This site is currently read-only as we are migrating to Oracle Forums for an improved community experience. You will not be able to initiate activity until January 31st, when you will be able to use this site as normal.

    Forum Stats

  • 3,890,899 Users
  • 2,269,649 Discussions


Databases availabity with single database firewall

2642414 Member Posts: 4


We are planning to add Oracle Audit Vault and Firewall (AVDF) to our production and non-production architecture.

We are not considering the resilient paired option. Thus, we will have 2 servers for AV and DFW on PROD and same in non-PROD.

Having said that, what happens if the DFW crashes or fails for any reason in this architecture?

Is it really a single point of failure in this case for all DBs?

Will the connections still pass though bypassing the DFW to the oracle DBs or that will be impacted?

Can we bypass the DFW at anytime for maintenance...etc?

Appreciate your input guys on this.




  • 2642414
    2642414 Member Posts: 4

    Appreciate your input guys on the above. Thanks.

  • I am considering this product and have the same concerns.  So far I have not found the answer in the documentation.  Please update if you find an answer...I'll do the same.


  • FYI..I found this in the Database Firewall Installation Guide for version 5.0:

    In the unlikely event that an Oracle Database Firewall should fail, all traffic passes through, ensuring service continuity.

    However, I have not found anything in the current Database Vault and Firewall 12c documentation that spells this out.

  • 2642414
    2642414 Member Posts: 4

    It is really disappointing to see such lack of info regarding such an important aspect that might affect business continuity. if the fail open NIC would do the job why it was not explained well and sufficiently in the relevant AVDF 12c Documentation !!?

    I will also update here and share if I got some answers.

    Still waiting hopefully on useful feedback here by either Oracle guys or people who has done it.

This discussion has been closed.