This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

PA-3430 Oracle Session Drop

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.

PA-3430 Oracle Session Drop

niko.wong
L0 Member

‎07-26-2023 09:01 PM

 

We have multiple application servers that need to go through the firewall to access different oracle database servers, but after the recent replacement of the PA-3430, one of the application servers accessing the Oracle database session is unstable, and the other application server accesses other Oracle database servers through the firewall. Successful. In case 1, the session could not be established in the early morning. By checking the firewall logs, we found that the TCP 1521 session was dropped by the firewall. After we tried to switch the traffic of the faulty primary firewall to the backup firewall, the OracleTCP session was re-established successfully. In case 2, the session was dropped again at noon Firewall Drop, after trying to restart the application service, the TCP-1521 session was successfully re-established. The period of the case is not fixed, and the interval between case 1 and case 2 is one week.
We have configured the session timeout value of the Oracle application on the firewall to be greater than 2 days. But there are still problems.
Have you encountered such a case? Is there a solution?
The pan-os I use is 10.2.4-h2.

0 Likes Likes
2 REPLIES 2

ozheng
L4 Transporter

‎07-28-2023 08:08 AM

Hello Nico Wong,

 

If you consider the traffic to be safe, you can app-override for the traffic between the Oracle Servers.

 

Olivier

PCSNE - CISSP

Best Effort contributor

Check out our PANCast Channel

Disclaimer : All messages are my personal ones and do not represent my company's view in any way.

0 Likes Likes

niko.wong
L0 Member
In response to ozheng

‎07-28-2023 08:45 PM

Hi, thanks for your answer, but I don't quite understand, my strategy is based on the Oracle application.

0 Likes Likes
  • 599 Views
  • 2 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks