| Oracle® Database Administrator’s Reference 10g Release 1 (10.1) for UNIX Systems: AIX-Based Systems, hp HP-UX PA-RISC (64-bit), hp Tru64 UNIX, Linux x86, and Solaris Operating System (SPARC) Part No. B10812-01 |
|
 |
 |
| Oracle® Database Administrator’s Reference 10g Release 1 (10.1) for UNIX Systems: AIX-Based Systems, hp HP-UX PA-RISC (64-bit), hp Tru64 UNIX, Linux x86, and Solaris Operating System (SPARC) Part No. B10812-01 |
|
|
|
This chapter describes how to configure Oracle Net Services on UNIX systems. It contains the following sections:
|
See Also: For more information about Oracle networking, see the Oracle Net Services Administrator’s Guide. |
Oracle Net Services configuration files are typically, but not always, located in the $ORACLE_HOME/network/admin directory. Depending on the file, Oracle Net uses a different search order to locate the file.
The search order for the sqlnet.ora and ldap.ora files is as follows:
The directory specified by the TNS_ADMIN environment variable, if set
The $ORACLE_HOME/network/admin directory
The search order for the cman.ora, listener.ora, and tnsnames.ora files is as follows:
The directory specified by the TNS_ADMIN environment variable, if set
One of the following directories:
For Solaris systems, the /var/opt/oracle directory
For other operating systems, the /etc directory
The $ORACLE_HOME/network/admin directory
For some system-level configuration files, users might have a corresponding user-level configuration file stored in their home directory. The settings in the user-level file override the settings in the system-level file. The following table lists the system-level configuration files and the corresponding user-level configuration files:
| System-Level Configuration File | User-Level Configuration File |
|---|---|
sqlnet.ora |
$HOME/.sqlnet.ora |
tnsnames.ora |
$HOME/.tnsnames.ora |
The $ORACLE_HOME/network/admin/samples directory contains samples of the cman.ora, listener.ora, sqlnet.ora, and tnsnames.ora configuration files.
|
Note: Thecman.ora file is installed only if you selected Connection Manager as part of a custom installation. |
Use the adapters utility to display the transport protocols, naming methods, and Oracle Advanced Security options that Oracle Database supports on your system. To use the adapters utility, enter the following commands:
$ cd $ORACLE_HOME/bin $ adapters ./oracle
The adapters utility displays output similar to the following:
Oracle Net transport protocols linked with ./oracle are
IPC
BEQ
TCP/IP
SSL
RAW
Oracle Net naming methods linked with ./oracle are:
Local Naming (tnsnames.ora)
Oracle Directory Naming
Oracle Host Naming
NIS Naming
Oracle Advanced Security options linked with ./oracle are:
RC4 40-bit encryption
RC4 128-bit encryption
RC4 256-bit encryption
DES40 40-bit encryption
DES 56-bit encryption
3DES 112-bit encryption
3DES 168-bit encryption
AES 128-bit encryption
AES 192-bit encryption
SHA crypto-checksumming (for FIPS)
SHA-1 crypto-checksumming
Kerberos v5 authentication
RADIUS authentication
ENTRUST authentication
On an Oracle client system, the adapters utility displays the configured Oracle transport protocols, naming methods, and security options. To run the adapters utility on an Oracle client system:
$ cd $ORACLE_HOME/bin $ adapters
The adapters utility displays output similar to the following:
Installed Oracle Net transport protocols are:
IPC
BEQ
TCP/IP
SSL
RAW
Installed Oracle Net naming methods are:
Local Naming (tnsnames.ora)
Oracle Directory Naming
Oracle Host Naming
NIS Naming
Installed Oracle Advanced Security options are:
RC4 40-bit encryption
RC4 56-bit encryption
RC4 128-bit encryption
RC4 256-bit encryption
DES40 40-bit encryption
DES 56-bit encryption
3DES 112-bit encryption
3DES 168-bit encryption
AES 128-bit encryption
AES 192-bit encryption
AES 256-bit encryption
MD5 crypto-checksumming
SHA-1 crypto-checksumming
Kerberos v5 authentication
RADIUS authentication
|
See Also: For more information about theadapters utility, see the Oracle Net Services Administrator’s Guide. |
Oracle protocol support is a component of Oracle Net. It includes the following:
IPC protocol support
TCP/IP protocol support
TCP/IP with SSL protocol support
The IPC, TCP/IP, and TCP/IP with SSL protocol supports each have an address specification that is used in Oracle Net Services configuration files and in the DISPATCHER initialization parameter. The following sections describe the address specifications for each of the protocol supports.
|
Note: If DCE is installed on HP-UX and Tru64 UNIX systems, you can use DCE as an Oracle Net protocol. For more information about configuring the DCE protocol support, see the Oracle Advanced Security Administrator’s Guide. |
|
See Also: For more information about Oracle protocol support, see the Oracle Net Services Administrator’s Guide. |
The IPC protocol support can be used only when the client program and Oracle Database are installed on the same system. This protocol support requires a listener. It is installed and linked to all client tools and the oracle executable.
The IPC protocol support requires an address specification in the following format:
(ADDRESS = (PROTOCOL=IPC)(KEY=key))
The following table describes the parameters used in this address specification:
| Parameter | Description |
|---|---|
| PROTOCOL | The protocol to be used. The value is IPC. It is not case sensitive. |
| KEY | Any name unique from any other name used for an IPC KEY on the same system. |
The following example shows a sample IPC protocol address:
(ADDRESS= (PROTOCOL=IPC)(KEY=EXTPROC))
TCP/IP is the standard communication protocol used for client/server communication over a network. The TCP/IP protocol support enables communication between client programs and the Oracle Database, whether they are installed on the same or different systems. If the TCP/IP protocol is installed on your system, the TCP/IP protocol support is installed and linked to all client tools and to the oracle executable.
The TCP/IP protocol support requires an address specification in the following format:
(ADDRESS = (PROTOCOL=TCP)(HOST=hostname)(PORT=port))
The following table describes the parameters used in this address specification:
| Parameter | Description |
|---|---|
| PROTOCOL | The protocol support to be used. The value is TCP. It is not case sensitive. |
| HOST | The host name or the host IP address. |
| PORT | The TCP/IP port. Specify the port as either a number or the alias name mapped to the port in the /etc/services file. Oracle recommends a value of 1521. |
The following example shows a sample TCP/IP protocol address:
(ADDRESS= (PROTOCOL=TCP)(HOST=MADRID)(PORT=1521))
The TCP/IP with SSL protocol support enables an Oracle application on a client to communicate with remote Oracle databases through TCP/IP and SSL. To use TCP/IP with SSL, Oracle Advanced Security must be installed.
The TCP/IP with SSL protocol support requires an address specification in the following format:
(ADDRESS = (PROTOCOL=TCPS)(HOST=hostname)(PORT=port))
The following table describes the parameters used in this address specification:
| Parameter | Description |
|---|---|
| PROTOCOL | The protocol to be used. The value is TCPS. It is not case sensitive. |
| HOST | The host name or the host IP address. |
| PORT | The TCP/IP with SSL port. Specify the port as either a number or the alias name mapped to the port in the /etc/services file. Oracle recommends a value of 2484. |
The following example shows a sample TCP/IP with SSL protocol address:
(ADDRESS= (PROTOCOL=TCPS)(HOST=MADRID)(PORT=2484))
Oracle recommends that you reserve a port for the listener in the /etc/services file of each Oracle Net Services node on the network. The default port is 1521. The entry lists the listener name and the port number, for example:
oraclelistener 1521/tcp
In this example, oraclelistener is the name of the listener as defined in the listener.ora file. Reserve more than one port if you intend to start more than one listener.
If you use intend to use SSL, you should define a port for TCP/IP with SSL in the /etc/services file. Oracle recommends a value of 2484. For example:
oraclelistenerssl 2484/tcps
In this example, oraclelistenerssl is the name of the listener as defined in the listener.ora file. Reserve more than one port if you intend to start more than one listener.
When you install Oracle Advanced Security, three .bak files are created: naeet.o.bak, naect.o.bak, and naedhs.o.bak. These files are located in the $ORACLE_HOME/lib directory. They are required for relinking if you decide to remove Oracle Advanced Security. Do not delete them.
