RAC SCAN firewall settings

xerces8 Sep 9, 2013 5:44 AM

Currently Being Moderated

HI!

Using Oracle DB 11.2 RAC SCAN setup, what network access must be open for clients?

Is this correct: Acces to TCP ports 1521 on the SCAN listener and the node VIP (or real) addresses?

(assuming 1521 is the configured port on the servers)

Is just access to the SCAN address enough?

1. Re: RAC SCAN firewall settings

JavierFranciscoRuiz Sep 9, 2013 6:36 AM (in response to xerces8)

Currently Being Moderated

Check the configuration of the scan listener by doing $ srvctl config scan_listener <scan_name>

The port if you did not change shouldmbe 1521 the tns that you provide to the client should have the scan address for the host name
Report Abuse

Like (0)
2. Re: RAC SCAN firewall settings

Balazs Papp Sep 9, 2013 11:23 AM (in response to xerces8)

Currently Being Moderated

You have to open the firewall for both the SCAN and VIP addresses, as the SCAN listener forwards the requests to the local listeners that listens on VIPs.
Report Abuse

Like (0)