SSL Listener Configuration
938072May 31 2012 — edited Jun 7 2012Hi all,
I've been fooling around with this for a little longer than my nerves will allow so I'm looking for some guidance in setting up an SSL DB listener/connection with Oracle Database 11g Express Edition Release 11.2.0.2.0 - 64bit Production
Here's what I have:
MY ERROR:
LSNRCTL> stat
Connecting to (ADDRESS=(PROTOCOL=tcp)(HOST=)(PORT=1521))
TNS-12541: TNS:no listener
TNS-12560: TNS:protocol adapter error
TNS-00511: No listener
Linux Error: 111: Connection refused
MY ENVIRONMENT:
Linux CENTOS
[oracle@lb2 xe]$ env | sort
ANT_HOME=/usr/bin/ant
_=/bin/env
CLASSPATH=/u01/app/oracle/product/11.2.0/xe/jlib:/u01/app/oracle/product/11.2.0/xe/rdbms/jlib
DISPLAY=localhost:10.0
G_BROKEN_FILENAMES=1
HISTSIZE=1000
HOME=/home/oracle
HOSTNAME=lb2
INPUTRC=/etc/inputrc
JAVA_HOME=/usr/bin/java
LANG=en_US.UTF-8
LD_LIBRARY_PATH=/u01/app/oracle/product/11.2.0/xe/lib
LESSOPEN=|/usr/bin/lesspipe.sh %s
LOGNAME=oracle
LS_COLORS=no=00:fi=00:di=00;34:ln=00;36:pi=40;33:so=00;35:bd=40;33;01:cd=40;33;01:or=01;05;37;41:mi=01;05;37;41:ex=00;32:*.cmd=00;32:*.exe=00;32:*.com=00;32:*.btm=00;32:*.bat=00;32:*.sh=00;32:*.csh=00;32:*.tar=00;31:*.tgz=00;31:*.arj=00;31:*.taz=00;31:*.lzh=00;31:*.zip=00;31:*.z=00;31:*.Z=00;31:*.gz=00;31:*.bz2=00;31:*.bz=00;31:*.tz=00;31:*.rpm=00;31:*.cpio=00;31:*.jpg=00;35:*.gif=00;35:*.bmp=00;35:*.xbm=00;35:*.xpm=00;35:*.png=00;35:*.tif=00;35:
MAIL=/var/spool/mail/oracle
OLDPWD=/home/oracle
ORACLE_BASE=/u01/app/oracle
ORACLE_HOME=/u01/app/oracle/product/11.2.0/xe
ORACLE_HOSTNAME=lb2.po.org
ORACLE_SID=xe
ORACLE_UNQNAME=XE
PATH=/u01/app/oracle/product/11.2.0/xe/lib:/usr/sbin:/usr/kerberos/bin:/usr/local/bin:/bin:/usr/bin:/usr/bin/ant:/u01/app/oracle/product/11.2.0/xe/network/admin:/usr/bin/java:/home/oracle/bin:/u01/app/oracle/product/11.2.0/xe/bin:/u01/app/oracle/product/11.2.0/xe/jlib:/u01/app/oracle/product/11.2.0/xe/rdbms/jlib
PWD=/u01/app/oracle/product/11.2.0/xe
SHELL=/bin/bash
SHLVL=1
SSH_ASKPASS=/usr/libexec/openssh/gnome-ssh-askpass
SSH_CLIENT=192.168.255.162 63382 22
SSH_CONNECTION=192.168.255.162 63382 192.168.5.166 22
SSH_TTY=/dev/pts/2
TERM=xterm
TMPDIR=/tmp
TMP=/tmp
TNS_ADMIN=/u01/app/oracle/product/11.2.0/xe/network/admin
USER=oracle
MY listener.ora:
listener_ssl =
(DESCRIPTION_LIST =
(DESCRIPTION =
(ADDRESS = (PROTOCOL = TCPS)(HOST = lb2.po.org)(PORT = 2484))
)
)
SID_LIST_listener_ssl=
(SID_LIST=
(SID_DESC=
(GLOBAL_DBNAME=XE)
(ORACLE_HOME=/u01/app/oracle/product/11.2.0/xe)
(SID_NAME=XE)
)
(SID_DESC=
(SID_NAME=plsextproc)
(ORACLE_HOME=/u01/app/oracle/product/11.2.0/xe)
(PROGRAM=extproc)
)
)
MY $ORACLE_HOME/dbs/initxe.ora FILE:
[oracle@lb2 dbs]$ cat initxe.ora
#
db_name=XE
#local_listener=LISTENER_SSL
control_files=/u01/app/oracle/oradata/XE/control.dbf
undo_management=auto
undo_tablespace=undotbs1
sga_target=376M
pga_aggregate_target=224M
sessions=20
open_cursors=300
remote_login_passwordfile=EXCLUSIVE
compatible=11.2.0.0.0
diagnostic_dest=/u01/app/oracle/product/11.2.0/xe/log
audit_file_dest=/u01/app/oracle/product/11.2.0/xe/log
job_queue_processes=4
shared_servers=4
db_recovery_file_dest_size=10G
db_recovery_file_dest="/u01/app/oracle/fast_recovery_area"
dispatchers="(PROTOCOL=TCPS)(LISTENER=listener_ssl)"
-----
So, I tried this:
[oracle@lb2 admin]$ lsnrctl
LSNRCTL for Linux: Version 11.2.0.2.0 - Production on 31-MAY-2012 15:34:47
Copyright (c) 1991, 2011, Oracle. All rights reserved.
Welcome to LSNRCTL, type "help" for information.
LSNRCTL> stop
Connecting to (ADDRESS=(PROTOCOL=tcp)(HOST=)(PORT=1521))
The command completed successfully
LSNRCTL> set current_listener listener_ssl
Current Listener is listener_ssl
And got this:
LSNRCTL> reload
Connecting to (DESCRIPTION=(ADDRESS=(PROTOCOL=TCPS)(HOST=lb2.po.org)(PORT=2484)))
TNS-12541: TNS:no listener
TNS-12560: TNS:protocol adapter error
TNS-00511: No listener
Linux Error: 111: Connection refused
Needless to say, I don't really have a clue what I'm doing but I am up on a deadline and have to get this SSL connection up and going. Any help would be VERY much appreciated.
Thanks
Edited by: 935069 on May 31, 2012 12:40 PM