Skip to Main Content
Forums

Database Software

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

Interested in getting your voice heard by members of the Developer Marketing team at Oracle? Check out this post for AppDev or this post for AI focus group information.

Databases availabity with single database firewall

2642414Mar 31 2014 — edited Apr 8 2014

Hi,

We are planning to add Oracle Audit Vault and Firewall (AVDF) to our production and non-production architecture.

We are not considering the resilient paired option. Thus, we will have 2 servers for AV and DFW on PROD and same in non-PROD.

Having said that, what happens if the DFW crashes or fails for any reason in this architecture?

Is it really a single point of failure in this case for all DBs?

Will the connections still pass though bypassing the DFW to the oracle DBs or that will be impacted?

Can we bypass the DFW at anytime for maintenance...etc?

Appreciate your input guys on this.

Thanks

Comments

2642414

Appreciate your input guys on the above. Thanks.

user7190084

I am considering this product and have the same concerns.  So far I have not found the answer in the documentation.  Please update if you find an answer...I'll do the same.

Thanks

user7190084

FYI..I found this in the Database Firewall Installation Guide for version 5.0:


In the unlikely event that an Oracle Database Firewall should fail, all traffic passes through, ensuring service continuity.


However, I have not found anything in the current Database Vault and Firewall 12c documentation that spells this out.

2642414

It is really disappointing to see such lack of info regarding such an important aspect that might affect business continuity. if the fail open NIC would do the job why it was not explained well and sufficiently in the relevant AVDF 12c Documentation !!?

I will also update here and share if I got some answers.

Still waiting hopefully on useful feedback here by either Oracle guys or people who has done it.

1 - 4
Locked Post
New comments cannot be posted to this locked post.

Post Details

Locked on May 6 2014
Added on Mar 31 2014
#audit, #audit-vault-and-database-firewall, #database, #database-security
4 comments
1,992 views