All I am having a problem as follows. The database server is Windows NT4 SP6. Database version 220.127.116.11 (pathes 1 - 5). The machine resides between two firewalls. I can connect to the machine using SQL plus from a the local machine, or from a machine in the same segment of the network (between the two firewalls). Howerver when I try an connect from a machine that is outside this segment I get an ORA-12203 message. I can view the firewall logs and I call back seems to be generating random ports. The listener is listening on port 1526.
07-23-2001, 12:59 PM
Can you post the message that goes with the ORA-12203?
I cannot find the error on Technet in the 8i error messages and I'm too lazy to dig for it.
07-23-2001, 01:48 PM
ORA-12203 TNS:unable to connect to destination
This is the message...I don't think it is realy of mch help though.
07-23-2001, 02:08 PM
Try using a dedicated connection (add a server=dedicated to the net service name).
07-23-2001, 02:11 PM
Can you "ping" the machine from outside of the firewall?
Here is an idea. Check the port in the TNS file on the server. You will need to open this port on the firewall to the services you are using, for example TCP/IP.
If those services are not available, you have no connection.
By the way, do you have firewall software like Checkpoint or F5 or is it homegrown?
07-23-2001, 02:19 PM
I can not ping through the firewall to the server address. I can ping from the machine on the same segment OK. I can TNSPING the database from outside the firewall. But can not connect with SQL plus.
07-23-2001, 02:36 PM
I had the same problem earlier but now i fixed this. I found some documentation on metalink.
Oracle listener will listen the client request through firewall because 1521 or 1526 ports are open in firewall from client to server but since oracle generates random port fro return and could not be defined in firewall.
USE_SHARED_SOCKET will take care of this issue. The only disatvantage with this is whenever listener restarts then Oracle will loose every request received from client prior to restart.
On NT side
add USE_SHARED_SOCKET value is TRUE in ORACLE HOME ( N : 0,1,2 etc.. Mostly it should be 0 ) registry.
I hope this will fix your issue.
07-23-2001, 02:42 PM
I have already set that value in the registry (use_shared_socket reg_sz type = TRUE). Also found a document that suggested set an MTS_DISPATCHER value in the init.ora file (we are using decicated server) that would list the ip address and port to resond on.
Both of these are in place and I'm still gettint ORA-12203 from outside the firewall.
07-24-2001, 09:37 AM
I found the answer in Doc ID:124140.1. I placed the USE_SHARED_SOCKET registry seting in the wrong place. In version 8.0.x the setting was in the software\oracle hive location. With 8i it is in the software\oracle\homeX location.