[exabelux] Re: Question about VLANs and EXADATA

• From: Freek D'Hooge <freek.dhooge@xxxxxxxxx>
• To: exabelux@xxxxxxxxxxxxx
• Date: Sun, 15 Nov 2015 16:50:59 +0100

Hi,

If you are using 12c, you will be able to create an additional scan
address \ listener for this.
With 11g, you will indeed have to use the list of vip addresses when
connecting on the second subnet.

In any case, you will need to switch from the local_listener /
remote_listener parameters to the listener_networks parameter to avoid
(attempts) of cross-talk, causing clients not able to connect.


regards,

Freek

On vr, 2015-11-13 at 10:40 +0000, Pondichy Sébastien wrote:

Hi everyone,



I’m posting on this list to get some wisdom from you about network
segregation and EXADATA.



First let me give you the context



We are running 2 EXADATA boxes on different sites.

Box A is for production/ACC DBs

Box B is for DEV/TEST + DRP DBs (Production DBs are protected via Data
Guard)



We do not use RAC or RAC On node due to financial constraints and no
real need for scalability or super-HAJ



Our EXADATA boxes are hosting DBs for different environments (named
standard and industrial – related to the business processes that use
them).

Now our architects want to segregate the standard and industrial
networks.

On EXADATA we will thus need to handle 2 different networks that
cannot be routed (strict denial on this from security / architect
team)

We are only using the copper 1/10 GB NICs for the client access.

I know we can activate and configure the 10 GB fiber NICs to get a
physical access to the second network but if I understood correctly,
we would not be able to use another batch of SCAN ips on this network.
So we would need to configure new VIPs on DB nodes and make the local
listeners listen on these / create new listeners maybe but it won’t be
as resilient as SCAN ips



I’m not very comfortable with this kind of requirements and of course,
we do not want to buy additional EXA boxesJ

Do you guys have any feedback, ideas on how to get things working in a
segregated network environment ?



Thanks for your valuable inputs,



Sébastien Pondichy

Database Operations Manager

STIB-MIVB







Sébastien Pondichy

Database Operations Manager

Information Systems – Service Delivery

Transport Systems



STIB-MIVB- rue Royale 76 Koningsstraat - Bruxelles 1000 Brussel

Tel: +32 2 515 37 28 - GSM: +32 499 866 658

E-mail:pondichys@xxxxxxxxxxxxxxx- Web: www.stib.be- www.mivb.be

• Follow-Ups:
  • [exabelux] Re: Question about VLANs and EXADATA
    • From: Pondichy Sébastien

• References:
  • [exabelux] Question about VLANs and EXADATA
    • From: Pondichy Sébastien

Other related posts:

• » [exabelux] Question about VLANs and EXADATA- Pondichy Sébastien
• » [exabelux] Re: Question about VLANs and EXADATA - Freek D'Hooge
• » [exabelux] Re: Question about VLANs and EXADATA- Philippe Fierens
• » [exabelux] Re: Question about VLANs and EXADATA- Pondichy Sébastien
• » [exabelux] Re: Question about VLANs and EXADATA- Pondichy Sébastien
• » [exabelux] Re: Question about VLANs and EXADATA- Philippe Fierens

1. Home
2. exabelux
3. Archive
4. 11-2015

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---