标签云
asm 恢复 asm恢复 bbed bootstrap$ dul In Memory kcbzib_kcrsds_1 kccpb_sanity_check_2 kfed MySQL恢复 ORA-00312 ORA-00607 ORA-00704 ORA-01110 ORA-01555 ORA-01578 ORA-08103 ORA-600 2662 ORA-600 2663 ORA-600 3020 ORA-600 4000 ORA-600 4137 ORA-600 4193 ORA-600 4194 ORA-600 16703 ORA-600 kcbzib_kcrsds_1 ORA-600 KCLCHKBLK_4 ORA-15042 ORA-15196 ORACLE 12C oracle dul ORACLE PATCH Oracle Recovery Tools oracle加密恢复 oracle勒索 oracle勒索恢复 oracle异常恢复 ORACLE恢复 Oracle 恢复 ORACLE数据库恢复 oracle 比特币 OSD-04016 YOUR FILES ARE ENCRYPTED 勒索恢复 比特币加密文章分类
- Others (2)
- 中间件 (2)
- WebLogic (2)
- 操作系统 (100)
- 数据库 (1,609)
- DB2 (22)
- MySQL (71)
- Oracle (1,473)
- Data Guard (50)
- EXADATA (7)
- GoldenGate (21)
- ORA-xxxxx (158)
- ORACLE 12C (72)
- ORACLE 18C (6)
- ORACLE 19C (13)
- ORACLE 21C (3)
- Oracle 23ai (3)
- Oracle ASM (65)
- Oracle Bug (7)
- Oracle RAC (47)
- Oracle 安全 (6)
- Oracle 开发 (27)
- Oracle 监听 (27)
- Oracle备份恢复 (535)
- Oracle安装升级 (85)
- Oracle性能优化 (62)
- 专题索引 (5)
- 勒索恢复 (75)
- PostgreSQL (18)
- PostgreSQL恢复 (6)
- SQL Server (27)
- SQL Server恢复 (8)
- TimesTen (7)
- 达梦数据库 (2)
- 生活娱乐 (2)
- 至理名言 (11)
- 虚拟化 (2)
- VMware (2)
- 软件开发 (36)
- Asp.Net (9)
- JavaScript (12)
- PHP (2)
- 小工具 (19)
-
最近发表
- 11.2.0.4最新psu-202404
- ORA-600 2131故障处理
- 收集统计信息报ORA-00600 16515问题解决
- rm -rf误删Oracle数据库恢复
- 分布式存储故障导致数据库无法启动故障处理
- read_me_recover_tn勒索恢复
- WINDOWS 下用dg broker搭建ADG(单机to单机)
- 存储故障后oracle报—ORA-01122/ORA-01207故障处理
- Oracle 23ai rm redo*.log恢复
- Oracle 发布计划—包含Oracle 23ai版本
- Oracle 23ai 变化之—-默认数据文件变为bigfile
- PostgreSQL解析wal日志之—walminer
- Oracle 19c/21c最新patch信息-202404
- PostgreSQL恢复系列:pg_filedump批量处理
- PostgreSQL部分主要字典信息
- PostgreSQL恢复系列:pg_filedump恢复字典构造
- PostgreSQL 16 源码安装
- ORA-00742 ORA-00312 恢复
- 数据库open成功后报ORA-00353 ORA-00354错误引起的一系列问题(本质ntfs文件系统异常)
- ORA-600 ktsiseginfo1故障
分类目录归档:Oracle 监听
TNS-12525 TNS-12535 TNS-12606
一、发现TNS-12525错误
检查公司服务器listener日志中周期性发现如下错误提示:
08-DEC-2011 02:25:34 * (CONNECT_DATA=(SID=ora9i)) * (ADDRESS=(PROTOCOL=tcp)(HOST=211.155.236.234)(PORT=4877)) * establish * ora9i * 0 08-DEC-2011 02:25:35 * (CONNECT_DATA=(SID=ora9i)) * (ADDRESS=(PROTOCOL=tcp)(HOST=211.155.236.234)(PORT=4879)) * establish * ora9i * 0 08-DEC-2011 02:25:43 * <unknown connect data> * (ADDRESS=(PROTOCOL=tcp)(HOST=211.155.236.234)(PORT=2486)) * establish * <unknown sid> * 12525 TNS-12525: TNS:listener has not received client's request in time allowed TNS-12535: TNS:operation timed out TNS-12606: TNS: Application timeout occurred 08-DEC-2011 02:26:02 * <unknown connect data> * (ADDRESS=(PROTOCOL=tcp)(HOST=211.155.236.234)(PORT=4876)) * establish * <unknown sid> * 12525 TNS-12525: TNS:listener has not received client's request in time allowed TNS-12535: TNS:operation timed out TNS-12606: TNS: Application timeout occurred
继续检查日志发现,只有211.155.236.234是外网ip,其他都是通过内网ip访问,都未报类此错误。初步怀疑是公司和运营商网络之间的防火墙导致
二、数据库版本
SQL> select * from v$version; BANNER ---------------------------------------------------------------- Oracle Database 10g Enterprise Edition Release 10.2.0.4.0 - 64bi PL/SQL Release 10.2.0.4.0 - Production CORE 10.2.0.4.0 Production TNS for Linux: Version 10.2.0.4.0 - Production NLSRTL Version 10.2.0.4.0 - Production
三、MOS说明
Symptoms At regular intervals (every three hours), you see new connections rejected with TNS-12525 "listener has not received client's request in time allowed". The listener log shows the following error stack : 10-APR-2008 17:39:15 * <unknown connect data> * (ADDRESS=(PROTOCOL=tcp)(HOST=10.221.50.31)(PORT=4184)) * establish * <unknown sid> * 12525 TNS-12525: TNS:listener has not received client's request in time allowed TNS-12535: TNS:operation timed out TNS-12606: TNS: Application timeout occurred At the same time the firewall log reports : "TCP packet out of state: First packet isn't SYN; tcp_flags: PUSH-ACK" Wireshark (Ethereal) traces show the TCP 3-way handshake never completes for those connections. Changes Value of idle timer was recently changed at firewall level. Cause Firewall closes ports not allowing the 3-way handshake to complete at TCP level. Solution Increase the firewall's idle timeout interval.
发表在 Oracle 监听
评论关闭
因域名解析导致数据库连接延迟分析
一、现状记录
[oracle@node1 ~]$ /sbin/ifconfig eth1 Link encap:Ethernet HWaddr 00:25:90:04:AB:6B inet addr:192.168.9.140 Bcast:192.168.15.255 Mask:255.255.248.0 inet6 addr: fe80::225:90ff:fe04:ab6b/64 Scope:Link UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:23530402 errors:0 dropped:0 overruns:0 frame:0 TX packets:10959123 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 RX bytes:15308483748 (14.2 GiB) TX bytes:10087987532 (9.3 GiB) --IP地址为192.168.9.140 [oracle@node1 ~]$ more /etc/hosts # Do not remove the following line, or various programs # that require network functionality will fail. 127.0.0.1 ecp-db localhost.localdomain localhost 192.168.9.140 node1.srtcloud.com --域名node1.srtcloud.com对应ip192.168.9.140 [oracle@node1 ~]$ lsnrctl status Connecting to (DESCRIPTION=(ADDRESS=(PROTOCOL=TCP)(HOST=node1.srtcloud.com)(PORT=1521))) STATUS of the LISTENER ------------------------ Alias LISTENER Version TNSLSNR for Linux: Version 10.2.0.5.0 - Production Start Date 04-NOV-2011 09:08:51 Uptime 21 days 4 hr. 58 min. 45 sec Trace Level off Security ON: Local OS Authentication SNMP OFF Listener Parameter File /opt/oracle/product/10.2.0/db_1/network/admin/listener.ora Listener Log File /opt/oracle/product/10.2.0/db_1/network/log/listener.log Listening Endpoints Summary... (DESCRIPTION=(ADDRESS=(PROTOCOL=tcp)(HOST=node1.srtcloud.com)(PORT=1521))) Services Summary... Service "ecp" has 2 instance(s). Instance "ecp", status UNKNOWN, has 1 handler(s) for this service... Instance "ecp", status READY, has 1 handler(s) for this service... Service "ecpXDB" has 1 instance(s). Instance "ecp", status READY, has 1 handler(s) for this service... Service "ecp_XPT" has 1 instance(s). Instance "ecp", status READY, has 1 handler(s) for this service... Service "ora11g" has 2 instance(s). Instance "ora11g", status UNKNOWN, has 1 handler(s) for this service... Instance "ora11g", status READY, has 1 handler(s) for this service... Service "ora11gXDB" has 1 instance(s). Instance "ora11g", status READY, has 1 handler(s) for this service... The command completed successfully --说明:ora11g是oracle 11g,ecp是oracle 10g --当前使用域名node1.srtcloud.com监听 [oracle@node1 ~]$ more /opt/oracle/product/10.2.0/db_1/network/admin/tnsnames.ora # tnsnames.ora Network Configuration File: /opt/oracle/product/10.2.0/db_1/network/admin/tnsnames.ora # Generated by Oracle configuration tools. ECP = (DESCRIPTION = (ADDRESS = (PROTOCOL = TCP)(HOST = node1.srtcloud.com)(PORT = 1521)) (CONNECT_DATA = (SERVER = DEDICATED) (SERVICE_NAME = ecp) ) ) ORA11G = (DESCRIPTION = (ADDRESS = (PROTOCOL = TCP)(HOST = node1.srtcloud.com)(PORT = 1521)) (CONNECT_DATA = (SERVER = DEDICATED) (SERVICE_NAME = ora11g) ) ) --tns也通过域名访问 [oracle@node1 ~]$ more /etc/resolv.conf nameserver 211.155.235.201 nameserver 211.155.235.188 --当前有效的dns服务器 [oracle@node1 ~]$ more /etc/nsswitch.conf |grep hosts: hosts: files dns --域名解析顺序
二、数据库正常工作分析
1、tns工作:客户端通过tns访问数据库,tns配置的是域名访问,所以需要解析,因为此刻解析的顺序是先利用/etc/hosts解析,所以读取hosts文件,获取到ip,然后访问对应数据库,和监听接触。
2、监听工作:监听的是域名,其实也是通过hosts解析成ip的
3、这里能够正常的工作,是因为hosts文件解析了域名
三、模拟数据库访问延迟
[oracle@node1 ~]$ more /etc/nsswitch.conf |grep hosts: hosts: dns files --先使用dns服务器解析,再使用hosts文件 [oracle@node1 ~]$ more /etc/resolv.conf nameserver 11.1.1.1 --无效的dns服务器 [oracle@node1 ~]$ sqlplus chf/xifenfei@ora11g SQL*Plus: Release 10.2.0.5.0 - Production on Fri Nov 25 14:44:55 2011 Copyright (c) 1982, 2010, Oracle. All Rights Reserved. --会在这里一个很长的时间等待 [oracle@node1 ~]$ lsnrctl status LSNRCTL for Linux: Version 10.2.0.5.0 - Production on 25-NOV-2011 14:48:26 Copyright (c) 1991, 2010, Oracle. All rights reserved. Connecting to (DESCRIPTION=(ADDRESS=(PROTOCOL=TCP)(HOST=node1.srtcloud.com)(PORT=1521))) --也会一个长时间的等待 --问题原因:就是因为解析域名的时候,先去访问dns服务器,因为该ip非dns服务器ip,所以会一直等待该ip超时, --然后访问hosts文件获取ip地址(这个就是为什么我们登录或者查看监听状态的时候,会出现如此长的时间的等待)
其实因为dns延迟的现象有很多种,我这里只是举了一个最简单,比较常见的例子,在处理因dns解析的监听延迟的问题上,可以参考下面几点:
1、如果非特殊情况,尽可能使用ip地址在监听和tns中
2、如果是使用域名,请尽可能使用hosts解析,解析顺序配置为files优先(因为dns服务器有很多不确定,不可控因素)
3、如果一定要使用dns服务器解析,请把稳定的dns服务器配置在第一项,尽可能避免出现dns服务器不可达或者不存在该域名的现象
发表在 Oracle 监听
评论关闭
SQLNET.AUTHENTICATION_SERVICES参数说明
一、官方文档说明
作用 Use the parameter SQLNET.AUTHENTICATION_SERVICES to enable one or more authentication services. If authentication has been installed, it is recommended that this parameter be set to either none or to one of the authentication methods. 默认值 None 一般可选值 NONE for no authentication methods. A valid username and password can be used to access the database. ALL for all authentication methods NTS for Windows NT native authentication(An authentication method that enables a client single login access to a Windows NT server and a database running on the server)
为了加深对这几个参数的理解,通过实验证明,这几个参数在不同的系统中的作用
二、win系统
Microsoft Windows [版本 6.1.7601] 版权所有 (c) 2009 Microsoft Corporation。保留所有权利。 C:\Windows\system32>e: E:\>cd E:\oracle\11_2_0\NETWORK\ADMIN #sqlnet.ora文件不存在情况 E:\oracle\11_2_0\NETWORK\ADMIN>dir sqlnet.ora 驱动器 E 中的卷没有标签。 卷的序列号是 38D0-2A35 E:\oracle\11_2_0\NETWORK\ADMIN 的目录 找不到文件 E:\oracle\11_2_0\NETWORK\ADMIN>sqlplus / as sysdba SQL*Plus: Release 11.2.0.1.0 Production on 星期五 11月 11 22:13:57 2011 Copyright (c) 1982, 2010, Oracle. All rights reserved. ERROR: ORA-01031: 权限不足 请输入用户名: #NTS情况 E:\oracle\11_2_0\NETWORK\ADMIN>more sqlnet.ora SQLNET.AUTHENTICATION_SERVICES=(NTS) E:\oracle\11_2_0\NETWORK\ADMIN>sqlplus / as sysdba SQL*Plus: Release 11.2.0.1.0 Production on 星期五 11月 11 22:16:20 2011 Copyright (c) 1982, 2010, Oracle. All rights reserved. 连接到: Oracle Database 11g Enterprise Edition Release 11.2.0.1.0 - Production With the Partitioning, Oracle Label Security, OLAP, Data Mining, Oracle Database Vault and Real Application Testing options #NONE情况 E:\oracle\11_2_0\NETWORK\ADMIN>more sqlnet.ora SQLNET.AUTHENTICATION_SERVICES=(NONE) E:\oracle\11_2_0\NETWORK\ADMIN>sqlplus / as sysdba SQL*Plus: Release 11.2.0.1.0 Production on 星期五 11月 11 22:17:18 2011 Copyright (c) 1982, 2010, Oracle. All rights reserved. ERROR: ORA-01031: 权限不足 请输入用户名: #ALL情况 E:\oracle\11_2_0\NETWORK\ADMIN>more sqlnet.ora SQLNET.AUTHENTICATION_SERVICES=(ALL) E:\oracle\11_2_0\NETWORK\ADMIN>sqlplus / as sysdba SQL*Plus: Release 11.2.0.1.0 Production on 星期五 11月 11 22:18:02 2011 Copyright (c) 1982, 2010, Oracle. All rights reserved. ERROR: ORA-12641: 验证服务无法初始化 请输入用户名:
三、linux系统
[oracle@report ~]$ cd /opt/oracle/product/10.2.0/db_1/network/admin/ #NTS情况 [oracle@report admin]$ more sqlnet.ora SQLNET.AUTHENTICATION_SERVICES = (NTS) [oracle@report admin]$ sqlplus / as sysdba SQL*Plus: Release 10.2.0.4.0 - Production on Fri Nov 11 22:03:51 2011 Copyright (c) 1982, 2007, Oracle. All Rights Reserved. ERROR: ORA-01031: insufficient privileges Enter user-name: #NONE情况 [oracle@report admin]$ more sqlnet.ora SQLNET.AUTHENTICATION_SERVICES = (NONE) [oracle@report admin]$ sqlplus / as sysdba SQL*Plus: Release 10.2.0.4.0 - Production on Fri Nov 11 22:04:31 2011 Copyright (c) 1982, 2007, Oracle. All Rights Reserved. ERROR: ORA-01031: insufficient privileges Enter user-name: #ALL情况 [oracle@report admin]$ more sqlnet.ora SQLNET.AUTHENTICATION_SERVICES = (ALL) [oracle@report admin]$ sqlplus / as sysdba SQL*Plus: Release 10.2.0.4.0 - Production on Fri Nov 11 22:05:07 2011 Copyright (c) 1982, 2007, Oracle. All Rights Reserved. Connected to: Oracle Database 10g Enterprise Edition Release 10.2.0.4.0 - 64bit Production With the Partitioning, OLAP, Data Mining and Real Application Testing options #不存在sqlnet.ora文件情况 [oracle@report admin]$ ll sqlnet.ora ls: sqlnet.ora: No such file or directory [oracle@report admin]$ sqlplus / as sysdba SQL*Plus: Release 10.2.0.4.0 - Production on Fri Nov 11 22:05:41 2011 Copyright (c) 1982, 2007, Oracle. All Rights Reserved. Connected to: Oracle Database 10g Enterprise Edition Release 10.2.0.4.0 - 64bit Production With the Partitioning, OLAP, Data Mining and Real Application Testing options
四、补充说明
1、在win系统中使用all,提示ORA-12641,不是很清楚原因
2、在nts只有在win系统中有用,linux中无用
3、当不存在sqlnet.ora文件时,linux中可以正常登录,win中不能
发表在 Oracle 监听
评论关闭