Shulou(Shulou.com)05/31 Report--

This article mainly explains "what are the common uses of SQLNET.ORA". The content of the explanation is simple and clear, and it is easy to learn and understand. Please follow the editor's train of thought to study and learn "what are the common uses of SQLNET.ORA"?

1. IP black and white list

Related parameters

TCP.VALIDNODE_CHECKING = YES

Use this parameter to enable the following two parameters.

TCP.EXCLUDED_NODES = (list of IP addresses)

Specify nodes that are not allowed to access oracle, and can use hostname or IP address

TCP.INVITED_NODES = (list of IP addresses)

Specifies the client that is allowed to access db, which has a higher priority than TCP.EXCLUDED_NODES.

Note:

Excluded_nodes and invited_nodes are mutually exclusive and cannot be used at the same time.

If both tcp.invited_nodes and tcp.excluded_nodes exist, tcp.invited_nodes takes precedence

Local addresses or addresses of other nodes in the Cluster cluster need to be added to the allow list, otherwise the listener may not be able to start

After configuration or modification, be sure to restart monitoring or reload (lsnrctl reload listener) to take effect.

Examples

Tcp.invited_nodes = (192.168.1.192 192.168.1.193192.168.1.194192.168.2.*)

Second, the login mode is limited

SQLNET.AUTHENTICATION_SERVICES= (NTS)

Specify to start one or more authentication services none:no authentication methods, including Microsoft Windows native operating system authentication. When SQLNET.AUTHENTICATION_SERVICES is set to none, a valid user name and password can be used to access the database.

All: all authentication methods are supported

Beq:native operating system authentication for operating systems other than Microsoft Windows

Kerberos5:Kerberos authentication

Nts:Windows system authentication

Radius:Remote Authentication Dial-In User Service (RADIUS) authentication

Tcps:SSL authentication

NAMES.DIRECTORY_PATH= (TNSNAMES,HOSTNAME)

Specify the order of client name parsing methods. The default is NAMES.DIRECTORY_PATH= (tnsnames, onames, hostname) tnsnames: the client will first look for the record of orcl in the tnsnames.ora file. (here orcl is the tag followed by @. Since we don't know how to call it, we use orcl instead. This may be the name of the library or tnsnames, and the content varies according to the environment.)

Ldap (dictionary server): Set to resolve a database service name, net service name, or network service alias through a directory server.

Hostname/ezconnect: try to use orcl as a hostname, resolve its ip address through the network, and then connect to the instance of GLOBAL_DBNAME=orcl on the ip.

Cds (distributed environment): Set to resolve service information through an existing Network Information Service (NIS).

Nis (Network Information Service (NIS))

III. Other restrictions

Time limit

The connection timeout, that is, the connection is automatically disconnected without activity for 300 seconds.

Sqlnet.expire_time = 300

Version restriction

The version of the client can be restricted. 8 means that the client must be more than 8i before it is allowed to connect.

12c previous version (Version 9.2.0.8 to 11.2.0.4)

SQLNET_ALLOWED_LOGON_VERSION=8

12c (only 11g and 12c clients are allowed to connect by default)

SQLNET.ALLOWED_LOGON_VERSION_SERVER=8

SQLNET.ALLOWED_LOGON_VERSION_CLIENT=8

IV. Configuration under Windows

SQLNET.AUTHENTICATION_SERVICES must be set to NTS or ALL to use OS authentication; OS authentication cannot be used if it is not set or set to any other value.

The user must belong to the OSDBA group to log in as sysdba. The OSDBA group here has different names on different types of operating systems. The name is "dba" on unix systems and "ORA_DBA" on windows systems.

To ensure that the remote_login_passwordfile parameter = EXCLUSIVE

Thank you for your reading, the above is the content of "what are the common uses of SQLNET.ORA". After the study of this article, I believe you have a deeper understanding of the common usage of SQLNET.ORA, and the specific use needs to be verified in practice. Here is, the editor will push for you more related knowledge points of the article, welcome to follow!

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.