Skip to Main Content
Forums

Database Software

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

Database Firewall deployement in DPE mode using In-Line

3694855Apr 24 2018 — edited Apr 28 2018

Hi to all,

I'm trying to configure my Database Firewall in DPE mode (In-Line).

Bellow are my configurations:

Target Oracle Database:

IP:192.168.43.100

Mask: 255.255.255.0

Gateway: 192.168.43.1

My Client:

IP:192.168.43.110

Mask: 255.255.255.0

Gateway: 192.168.43.1

Database Firewall:

Management IP:192.168.43.212 --> Formed with one VirtualBox NIC (eth0)

Mask: 255.255.255.0

Gateway: 192.168.43.1

Bridge IP (br0): 192.168.43.220 --> Formed with two VirtualBox NIC (eth1 & eth2)

Audit Vault:

IP:192.168.43.210

Mask: 255.255.255.0

Gateway: 192.168.43.1

Before setting the DPE mode my Clients can connect remotely to the secure Oracle database but once I enabled the Bridge from the Database Firewall and setting the DPE mode, my Client cannot connect to the secure Database saying (ORA-12547: TNS:lost contact) and I'm getting the following error from the (/var/log/messages) of the Database Firewall server:

*******************************************************************************************************************************************************************************************************************************************

Apr 24 15:51:14 dbfw080027d0c07a fw1: com.oracle.dbfw.fw INFO - ODF-10113: TCP connection successfully disrupted: Connection between 192.168.43.110:54730 and 192.168.43.100:1521

Apr 24 15:51:24 dbfw080027d0c07a fw1: com.oracle.dbfw.fw WARN - ODF-10512: A badly formed TCP URG packet was received: From 192.168.43.110:54731: Bytes received = 0

Apr 24 15:51:26 dbfw080027d0c07a fw1: com.oracle.dbfw.fw INFO - ODF-10113: TCP connection successfully disrupted: Connection between 192.168.43.110:54732 and 192.168.43.100:1521

Apr 24 15:52:58 dbfw080027d0c07a fw1: com.oracle.dbfw.fw WARN - ODF-10512: A badly formed TCP URG packet was received: From 192.168.43.110:54733: Bytes received = 0

*******************************************************************************************************************************************************************************************************************************************

I really need help from anyone of you !!!!!

                                                                                                                                                                                                 Best Regards ......
Comments
Locked Post
New comments cannot be posted to this locked post.
Post Details
Locked on May 26 2018
Added on Apr 24 2018
#audit-vault-and-database-firewall, #database-security
5 comments
797 views