the IP address of the Oracle Control connection database
Simple set of allowed IP and forbidden IP
in 9i and later, modifying Sqlnet.ora is actually the best and quickest way
1: Modify the Sqlnet.ora file
In the Linux version of Oracle, the default is no Sqlnet.ora for this file
$ cd $ORACLE _home/network/admin
$ VI Sqlnet.ora
#增加如下部分
Tcp.validnode_checking=yes
#允许访问的IP
Tcp.invited_nodes= (192.168.100.252,192.168.100.253)
#禁止访问的IP
Tcp.excluded_nodes= (192.168.100.222,192.168.100.232)
2: Restart monitoring
$ lsnrctl Stop
$ lsnrctl Start
this time, Only clients with IP address 192.168.100.252 and IP address 192.168.100.253 can connect to the database, while clients with IP address 192.168.100.222 and IP address 192.168.100.232 cannot connect to the database. when clients of other IPs use PL/SQL to connect to the database, the following error is displayed:
Issues to be aware of:
1. You need to set the parameter to Yes to activate it.
2, it is recommended to set the allowed IP access, because the IP address may be arbitrarily modified, can not play its own purpose.
3. You need to restart the listener to take effect.
4, this method is only suitable for the TCP protocol.
5. This configuration is suitable for 9i and above. Versions prior to 9i use file Protocol.ora.
6, directly connected to the database on the server is not affected.
7, this limit is only for IP detection, for the user name detection is not supported.
Linux/centos oracle10g Control Connection IP Address