本機(jī)監(jiān)聽先看listener.ora的配置是主機(jī)名還是IP，必須加入到下面的列表里。支持IP段設(shè)置。
[oracle@ admin]$ more sqlnet.ora
tcp.validnode_checking = yes ? ? ? ? ? ? ? ? ? ? ? ? ? ??
tcp.invited_nodes = (本機(jī)IP,192.168.1.0/24,10.1.1.1)
#tcp.excluded_nodes = (ip1,ip2)?

第一次啟用ip限制后重啟監(jiān)聽生效：lsnrctl stop
lsnrctl start
下次修改sqlnet.ora，只需lsnrctl reload即可。

12c的參考:

https://docs.oracle.com/en/database/oracle/oracle-database/12.2/netrf/parameters-for-the-sqlnet-ora-file.html#GUID-5C3AB641-7541-4CE9-BC9E-BA5DD30616A8

5.2.68?TCP.EXCLUDED_NODES

Purpose

To specify which clients are denied access to the database.

Usage Notes

This parameter is only valid when the?TCP.VALIDNODE_CHECKING?parameter is set to?yes.

This parameter can use wildcards for IPv4 addresses and CIDR notation for IPv4 and IPv6 addresses.

Syntax

CopyTCP.EXCLUDED_NODES=(hostname | ip_address, hostname | ip_address, ...)

Example

CopyTCP.EXCLUDED_NODES=(finance.us.example.com, mktg.us.example.com, 192.0.2.25,172.30.*, 2001:DB8:200C:417A/32)

5.2.69?TCP.INVITED_NODES

Purpose

To specify which clients are allowed access to the database. This list takes precedence over the?TCP.EXCLUDED_NODES?parameter if both lists are present.

Syntax

CopyTCP.INVITED_NODES=(hostname | ip_address, hostname | ip_address, ...)

Usage Notes

• This parameter is only valid when the?TCP.VALIDNODE_CHECKING?parameter is set to?yes.

• This parameter can use wildcards for IPv4 addresses and CIDR notation for IPv4 and IPv6 addresses.

Example

CopyTCP.INVITED_NODES=(sales.us.example.com, hr.us.example.com, 192.0.*, 2001:DB8:200C:433B/32)

總結(jié)

以上是生活随笔為你收集整理的oracle设置ip白名单的全部內(nèi)容，希望文章能夠幫你解決所遇到的問題。

如果覺得生活随笔網(wǎng)站內(nèi)容還不錯，歡迎將生活随笔推薦給好友。