10g to 11g import problem NETWORK_ACLS
621406Mar 18 2011 — edited Mar 23 2011(I didn't mean to cross post this I just put it in the wrong place at first. it belongs here.. sorry 'bout that.)
I'm uprading from 10 to 11g and have a problem importing. The table I'm trying to import has a trigger in it that uses the UTL_SMTP package. When I import I get the following:
. . importing table "MISSINGSPEND"
IMP-00058: ORACLE error 24247 encountered
ORA-24247: network access denied by access control list (ACL)
ORA-06512: at "SYS.UTL_INADDR", line 4
ORA-06512: at "SYS.UTL_INADDR", line 35
ORA-06512: at "+schema+.MISSINGSPEND_TRIGGER", line 9
I've done some research and discovered a new 'feature' in 11g - network acls. So, I created/executed this script:
begin
dbms_network_acl_admin.create_acl (
acl => 'connect.xml',
description => 'Allow connect to anything',
principal => 'SYSTEM',
is_grant => TRUE,
privilege => 'connect'
);
commit;
end;
/
begin
dbms_network_acl_admin.assign_acl(
acl => 'connect.xml',
host => '*',
upper_port => null,
lower_port => null);
end;
/
begin
dbms_network_acl_admin.add_privilege(
acl => 'connect.xml',
principal => 'MY_USER',
is_grant => TRUE,
privilege => 'connect');
commit;
end;
/
begin
dbms_network_acl_admin.create_acl (
acl => 'resolve.xml',
description => 'Allow inet address lookup ',
principal => 'SYSTEM',
is_grant => TRUE,
privilege => 'resolve'
);
commit;
end;
/
begin
dbms_network_acl_admin.assign_acl(
acl => 'resolve.xml',
host => '*',
upper_port => null,
lower_port => null);
end;
/
begin
dbms_network_acl_admin.add_privilege(
acl => 'resolve.xml',
principal => 'MY_USER',
is_grant => TRUE,
privilege => 'resolve');
commit;
end;
/
quit;
There are basicall only two acls that can be fine tuned to the host/port level. The way I have it, I should be able to connect/resolve anything ... I Think.
Am I right? Is my script correct? What else could be wrong?
Thanks. -Erik.