I've built a new Oracle 9iR2 instance on a Windows 2003 32-bit cluster. Of course, it's version 9i for reasons out of my control. Several application servers connect to this instance, and each opens several DEDICATED
connections that they keep open for their work.
This instance is in a locked-down environment, so my network guys want to seal off as many ports as possible. To do that, I need to tell them precisely what ports or port ranges the instance needs open.
I've skimmed the Listener documentation, and I can see that I can change the default Listener port of 1521. However, every connection these application servers open against the database appears to get its own TCP port.
Is there any way to limit the range of ports these servers will use to connect to the database?
Best Answer
If the listener runs on port 1521 of the database server and you open a
dedicated
connection then the socket pair that constitutes that connection is fromclient:clientport
todbserver:1521
.If you have connections of the type
dbserver:serverport
toclient:clientport
than you don't have adedicated
connection but you have a multithreaded server (or shared sever in higher version) running. You can restrict the possible number of ports used by the server by configuring the ports of the dispatcher explicitly.