How to config localhost firewall on Oracle Database RAC in Linux/Windows 如何設定本機防火牆?

3/22/2022 11:43:00 上午

Oracle文件暫時找不到,Google Search出來的結果如下

Example Firewalld:

# Public IP subnet
firewall-cmd --permanent --add-rich-rule="rule family="ipv4" source address="10.10.10.0/24" port protocol="tcp" port="1-65535" accept"
firewall-cmd --permanent --add-rich-rule="rule family="ipv4" source address="10.10.10.0/24" port protocol="udp" port="1-65535" accept"

# Private IP subnet, need to config tcp/udp
firewall-cmd --permanent --add-rich-rule="rule family="ipv4" source address="10.10.11.0/24" port protocol="tcp" port="1-65535" accept"
firewall-cmd --permanent --add-rich-rule="rule family="ipv4" source address="10.10.11.0/24" port protocol="udp" port="1-65535" accept"

# Localhost subnet
firewall-cmd --permanent --add-rich-rule="rule family="ipv4" source address="169.254.0.0/16" port protocol="tcp" port="1-65535" accept"
firewall-cmd --permanent --add-rich-rule="rule family="ipv4" source address="169.254.0.0/16" port protocol="udp" port="1-65535" accept"

設定完記得要重啟

firewall-cmd --reload

依據Oracle Doc ID 2291948.1文件,如何設定 Windows Firewall

If you installed the Oracle grid infrastructure software on the nodes in your cluster, then you can enable the Windows Firewall only after adding the following executables and ports to the Firewall exception list. The Firewall Exception list must be updated on each node.

Grid_home\bin\gpnpd.exe - Grid Plug and Play daemon

Grid_home\bin\oracle.exe - Oracle ASM executable (if using Oracle ASM for storage)

Grid_home\bin\racgvip.exe - Virtual Internet Protocol Configuration Assistant

Grid_home\bin\evmd.exe - OracleEVMService

Grid_home\bin\crsd.exe - OracleCRService

Grid_home\bin\ocssd.exe - OracleCSService

Grid_home\bin\octssd.exe - Cluster Time Synchronization Service daemon

Grid_home\bin\mDNSResponder.exe - multicast-DNS Responder Daemon

Grid_home\bin\gipcd.exe - Grid IPC daemon

Grid_home\bin\gnsd.exe - Grid Naming Service daemon

Grid_home\bin\ohasd.exe - OracleOHService

Grid_home\bin\TNSLSNR.EXE - SCAN listener and local listener for Oracle Database and Oracle ASM

Grid_home\opmn\bin\ons.exe - Oracle Notification Service

Grid_home\jdk\jre\bin\java.exe - Java Virtual Machine



資料來源:

RAC on Windows: Frequent Node Eviction (Reboot) on Windows Environment (CRS-1610/CRS-8013) (Doc ID 2291948.1)

Oracle rac集群启动防火墙

JohnsonJ

張貼者: JohnsonJ

張貼留言

0 留言