  backend-server 4
  backend-server 4 port 83
  backend-server 4 server-ip 10.19.55.133
  backend-server 4 ip address 10.19.55.133
  backend-server 5
  backend-server 5 port 85
  backend-server 5 server-ip 10.19.55.132
  backend-server 5 ip address 10.19.55.132
  backend-server 6
  backend-server 6 port 85
  backend-server 6 server-ip 10.19.55.133
  backend-server 6 ip address 10.19.55.133
  active
  service webserver002:81
  ip address 10.19.55.132
  port 81
  keepalive port 2199
  keepalive type tcp
  protocol tcp
  active
  service webserver003:81
  ip address 10.19.55.133
  port 81
  keepalive port 2199
  keepalive type tcp
  protocol tcp
  add ssl-proxy-list SSL1
  active
  service webserver002:83
  ip address 10.19.55.132
  port 83
  add ssl-proxy-list SSL1
  keepalive port 2399
  keepalive type tcp
  protocol tcp
  active
  service webserver003:83
  ip address 10.19.55.133
  port 83
  keepalive port 2399
  keepalive type tcp
  protocol tcp
  add ssl-proxy-list SSL1
  active
  service webserver002:85
  ip address 10.19.55.132
  port 85
  add ssl-proxy-list SSL1
  keepalive port 2599
  keepalive type tcp
  protocol tcp
  active
  service webserver003:85
  ip address 10.19.55.133
  port 85
  keepalive port 2599
  keepalive type tcp
  protocol tcp
  add ssl-proxy-list SSL1
  active
  service SSL_Front
  slot 2
  type ssl-accel
  keepalive type none
  add ssl-proxy-list SSL1
  active
  owner app1-test
  content app-test_back
  vip address 10.19.55.10
  add service webserver002:81
  add service webserver003:81
  add service webserver002:83
  add service webserver003:83
  add service webserver002:85
  add service webserver003:85
  balance aca
  protocol tcp
  port 81
  active
  content app1-test_front
  vip address 10.19.55.10
  application ssl
  add service SSL_Front
  protocol tcp
  port 443
  advanced-balance ssl
  balance aca
  active

  Thanks for the quick reply....there is another port 80 rule setup for that vip....I was using that to test with the app until I got the front end https rules working....
  my port 80 rules just says listen to 10.19.55.10 on port 80 and load balance btwn the webervers on port 8x in the back end...
  I am trying to do https front end and http backend....
  no where in my SSL config have I configured port 80....but when I suspend that rule it all fails....
  I am wondering if the backend server sessions are happening properly?
  I don't fully get what you mean by "You need to have the rule in port 443 to match traffic coming from the client and the clear text rule (port 81) to match traffic already decrypted coming from the SSL module"
  Haven'tI done that?
  Thanks again!
  Sandeep