| Oracle® Database Net Services Administrator's Guide 10g Release 1 (10.1) Part Number B10775-01 |
|
|
View PDF |
| Oracle® Database Net Services Administrator's Guide 10g Release 1 (10.1) Part Number B10775-01 |
|
|
View PDF |
This section describes the new networking features of Oracle Database 10g 10g Release 1 (10.1) and provides pointers to additional information. New features information from previous releases is also retained to help those users migrating to the current release.
The following sections describe the new networking features:
Oracle Database 10g 10g Release 1 (10.1) New Features in Oracle Net Services
Oracle9i Release 2 (9.2) New Features in Oracle Net Services
Oracle9i Release 1 (9.0.1) New Features in Oracle Net Services
The new features for Oracle Net Services in 10g Release 1 (10.1) include:
Naming Changes
Easy Connect Naming Method for TCP/IP Environments
For TCP/IP environments, you can simplify client configuration by using the easy connect naming method. The easy connect naming method simplifies network management by allowing clients to connect to Oracle Database 10g database services without first configuring net service names. Instead, clients make connections with the host name and optional port and service name of the database.
De-support of Oracle Names
Oracle Names is no longer supported as a naming method in Oracle Database 10g. You must migrate to directory naming for centralized storage of connect identifiers.
Simplified Directory Naming Configuration
Clients no longer require local directory usage configuration (ldap.ora). If an Oracle Internet Directory Server is registered with the Domain Name System (DNS), clients can automatically locate a directory server, eliminating the need for local configuration.
Backing Up Directory Naming Entries to a Local Naming File
You can now export directory naming entries into a local tnsnames.ora file. Clients can use the locally saved file when a directory server is unavailable or when clients have not been updated to use directory naming.
Performance Enhancements
High-Speed Network Support
Oracle protocol support now includes support for the SDP protocol for Infiniband high-speed networks. The SDP protocol is a high-speed communication protocol that speeds up performance between the Oracle Application Server and the database. By using SDP, applications place most of the messaging burden upon the network interface card, freeing the CPU for other tasks.
|
NOTE: The SDP protocol is only available on some platforms. Please refer to the operating system-specific documentation for more information. |
I/O Buffer Space Configuration
To ensure the continuous flow of data and better utilization of network bandwidth, you can specify the I/O buffer space limit for send and receive operations of sessions.
Network Outage Detection Parameters
You can limit the time permitted for send and receive operations, preventing the database server from being blocked by a network I/O request.
Configuration with Oracle Enterprise Manager
Oracle Enterprise Manager provides the following support in 10g:
Configuration and administration of listeners
Configuration of the local naming and directory naming methods
Configuration of network files across multiple file systems
Simplified Dispatcher Configuration
In 10g, the DISPATCHERS parameter does not have to be specifed in order to enable shared servers. If it is not and shared server is configured then a dispatcher listening on TCP/IP port 1521 is started automatically. Configuration of the DISPATCHERS parameter is required for dispatchers that do not listen on the TCP/IP protocol or require other optional subparameters.
Oracle Connection Manager Improvements
New scalable architecture that includes a listener process, monitor process, and multiple gateway processes
Dynamic configuration
Enhanced access control
The new features for Oracle Net Services in release 2 (9.2) include:
Net Service Alias Support in Directory Server
Oracle Enterprise Manager and Oracle Net Manager enables you to create, modify, or delete a net service alias to reference a net service name or database service object in Oracle Internet Directory. In addition to exporting database objects, the Oracle Names Control utility provides support for exporting alias objects stored in an Oracle Names server to a directory server or indirectly to an LDAP Data Interchange Format (LDIF) file.
|
See Also:
|
Directory Naming Usage Control
Using a new security mechanism for directory naming, you can assign a group as the owner of the OracleNetAdmins group. The default owner is the OracleNetAdmins group itself. By changing the ownership of this group, you can separate the OracleNetAdmins members who manage the directory naming entries from those users who add members to OracleNetAdmins group.
Oracle Net Services provides a new Trace Assistant tool that converts existing trace file text into a more readable format.
Dynamic Support for Local and Remote Listener Parameters
You can use SQL statement ALTER SYSTEM SET to dynamically update the LOCAL_LISTENER and REMOTE_LISTENER parameters. When these parameters are dynamically updated, the PMON process registers this information with the listener.
In an ongoing effort to strengthen networking security, the following new enhancements are available:
New parameters that enable you to limit resource consumption by unauthorized users. These parameters constrain the amount of time in which resources can be held prior to authentication. By limiting resource consumption, you can help to mitigate denial-of-service attacks.
The Listener Control utility STATUS command is now a privileged command, requiring the SET PASSWORD command when a password is set.
The new features for Oracle Net Services in release 1 (9.0.1) include:
Name Change to Networking Components
To provide consistency with Oracle9i, several name changes to networking products, features, and parameters have been made in this release. The following table maps the former product and feature names to their new names.
The following table maps the multi-threaded server (MTS) parameters and dynamic view names to the new names associated with shared server. Except for the MTS_MAX_SERVERS parameter, the old parameter names are maintained for backward compatibility to Oracle8i. Oracle Corporation recommends migrating to the new names.
Connection Load Balancing for Dedicated Server Configurations
Configurations that use dedicated servers can now use the connection load balancing feature that was previously available only for shared server configurations.
Multiple Oracle Context Creation in Oracle Net Configuration Assistant
Oracle Net Configuration Assistant enables you to create multiple Oracle Contexts to facilitate management of a complex naming structure in a directory server.
|
See Also: Online help in Oracle Net Configuration Assistant |
Oracle Names LDAP Proxy Servers
In future releases, Oracle Names will not be supported as a centralized naming method. As Oracle Names is deprecated in favor of directory naming with LDAP-compliant directory servers, Oracle Names LDAP Proxy servers provide a way for release 8.1.5 or previous clients that do not support directory naming to use the same data as is used for directory naming. Oracle Names LDAP Proxy servers are Oracle Names servers that have been configured to proxy for LDAP-compliant directory servers. Upon startup, Oracle Names LDAP Proxy servers obtain network object information from a directory server. This provides a single point of definition for all data in a directory server and does not require that both Oracle Names servers and directory servers be maintained separately and simultaneously.
Unsupported Features
In an effort to streamline configuration decisions for the Internet, the following subsections describe the features and the configuration file that are no longer being supported:
Identix and SecurID Authentication Methods
If you are using Identix or SecurID authentication methods, provided by Oracle Advanced Security, Oracle Corporation recommends migrating to one of the following authentication methods:
CyberSafe
RADIUS
Kerberos
|
See Also: Oracle Advanced Security Administrator's Guide |
Novell Directory Services (NDS) External Naming and NDS Authentication
Support for NDS as an authentication method and as an external naming method is no longer supported. If you are using NDS as an external naming method, Oracle Corporation recommends using directory naming instead.
Net8 OPEN, which provided an application program interface (API) that enabled programmers to develop both database and non-database applications, is no longer supported.
Prestarted dedicated server processes are no longer supported. Instead, configure shared server to improve scalability and system resource usage.
The protocol.ora file is no longer supported.
Parameters in the protocol.ora file have been merged into the sqlnet.ora file. These parameters enable you to configure access control to the database, as well as no delays in TCP/IP buffer flushing. These parameters include:
TCP.NODELAY
TCP.EXCLUDED_NODES
TCP.INVITED_NODES
TCP.VALIDNODE_CHECKING
If you have a protocol.ora file in the $ORACLE_HOME/network/admin directory on UNIX, and the ORACLE_HOME\network\admin directory on Windows operating systems, Oracle Net Manager, when first started, automatically merges the protocol.ora parameters into the sqlnet.ora file.
There may be operating system-specific parameters in protocol.ora that are node specific. For this reason, Oracle Corporation recommends not sharing sqlnet.ora with other nodes after merging or adding these parameters.
|
See Also: Oracle operating system-specific documentation |
Protocol addresses using the SPX or LU6.2 protocol must be replaced. Oracle Net provides support for the following network protocols:
TCP/IP
TCP/IP with SSL
Named Pipes
These Oracle Net features introduced in Oracle8i also apply to Oracle9i:
Client Connection Features
Client Load Balancing—When more than one listener supports a service, a client can randomize requests to the various listeners.
Connect-Time Failover—When more than one listener supports a service, a client can be configured to fail over the client request to a different listener if the first listener fails.
Network information can now be stored in a centralized LDAP-compliant directory service, including Oracle Internet Directory and Microsoft Active Directory.
Instance Role Specification for Primary and Secondary Configurations
With the connect descriptor INSTANCE_ROLE parameter, you can specify a connection to the primary or secondary instance of Oracle9i Real Application Clusters configurations.
Listener Features
Service Naming—Oracle8i database services are identified by a service name rather than an Oracle System Identifier (SID). This impacts the way connect descriptors are defined.
Direct Hand-Off—The listener has the ability to hand off requests directly to a dispatcher, without issuing a redirect message back to the client.
Service Registration—Database instances register information with the listener during database startup.
Connection Load Balancing—The listener is able to balance the number of active connections among various instances and shared server dispatchers for the same service.
Oracle Net Configuration Assistant
Oracle Net Configuration Assistant is a post-installation tool that performs basic configuration. After installation, it automatically configures default configuration files.
|
See Also: "Oracle Net Configuration Assistant" and Oracle operating system-specific installation guides |
Database services are identified by service name and instance name rather than SID.
TCP/IP with Secure Sockets Layer (SSL) protocol
A protocol for client/server authentication over a network using TCP/IP and the SSL.
