"I was thinking about using an after logon trigger to detect username and IP and kill session if it doest fit with required values, but I think this is a little bit rude." No it isn't. Dick Goulet Senior Oracle DBA/NA Team Lead PAREXEL International ________________________________ From: oracle-l-bounce@xxxxxxxxxxxxx [mailto:oracle-l-bounce@xxxxxxxxxxxxx] On Behalf Of Aragon, Gabriel (GE, Corporate, consultant) Sent: Monday, August 31, 2009 3:53 PM To: oracle-l@xxxxxxxxxxxxx Subject: Block db access by IP and username Hi all, long time no checking this list. I have a security question. I need to block access to db by IP and username, let's say that I need that user XXXX can connect ONLY from IP aaa.bbb.ccc.ddd, that is, if user XXXX wants to connect from another IP, access will be denied. I was thinking about using an after logon trigger to detect username and IP and kill session if it doest fit with required values, but I think this is a little bit rude. The other option I verified was using sqlnet.ora configuration but this only filters by IP and I would have to add all posssible IP's but doesnt filter users, and this is not what I need. Any ideas? TIA Gabriel