The two most commonly used features of Sqlnet.ora are:
Client Action = = Connection method specifies the order in which the name of the client is named to resolve the query. ==>> NAMES. Directory_path= (TNSNames, Onames, hostname)
Service side and client at the same time = = Authentication Way ==>> sqlnet. Authentication_services
Sqlnet.ora content Details of the official documents: http://docs.oracle.com/cd/B19306_01/network.102/b14213/sqlnet.htm#NETRF006
Configure Sqlnet.ora to restrict IP access to Oracle http://blog.csdn.net/leshami/article/details/6629141
Some important parameters and explanations:
1.bequeath_detach
The switch that controls the signal handling in the UNIX system is the default no, that is, signal handling open.
2.default_sdu_size
Specifies the size of the session data Unit (SDU), which is bytes, and recommends that you set this parameter on both the client side and the server side to ensure that the same SDU size is used when linking. If the client-side and server-side configured values do not match, the smaller ones are used.
3.log_directory_client/log_directory_server
Specify the location of the client-side/server log file
4.NAMES. Default_domain
Set the domain where the client resolves the name
5.NAMES. Directory_path
Specifies the order of the client name resolution method, which defaults to Names.directory_path= (TNSNames, Onames, hostname)
The value can be TNSNAMES,LDAP (dictionary server), Hostname/ezconnect,cds (Distributed Environment), NIS (Network Information Service (NIS)
6.sqlnet_allowed_logon_versions
Specifies the version of Oracle running the link sqlnet_allowed_logon_versions= (10,9,8)
7.SQLNET. Authentication_services
Specify to start one or more authentication services
Authentication Methods Available with Oracle Net Services:
None for no authentication methods. A valid username and password can is used to access the database.
All to all authentication methods
NTS for Windows NT native authentication
8.SQLNET. Inbound_connect_timeout
Specifies the time when the client does not have a link success timeout. Oracle interrupts the link and complains when the timeout expires.
9.ssl_version
Specify the version of the SSL link
10.TCP. Excluded_nodes
Specifies that nodes that are not allowed access to Oracle can use host names or IP addresses
11.TCP. Invited_nodes
Specifies that clients that are allowed access to DB have higher priority than tcp.excluded_nodes.
12.TCP. Validnode_checking
Use this parameter to enable the top two parameters.
13.TNSPING. Trace_directory
Use this parameter to specify the directory of the tnsping trace file, which is the default $oracle_home/network/trace directory
More parameter information see: Oracle Database Net Services Reference
##################
The sequential way of parsing a query when connected experiment: ==>> NAMES. Directory_path= (TNSNames, Onames, hostname)
Instructions on the official document: use the parameter NAMES. Directory_path to specify the "naming methods used for client name resolution lookups.
NAMES. directory_path==>> specifies the order in which name resolution queries are used for client-side naming methods. No connection mode in this parameter will be available.
[Oracle@ocm1 admin]$ Cat Tnsnames.ora
BYS3 =
(DESCRIPTION =
(address = (PROTOCOL = TCP) (HOST = 192.168.1.211) (PORT =1521)
(Connect_data =
(SERVER = dedicated)
(service_name = BYS3)
)
)
1. Configuration Sqlnet.ora contains: names.directory_path= (tnsnames), can only use the local name in TNSNames, easy connection will error
Example:
[Oracle@ocm1 admin]$ VI Sqlnet.ora
NAMES. Directory_path= (TNSNames)
~
[ORACLE@OCM1 admin]$ sqlplus BYS/BYS@BYS3--use local name to connect
Sql*plus:release 10.2.0.1.0-production on Fri 17 11:13:16 2014
Copyright (c) 1982, +, Oracle. All rights reserved.
Connected to:
Oracle Database 11g Enterprise Edition release 11.2.0.4.0-production
With the partitioning, OLAP, Data Mining and real application testing options
Sql> exit
[ORACLE@OCM1 admin]$ sqlplus BYS/BYS@192.168.1.211:1521/BYS3--Use simple connection method, cannot connect
Sql*plus:release 10.2.0.1.0-production on Fri 17 11:13:27 2014
Copyright (c) 1982, +, Oracle. All rights reserved.
ERROR:
Ora-12154:tns:could not resolve the connect identifier specified
2. Configuration Sqlnet.ora contains: names.directory_path= (Tnsnames,ezconnect), at this time use TNSNames in this place name and simple connection can be
[Oracle@ocm1 admin]$ Cat Sqlnet.ora
NAMES. Directory_path= (Tnsnames,ezconnect)
Use of this place name and simple connection in TNSNames can be
[Oracle@ocm1 admin]$ Sqlplus Bys/bys@bys3
Sql*plus:release 10.2.0.1.0-production on Fri 17 11:18:47 2014
Copyright (c) 1982, +, Oracle. All rights reserved.
Connected to:
Oracle Database 11g Enterprise Edition release 11.2.0.4.0-production
With the partitioning, OLAP, Data Mining and real application testing options
Sql>
[Oracle@ocm1 admin]$ Sqlplus Bys/bys@192.168.1.211:1521/bys3
Sql*plus:release 10.2.0.1.0-production on Fri 17 11:13:59 2014
Copyright (c) 1982, +, Oracle. All rights reserved.
Connected to:
Oracle Database 11g Enterprise Edition release 11.2.0.4.0-production
With the partitioning, OLAP, Data Mining and real application testing options
Sql> exit
#################################################
Service side and client at the same time = = Authentication Way ==>> sqlnet. Authentication_services
There are three parameters:
None for no authentication methods. A valid username and password can is used to access the database.
All to all authentication methods
NTS for Windows NT native authentication---this is only useful for Windows.
When client and server sqlnet.authentication_services= (all) cannot log in with aa/bb username password. One side is none to connect.
1. Server-side does not configure Sqlnet.ora files, the client configuration sqlnet.authentication_services= (all), you can log on normally.
[Oracle@ocm1 admin]$ Cat Sqlnet.ora
NAMES. Directory_path= (Tnsnames,ezconnect)
Sqlnet. Authentication_services= (All)
[Oracle@ocm1 admin]$ Sqlplus Bys/bys@bys3
Sql*plus:release 10.2.0.1.0-production on Fri 17 11:24:45 2014
Copyright (c) 1982, +, Oracle. All rights reserved.
Connected to:
Oracle Database 11g Enterprise Edition release 11.2.0.4.0-production
With the partitioning, OLAP, Data Mining and real application testing options
Sql>
2. When client and server are configured simultaneously: sqlnet.authentication_services= (All) cannot login with aa/bb username password
--The next step:
[Oracle@bys3 admin]$ Cat Sqlnet.ora
Sqlnet. Authentication_services= (All)
Test from OCM1 Host: Login error: ORA-12641:
[Oracle@ocm1 admin]$ Sqlplus Bys/bys@bys3
Sql*plus:release 10.2.0.1.0-production on Fri 17 11:27:29 2014
Copyright (c) 1982, +, Oracle. All rights reserved.
ERROR:
Ora-12641:authentication Service failed to initialize
At this point, the client or one of the server's Sqlnet.ora changed to Sqlnet.authentication_services= (NONE), you can connect-the same as the first step of the experiment.
More Wonderful content: http://www.bianceng.cnhttp://www.bianceng.cn/database/Oracle/