Presentation is loading. Please wait.

Presentation is loading. Please wait.

IWR Ideen werden Realität Forschungszentrum Karlsruhe in der Helmholtz-Gemeinschaft Institut für Wissenschaftliches Rechnen Oracle Network Configuration.

Published byPhilip Barker Modified over 9 years ago

Similar presentations

Presentation on theme: "IWR Ideen werden Realität Forschungszentrum Karlsruhe in der Helmholtz-Gemeinschaft Institut für Wissenschaftliches Rechnen Oracle Network Configuration."— Presentation transcript:

1 IWR Ideen werden Realität Forschungszentrum Karlsruhe in der Helmholtz-Gemeinschaft Institut für Wissenschaftliches Rechnen Oracle Network Configuration Dr. Doris Wochele (Karlsruhe) LCG 3D Database Administrator Workshop Thursday 23 March 2006 Rutherford Appleton Laboratory / UK

2 IWR Ideen werde n Realität 23.3.2006D.Wochele Presentation Overview  Recapitulation Oracle NET architecture  Naming Methods  The Listener  Get connected..  Listener Control Utility  init-Parameter, sqlnet.ora, tnsnames.ora  Failover and Load Balancing  Connection Manager and Directory Server Concepts  Troubleshooting, Trace and Logging  Security  Client Types  Easy Connect

3 IWR Ideen werde n Realität 23.3.2006D.Wochele Oracle Net Architecture Oracle Net ► is NO transport protocol ► is a software component between server and client ► is using a network protocol (TCP/IP) The Application can be ► oracle client ► JDBC OCI Client with oracle client ► JDBC Thin Client without oracle client

4 IWR Ideen werde n Realität 23.3.2006D.Wochele Naming Methods ► Oracle Names  no longer supported ► Local Naming –define DB-connection in local files (sqlnet.ora, tnsnames.ora) on DB and every client ► Directory Naming –Set up a central LDAP Server to store all connection information ► Easy Connect Naming –Identify the DB-connection completely in the connection-string ► External Naming –NIS-Service or DCE Environment -> who is using this? Tools ► Oracle Net Manager –configure naming method, profiles, listeners –$ORACLE_HOME/bin/netmgr ► Oracle Net Configuration Assistant –$ORACLE_HOME/bin/netca –basic tool, runs after installation ► Virtual IP Configuration Assistant –CRS tool runs under root –map virtual IP to nodes

5 IWR Ideen werde n Realität 23.3.2006D.Wochele The Listener Listener Details ► Control utility to start/stop and configure the listener $ORACLE_HOME/bin/lsnrctl ► Configuration file for listener $ORACLE_HOME/network/admin/listener.ora ► Server listener process. Read the configuration file “listener.ora” for information's as port numbers or SID’s $ORACLE_HOME/bin/tnslsnr Listener Modes ► DatabaseAccess to a database service ► ExecutableAccess to operation system executables (used by oracle) ► PLSExtProcMethod of PL/SQL packages to access operating system executables SID_LIST_LISTENER_RACLINUX1 = (SID_LIST = (SID_DESC = (SID_NAME = PLSExtProc) (ORACLE_HOME = /u01/app/oracle/product/10.2.0/db_1) (PROGRAM = extproc) ) Question: Are external procedures necessary? Can we delete this entries?

6 IWR Ideen werde n Realität 23.3.2006D.Wochele listener.ora Is a local DB-Configuration file for... ► connection protocol addresses ► (static defined) services to listen for ► control parameters ► to name the listeners (in RAC: listener_name_nodename) Some Parameters ► LOG_DIRECTORY_listener_name (FILE) ► TRACE_LEVEL_listener_name (DIRECTORY,FILE,..) ► QUEUESIZE (Number of concurrent requests default=5) ► RECV_BUF_SIZE Port Numbers ► 1521older oracle standard port ► 1522-1540used for listeners ► 1630,[1830]default for connection manager, [cman-admin] ► 2483,[2484]official registered for TNS listener, [with SSL] Question: Do we need this for OEM?

7 IWR Ideen werde n Realität 23.3.2006D.Wochele Example listener.ora LISTENER_RACLINUX1 = (DESCRIPTION_LIST = (DESCRIPTION = (ADDRESS_LIST = (ADDRESS = (PROTOCOL = TCP)(HOST = raclinux1-vip.us.oracle.com)(PORT = 1521))) (ADDRESS_LIST = (ADDRESS = (PROTOCOL = TCP)(HOST = 192.168.203.11)(PORT = 1521)) ) LISTENER2_RACLINUX1 = (DESCRIPTION_LIST = (DESCRIPTION = (ADDRESS_LIST = (ADDRESS = (PROTOCOL = TCP)(HOST = raclinux1-vip.us.oracle.com)(PORT = 1522)) ) (ADDRESS_LIST = (ADDRESS = (PROTOCOL = TCP)(HOST = 192.168.203.11)(PORT = 1522)) ) Example: 2 instances, each with 1 listener on different ports on a single server Question: Why is the real host-IP necessary?

8 IWR Ideen werde n Realität 23.3.2006D.Wochele Get Connected with Listener is a process on DB-Server to handle connections DB-registration (pmon registers himself to the listerers ) ► read init-parameter ► looks for TNS_ADMIN variable or looks in $ORACLE_HOME/network/admin ► read sqlnet.ora to detect profile settings ► uses local tnsnames.ora to detect listeners ► read cman.ora if existent ► tries to register DB-Services to the LISTENERS ► or/and tries to register on Connection Manager for a service ► default registers to Port 1521 or default „LISTENER“ Client connection ► client looks for connection parameter in local tnsnames.ora (or EZconnect) ► client broadcasts a request for connection to a service ► listener brokers the request and forwards it to the database ► listener starts server-process and delivers the address (or the address of the dispatcher) to the client

9 IWR Ideen werde n Realität 23.3.2006D.Wochele Listener Control Utility ► $ORACLE_HOME/bin/lsnrctl ► lsnrctl STOP [ listener_name] ► lsnrctl START [ listener_name] ► lsnrctl STATUS [ listener_name] –is it started? –where is the log or trace file? ► lsnrctl SERVICES –what services are up/used? –Is the load balanced ?

10 IWR Ideen werde n Realität 23.3.2006D.Wochele INIT Parameter ► SERVICE_NAMES –list of possible client connection names –default is global_dbname (DB_NAME+DB_DOMAIN) Question: should we predefined common service names like atlas_geom, atlas_calib? ► INSTANCE_NAME (= SID) –set to identify the database instance to access. –used by OEM or in administrative tools ► LOCAL_LISTENER –identifies the listener for the local server instances for pmon register process –not necessary if Port 1521 is used (?) - i suggest to set it anyway! ► REMOTE_LISTENER –identifies listeners on other instances (node 2 of RAC) for pmon registration –identifies global list of listeners –needed to ensure failover

11 IWR Ideen werde n Realität 23.3.2006D.Wochele sqlnet.ora Is a profile for... ► default domain to append to unqualified service names or net service names ► order of naming methods ► logging, tracing, routing ► security, access control Example: NAMES.DIRECTORY_PATH= (TNSNAMES) Parameter (can mostly be overwritten by client) ► SEND_BUF_SIZE, RECV_BUF_SIZE –default 16k –buffer size = (network bandwidth / 8) x (roundtrip time / 1000) use an average „ping time“ as roundtrip time –set in sqlnet.ora for all connections –mostly only the receive buffer is set in the client connection string ► SQLNET.SEND_TIMEOUT –limits the send-data-process from db ► SQLNET.RECV_TIMEOUT –limits the send-data-process from client ► USE_DEDICATED_SERVER –appends (SERVER=dedicated) to the connect data for a connect descriptor.

12 IWR Ideen werde n Realität 23.3.2006D.Wochele tnsnames.ora Is a local connection-configuration file ► contains net service names mapped to connect descriptors net_service_name= (DESCRIPTION= (ADDRESS=( protocol_address_information)) (CONNECT_DATA= (SERVICE_NAME=service_name))) some parameters ► SERVER=DEDICATED vs.SHARED –as streams-user or admin use only DEDICATED –as a short-time connection (like a web server) use SHARED. –be sure not to use SHARED for fast sequences of SQL‘s Question: What are the requirements of the experiment services? ► Use explicit service_name (do not use GLOBAL_DBNAME) in RAC

13 IWR Ideen werde n Realität 23.3.2006D.Wochele Example Server tnsnames.ora – Listeners LISTENER_RACDB1 = (ADDRESS_LIST = (ADDRESS = (PROTOCOL = TCP)(HOST = raclinux1-vip.us.oracle.com)(PORT = 1521)) (ADDRESS = (PROTOCOL = TCP)(HOST = raclinux1-vip.us.oracle.com)(PORT = 1522)) ) LISTENER_RACDB2 = (ADDRESS_LIST = (ADDRESS = (PROTOCOL = TCP)(HOST = raclinux1-vip.us.oracle.com)(PORT = 1522)) (ADDRESS = (PROTOCOL = TCP)(HOST = raclinux1-vip.us.oracle.com)(PORT = 1521)) ) LISTENERS_RACDB = (ADDRESS_LIST = (ADDRESS = (PROTOCOL = TCP)(HOST = 192.168.203.11)(PORT = 1521)) (ADDRESS = (PROTOCOL = TCP)(HOST = 192.168.203.11)(PORT = 1522)) (ADDRESS = (PROTOCOL = TCP)(HOST = raclinux1-vip.us.oracle.com)(PORT = 1522)) (ADDRESS = (PROTOCOL = TCP)(HOST = raclinux1-vip.us.oracle.com)(PORT = 1521)) ) init-Parameterracdb1.local_listener = LISTENER_RACDB1 racdb1.remote_listener = LISTENER_RACDB2 Question: Is RACDB the „remote“ ? Question: You find often the real IP in addition here? Why?

14 IWR Ideen werde n Realität 23.3.2006D.Wochele Example Server and Client tnsnames.ora – Services RACDB1 = (DESCRIPTION = (ADDRESS = (PROTOCOL = TCP)(HOST = raclinux1-vip.us.oracle.com)(PORT = 1522)) (ADDRESS = (PROTOCOL = TCP)(HOST = raclinux1-vip.us.oracle.com)(PORT = 1521)) (CONNECT_DATA = (SERVER = DEDICATED) (SERVICE_NAME = RACDB) (INSTANCE_NAME = RACDB1) ) RACDB = (DESCRIPTION = (ADDRESS = (PROTOCOL = TCP)(HOST = raclinux1-vip.us.oracle.com)(PORT = 1521)) (ADDRESS = (PROTOCOL = TCP)(HOST = raclinux1-vip.us.oracle.com)(PORT = 1522)) (LOAD_BALANCE = yes) (FAILOVER = false) (CONNECT_DATA = (SERVER = DEDICATED) (SERVICE_NAME = RACDB) ) init-Parameter service_names = RACDB, list of service names

15 IWR Ideen werde n Realität 23.3.2006D.Wochele RAC Failover an Load Balancing Failover and load balancing are set in the connection parameters Failover (Instance1 (I1) died) ► all new connects go to I2 and reestablishes client connections on I2 ► no restore of session parameters or program variables ► all selects are re-executed on I2 ► active transactions are rolled back ► DDL were canceled ► parameter (type, method, retries) for client TAF in tnsnames.ora ► see v$session for TAF status ► server side TAF policy (you do not have to encode TAF on the client connection string) Load Balancing ► shared server config.: balanced select of dispatchers ► dedicated server config. : balanced select of listeners Cluster Interconnect ► not stable over cross-over CAT5 Cable  network switch ► CRS does not support a redundant Cluster Interconnect (with 2 network cards or IP-addresses) Question: What services should be run in shared/dedicated mode with or without TAF or LB?

16 IWR Ideen werde n Realität 23.3.2006D.Wochele Connection in a Private Network SAN VIP1,VIP IP1, IP2 ? IP1 VIP1 VIP2 IP2 public networkprivate network node 1 node 2 network switch Database: Services A,B,C Flash Rec Area PIP1 PIP2

17 IWR Ideen werde n Realität 23.3.2006D.Wochele OCM Oracle Connection Manager ► act as a TNS-proxy with access-control ► additional installation ► cmctl ► $TNS_ADMIN/cman.ora ► DB register with init-parameter REMOTE_LISTENER=proxy ► tnsnames.ora SOURCE_ROUTE=yes proxy=(PROTOCOL=TCP)(HOST=lcgdbka1.fzk.de)(PORT=1541) CMAN_KA= (CONFIGURATION= (ADRESS=(PROTOCOL=TCP)(HOST=lcgdbka1.fzk.de)(PORT=1541) (RULE_LIST= (RULE=(SRC=141.52.*)(DST=DB1.gridka.de)(SRV=*) (ACT=ACCEPT)) (PARAMETER_LIST= (MAX_GATEWAY_PROCESSES=12) (MIN_GATEWAY_PROCESSES=2) (REMOTE_ADMIN=YES) ) Question: Does cman fully support load balancing and failover?

18 IWR Ideen werde n Realität 23.3.2006D.Wochele Connection in a Private Network SAN CMAN (IPxxxx) NIC1 NIC2 IP1 VIP1 VIP2 IP2 public networkprivate network node 1 node 2 network switch Database: Services A,B,C Flash Rec Area Proxy CMAN PIP1 PIP2

19 IWR Ideen werde n Realität 23.3.2006D.Wochele Directory Server ► LDAP compliant directory server ► central repository for –network information –user policies –user authentication and security ► ldap.ora on db-servers and clients assets and drawbacks ► a typical bottleneck! ► no distribution of client config files Question : Is this a possible concept?

20 IWR Ideen werde n Realität 23.3.2006D.Wochele Oracle Net Troubleshooting ► ping hostname_node1[2] ► check network cards and connection –ifconfig –ethtool –iperf –netstat –tcpdump –ethereal ► tnsping service_name from server_node1[2] ► tnsping service_name from client ► lsnrctl services ► sqlplus scott@service_name

21 IWR Ideen werde n Realität 23.3.2006D.Wochele Trace and Logging Sqlnet.log ► pmon registration to listener tail -f listener.log --> 01-MAR-2006 16:11:46 * service_update * RACDB1 * 0 Listener Log ► Set LOG_STATUS=ON (default=OFF) ► $ORACLE_HOME/network/admin/.log is default ► Contains listener commands ► Only client connects, no further information Listener Trace ► much load, capture all NET-traffic ► for debugging only

22 IWR Ideen werde n Realität 23.3.2006D.Wochele Security Listener ► in 10g listener runs under OS authentication, listener password only necessary to restrict remote control ► password accessible in listener.ora, protect by file-rights ► Set ADMIN_RESTRICTIONS_listener_name=ON allow no remote parameter changes (only listener.ora) #----ADDED BY TNSLSNR 13-MAR-2006 17:33:29--- PASSWORDS_LISTENER_RACLINUX1 = 1DF5C2FD0FE9CFA2 SAVE_CONFIG_ON_STOP_LISTENER_RACLINUX1 = ON LOGGING_LISTENER_RACLINUX1 = ON #------------------------------------------- ► delete extproc–entry in listener.ora to prevent program-routines to act as oracle-user ? SQLNET ► using Certificate Authority for PKI ? (Oracle Advanced Security supports CyberSafe, RADIUS, Kerberos, SSL, Windows NT native authentication (NTS)) ► using checksums ? (SQLNET.CRYPTO_CHECKSUM_SERVER) ► using encryption? (SQLNET.ENCRYPTION_SERVER)

23 IWR Ideen werde n Realität 23.3.2006D.Wochele Client Types ► full client ► instant client –installation involves copying a small number of files. –less client-side requirements –no loss of functionality or performance for applications deployed in Instant Client mode. –it is simple to package applications –configuration files are read (set TNS_ADMIN or $ORACLE_HOME to find them) url="jdbc:oracle:oci:@//example.com:5521:bjava21" url="jdbc:oracle:oci:@(DESCRIPTION=(ADDRESS=(PROTOCOL=tcp) (HOST=dlsun242) (PORT=5521)) (CONNECT_DATA=(SERVICE_NAME=bjava21)))"

24 IWR Ideen werde n Realität 23.3.2006D.Wochele Easy Connect ► CONNECT username/ password@ host[: port][/ service_name][/ instance_name] ► no LDAP, no tnsnames.ora ► SQLNET.ora –NAMES.DIRECTORY_PATH=(EZCONNECT) ► only client have to be 10g (you can connect to 9i) ► EZConnect Alias –Client name resolution for service-name (e.g. 141.52.167.211 cgcl1.fzk.de) DNS /etc/hosts Examples: connect scott/tiger@orcl.fzk.de:1521/service JDBC:connect scott/tiger@//orcl.fzk.de:1521/servicescott/tiger@//orcl.fzk.de:1521/service ► Easy Connect provides NO Failover or Load Balancing!

Download ppt "IWR Ideen werden Realität Forschungszentrum Karlsruhe in der Helmholtz-Gemeinschaft Institut für Wissenschaftliches Rechnen Oracle Network Configuration."

Similar presentations

Visit : Call Us: US: 001-713-900-7669, 001-630-974-1794 India: 091-779-985-5779

Visit : Call Us: US: , India:
Visit : Call Us: US: 001-713-900-7669, 001-630-974-1794 India: 091-779-985-5779

Visit : Call Us: US: , India:
INTRODUCTION TO ORACLE Lynnwood Brown System Managers LLC Oracle High Availability Solutions RAC and Standby Database Copyright System Managers LLC 2008.

INTRODUCTION TO ORACLE Lynnwood Brown System Managers LLC Oracle High Availability Solutions RAC and Standby Database Copyright System Managers LLC 2008.
IWR Ideen werden Realität Forschungszentrum Karlsruhe in der Helmholtz-Gemeinschaft Institut für Wissenschaftliches Rechnen Status of Database Services.

IWR Ideen werden Realität Forschungszentrum Karlsruhe in der Helmholtz-Gemeinschaft Institut für Wissenschaftliches Rechnen Status of Database Services.
Overview of Database Administrator (DBA) Tools

Overview of Database Administrator (DBA) Tools
Oracle9i Database Administrator: Implementation and Administration 1 Chapter 2 Overview of Database Administrator (DBA) Tools.

Oracle9i Database Administrator: Implementation and Administration 1 Chapter 2 Overview of Database Administrator (DBA) Tools.
Oracle Services on RAC Five Things You Might Not Know.

Oracle Services on RAC Five Things You Might Not Know.
1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.

1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 11: Planning Network Access.

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 11: Planning Network Access.
Apr-04Installation Oracle1 Compiere Training Oracle Installation.

Apr-04Installation Oracle1 Compiere Training Oracle Installation.
Backup The flip side of recovery. Types of Failures Transaction failure –Transaction must be aborted System failure –Hardware or software problem resulting.

Backup The flip side of recovery. Types of Failures Transaction failure –Transaction must be aborted System failure –Hardware or software problem resulting.
Harvard University Oracle Database Administration CSCI E256 Session 7 Oracle Networking.

Harvard University Oracle Database Administration CSCI E256 Session 7 Oracle Networking.
A Guide to Oracle9i1 Introduction to Oracle9i Database Administration Chapter 11.

A Guide to Oracle9i1 Introduction to Oracle9i Database Administration Chapter 11.
TCP/IP Tools Lesson 5. Objectives Skills/ConceptsObjective Domain Description Objective Domain Number Using basic TCP/IP commands Understanding TCP/IP3.6.

TCP/IP Tools Lesson 5. Objectives Skills/ConceptsObjective Domain Description Objective Domain Number Using basic TCP/IP commands Understanding TCP/IP3.6.
Presentation #36576 Presentation #36576 Oracle9i LDAP: Advanced Configuration of Directory Naming Daniel T. Liu Senior Technical consultant First American.

Presentation #36576 Presentation #36576 Oracle9i LDAP: Advanced Configuration of Directory Naming Daniel T. Liu Senior Technical consultant First American.
© 2008 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. James Harding - Database Manager.

© 2008 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. James Harding - Database Manager.
Course 6421A Module 7: Installing, Configuring, and Troubleshooting the Network Policy Server Role Service Presentation: 60 minutes Lab: 60 minutes Module.

Course 6421A Module 7: Installing, Configuring, and Troubleshooting the Network Policy Server Role Service Presentation: 60 minutes Lab: 60 minutes Module.
Module 7: Configuring TCP/IP Addressing and Name Resolution.

Module 7: Configuring TCP/IP Addressing and Name Resolution.
INTRODUCTION TO ORACLE Lynnwood Brown System Managers LLC Client-Server – Lecture 4 Copyright System Managers LLC 2007 all rights reserved.

INTRODUCTION TO ORACLE Lynnwood Brown System Managers LLC Client-Server – Lecture 4 Copyright System Managers LLC 2007 all rights reserved.
Oracle Database Administration

Oracle Database Administration

Similar presentations

Ads by Google