Oracle Net Services
Version 21c

General Information
Library Note Morgan's Library Page Header
ACE Director Alum Daniel Morgan, founder of Morgan's Library, is scheduling complimentary technical Workshops on Database Security for the first 30 Oracle Database customers located anywhere in North America, EMEA, LATAM, or APAC that send an email to asra_us@oracle.com. Request a Workshop for your organization today.
Parameter Categories
ADR Diagnostic Operating System Notes TNSNAMES.ORA
ADR Non-Diagnostic LISTENER.ORA TNSPING
Class of Secure Transport SQLNET.ORA  
 
SQLNET.ORA Parameters
ACCEPT_MD5_CERTS
Accept MD5 signed certificates		 accept_md5_certs=<true | false>
accept_md5_certs=true
ACCEPT_SHA1_CERTS
Accept SHA1 signed certificates		 accept_sha1_certs=<true | false>
accept_sha1_certs=true
ADD_SSLV3_TO_DEFAULT
Sets the secure sockets layer versions that the server accepts		 add_sslv3_to_default=<true | false>
add_sslv3_to_default=true
BEQUEATH_DETACH
Use to turn signal handling on or off for Linux and UNIX systems		 bequeath_detach=<yes | no>
bequeath_detach=yes
DEFAULT_SDU_SIZE
Use to specify the session data unit (SDU) size, in bytes to connections. Oracle recommends this parameter on both server and client side so that they are forced to match. (Default: 8192)		 sqlnet.default_sdu_size=<range 512 to 2097152 bytes>
default_sdu_size=32767
DISABLE_OOB
Use to enable or disable Oracle Net to send or receive out-of-band break messages using urgent data provided by the underlying protocol		 disable_oob=<on | off>
disable_oob=on
DISABLE_OOB_AUTO
Disables server path checks for out-of-band break messages at the time of the connection		 disable_oob_auto=<false | true>
disable_oob_auto=true
EXADIRECT_FLOW_CONTROL
Enables or disables Exadirect flow control		 exadirect_flow_control=<off | on>
exadirect_flow_control=off
EXADIRECT_RECVPOLL
Specifies the time that a receiver polls for incoming data		 exadirect_recvpoll=<0 | integer | auto>
exadirect_recvpoll=20
HTTPS_SSL_VERSION
Control the Secure Sockets Layer (SSL) version that XDB HTTPS connections use		 https_ssl_version=<1.1 | 1.2 | any_valid_value>
https_ssl_version=1.2
IPC.KEYPATH
Specifies the destination directory where the internal file is created for UNIX domain sockets		 ipc.keypath=</var/tmp/.oracle | /tmp/.oracle>
ipc.keypath=/var/tmp/.oracle
NAMES.DEFAULT_DOMAIN
Use to set the domain from which the client most often looks up names resolution requests		 names.default_domain=<domain_name_string>
names.default_domain=mlib.org
NAMES.DIRECTORY_PATH
To specify the order of the naming methods used for client name resolution lookups		 names.directory_path=<ezconnect | ldap | nis | tnsnames> -- any one or combination
Default: names.directory_path=(tnsnames, ldap, ezconnect)
names.directory_path=(tnsnames)
NAMES.LDAP_AUTHENTICATE_BIND
Specifies if the LDAP naming adapter should attempt to authenticate using a specified wallet when it connects to the LDAP directory to resolve the connect string name		 names.ldap_authenticate_bind=<false | true>
names.ldap_authenticate_bind=true
NAMES.LDAP_AUTHENTICATE_BIND_METHOD
Specifies the method that the client LDAP naming adapter should use while connecting to the LDAP directory to resolve connect string names		 names.ldap_authenticate_bind_method=<none | (valid_values)>
names.ldap_authenticate_bind_method=ldaps_simple_auth
NAMES.LDAP_CONN_TIMEOUT
Specifies the number of seconds for a non-blocking connect LDAP server timeout (-1 = infinite)		 names.ldap_conn_timeout=<seconds_integer>
names.ldap_conn_timeout=60
NAMES.LDAP_PERSIST_SESSION
Specifies if LDAP naming adapter should leave the session with the LDAP server open after name lookup is complete		 names.ldap_persist_session=<false | true>
names.ldap_persist_session=true
NAMES.NIS.METADATA_MAP
Specifies the map file to be used to map Network Information Service (NIS) attributes to an NIS mapname		 names.nis.meta_map=<sqlnet.maps>
names.nis.metadata_map=sqlnet.maps
RECV_BUF_SIZE
Specifies the TCP/IP, TCP/IP with SSL, and SDP protocol buffer space limit for session receive operations		 recv_buf_size=<bytes_integer>
Default is operating system specific (32K for Solaris 2.6, 86K for Linux 2.6)
recv_buf_size=9375000
SDP.PF_INET_SDP
Specifies the protocol family or address family constant for the SDP protocol (Default = 27)		 sdp.pf_inet_sdp=<positive_integer>
sdp.pf_inet_sdp=30
SEC_USER_AUDIT_ACTION_BANNER
Specifies a text file containing the banner contents that warn the user about possible user action auditing		 sec_user_audit_action_banner=<file_and_location>
sec_user_audit_action_banner=/home/oracle/banners/audit_banner.txt
SEC_USER_UNAUTHORIZED_ACCESS_BANNER
Specifies a text file containing the banner contents that warn the user about unauthorized system access		 sec_user_unauthorized_access_banner=<file_and_location>
sec_user_unauthorized_access_banner=/home/oracle/banners/unauthaccess_warning.txt
SEND_BUF_SIZE
Specifies the buffer space limit for send operations of sessions. This parameter is supported by the TCP/IP, TCP/IP with SSL, and SDP protocols		 send_buf_size=<bytes_integer>
Default is operating system specific (8K for Solaris 2.6)
send_buf_size=9375000
SQLNET.ALLOWED_LOGON_VERSION_CLIENT
Sets the minimum authentication protocol allowed for clients, and when a server is acting as a client, such as connecting over a database link, when connecting to Oracle Database instances (Default = 12a)		 sqlnet.allowed_logon_version_client=<version_number>
sqlnet.allowed_logon_version_client=12a
SQLNET.ALLOWED_LOGON_VERSION_SERVER
Sets the minimum authentication protocol allowed when connecting to Oracle Database instances (Default = 12a)		 sqlnet.allowed_logon_version_server=<version_number>
sqlnet.allowed_logon_version_server=12a
SQLNET.ALLOW_WEAK_CRYPTO
Ensures that a connection does not encounter compatibility issues if the configuration uses supported strong algorithms		 sqlnet.allow_weak_crypto=<false | true>
sqlnet.allow_weak_crypto=false
SQLNET.ALLOW_WEAK_CRYPTO_CLIENTS
Ensures that a connection does not encounter compatibility issues if the configuration uses supported strong algorithms		 sqlnet.allow_weak_crypto_clients=<false | true>
sqlnet.allow_weak_crypto_clients=false
SQLNET.AUTHENTICATION_SERVICES
Use to enable one or more authentication services. If authentication has been installed, then it is recommended that this parameter be set to either none or to one of the listed authentication methods		 sqlnet.authentication_services (<value>)

Value Description
NONE Disables logging on without password
NTS NT operating system authentication
ALL All authentication methods
 
For Advanced Security Only
dcegssapi DCE GSSAPI authentication
kerberos5 Kerberos authentication
radius RADIUS authentication
sqlnet.authentication_services = (NONE)
SQLNET.CLIENT_REGISTRATION
Use to set a unique identifier for the client computer		 sqlnet.client_registration=<any_alphanumeric_string_up_to_128_characters_long>
sqlnet.client_registration=42
SQLNET.CLOUD_USER
Specifies a user name for web server HTTP basic authentication		 sqlnet.cloud_user=<none | any_valid_username>
sqlnet.clout_user=uwclass
SQLNET.COMPRESSION
If both the server and client have this parameter set to ON connection compression is used		 sqlnet.compression=<off | on>
sqlnet.compression=on
SQLNET.COMPRESSION_ACCELERATION
Specifies the use of hardware accelerated compression		 sqlnet.compression_acceleration=<off | on>
sqlnet.compression_acceleration=on
SQLNET.COMPRESSION_LEVELS
Specifies the SQLNET compression level		 sqlnet.compression_levels=<high | low>
sqlnet.compression_levels=high
SQLNET.COMPRESSION_THRESHOLD
Specifies the minimum data size, in bytes, for which compression is needed (Default = 1024)		 sqlnet.compression_threshold=<bytes_integer>
sqlnet.compression_threshold=2048
SQLNET.CRYPTO_CHECKSUM_CLIENT
Specifes the client checksum behavior		 sqlnet.crypto_checksum_client=<accepted | rejected | requested | required>
sqlnet.crypto_checksum_client=required
SQLNET.CRYPTO_CHECKSUM_SERVER
Specifes the server checksum behavior		 sqlnet.crypto_checksum_server=<accepted | rejected | requested | required>
sqlnet.crypto_checksum_server=required
SQLNET.CRYPTO_CHECKSUM_TYPES_CLIENT
Checksum Type Client Behavior		 sqlnet.crypto_checksum_types_client = <SHA256 | SHA384 | SHA512>
sqlnet.crypto_checksum_types_client=(SHA256)
SQLNET.CRYPTO_CHECKSUM_TYPES_SERVER
Checksum Type Server Behavior		 sqlnet.crypto_checksum_types_server = <SHA256 | SHA384 | SHA512>
sqlnet.crypto_checksum_types_server=(SHA256)
SQLNET.DBFW_PUBLIC_KEY
Provides Oracle Database Firewall public keys to Advanced Security Option (ASO) by specifying the file that stores the Oracle Database Firewall public keys		 sqlnet.dbfw_public_key=<double_quoted_path_string>
sqlnet.dbfw_public_key="/home/oracle/dbfw_public_key_file.txt"
SQLNET.DOWN_HOSTS_TIMEOUT
Specifies the amount of time in seconds that information about the down state of server hosts is kept in the client process cache (Default = 600 sec)		 sqlnet.down_hosts_timeout=<positive_integer_seconds>
sqlnet.down_hosts_timeout=900
SQLNET.ENCRYPTION_CLIENT
Enable client encryption		 sqlnet.encryption_client = <accepted | rejected | requested | required>
sqlnet.encryption_client=required
SQLNET.ENCRYPTION_SERVER
Enable server encryption		 sqlnet.encryption_server = <accepted | rejected | requested | required>
sqlnet.encryption_server=required
SQLNET.ENCRYPTION_TYPES_CLIENT
Specifies a list of encryption algorithms for the client to use		 sqlnet.encryption_types_client = <value>

Value Description
3des112 triple DES with a two-key (112 bit) option
3des168 triple DES with a three-key (168 bit) option
aes128 AES 128 bit key
aes192 AES 192 bit key
aes256 AES 256 bit key
des standard 56 bit key size
des40 40 bit key size
rc4_40 40 bit key size
rc4_56 56 bit key size
rc4_128 128 bit key size
rc4_256 256 bit key size
sqlnet.encryption_types_client=(rc4_256)
SQLNET.ENCRYPTION_TYPES_SERVER
Specifies a list of encryption algorithms for the ser to use		 sqlnet.encryption_types_server = <value>

Value Description
3des112 triple DES with a two-key (112 bit) option
3des168 triple DES with a three-key (168 bit) option
aes128 AES 128 bit key
aes192 AES 192 bit key
aes256 AES 256 bit key
des standard 56 bit key size
des40 40 bit key size
rc4_40 40 bit key size
rc4_56 56 bit key size
rc4_128 128 bit key size
rc4_256 256 bit key size
sqlnet.encryption_types_server=(rc4_256)
SQLNET.EXPIRE_TIME
Inactive Session Expiration Time: Kills inactive SQLNET sessions. If set to a non-zero value enables Dead Connection Detection (Default = 0)		 sqlnet.expire_time = <integer_minutes>
sqlnet.expire_time=10
SQLNET.FALLBACK_AUTHENTICATION
Specifies whether to attempt password-based authentication if Kerberos authentication fails		 sqlnet.fallback_authentication = <false | true>
sqlnet.fallback_authentication=true
SQLNET.IGNORE_ANO_ENCRYPTION_FOR_TCPS
Use to ignore the value that is set for SQLNET.ENCRYPTION_SERVER for TCPS connections		 sqlnet.ignore_ano_encryption_for_tcps = <false | true>
sqlnet.ignore_ano_encryption_for_tcps=false
SQLNET.INBOUND_CONNECT_TIMEOUT
Specifies the time, in seconds, for a client to connect with the database server and provide the necessary authentication information (Default = 60 seconds)		 sqlnet.inbound_connect_timeout=<integer_seconds>
sqlnet.inbound_connect_timeout=5
SQLNET.KERBEROS5_CC_NAME
Specifies the complete path name to the Kerberos credentials cache file (Default = '/usr/tmp/krbcache')		 sqlnet.kerberos5_cc_name=<file_location>
sqlnet.kerberos5_cc_name=/usr/tmp/krbcache
SQLNET.KERBEROS5_CLOCKSKEW
Specifies how many seconds can pass before a Kerberos credential is considered out of date (Default = 300)		 sqlnet.kerberos5_clockskew=<integer_seconds>
sqlnet.kerberos5_clockskew=120
SQLNET.KERBEROS5_CONF
Specifies the complete path name to the Kerberos configuration file, which contains the realm for the default Key Distribution Center (KDC) and maps realms to KDC hosts (Default = '/krb5/krb.conf')		 sqlnet.kerberos5_conf=<file_location>
sqlnet.kerberos5_conf=/krb5/krb.conf
SQLNET.KERBEROS5_CONF_LOCATION
Specifies the directory for the Kerberos configuration file as well as the file created by the system: not by the client		 sqlnet.kerberos5_conf_location=<file_location>
sqlnet.kerberos5_conf_location=/krb5
SQLNET.KERBEROS5_KEYTAB
Specifies the complete path name to the Kerberos principal/secret key mapping file, which is used to extract keys and decrypt incoming authentication information (Default = '/etc/v5srvtab')		 sqlnet.kerberos5_keytab=<file_location>
sqlnet.kerberos5_keytab=/etc/v5srvtab
SQLNET.KERBEROS5_REALMS
Specifies the complete path name to the Kerberos realm translation file, which provides a mapping from a host name or domain name to a realm (Default = '/krb5/krb.realms')		 sqlnet.kerberos5_realms=<file_location>
sqlnet.kerberos5_realms=/krb5/krb.realms
SQLNET.KERBEROS5_REPLAY_CACHE
Specifies the replay cache is stored in operating system-managed memory on the server, and that file-based replay cache is not used		 sqlnet.kerberos5_replay_cache=<OS_MEMORY>
sqlnet.kerberos5_replay_cache=OS_MEMORY
SQLNET.OUTBOUND_CONNECT_TIMEOUT
Specifies the time, in seconds, for a client to establish an Oracle Net connection to the database instance		 sqlnet.outbound_connect_timeout=<integer_seconds>
sqlnet.outbound_connect_timeout=8
SQLNET.RADIUS_ALTERNATE
Specifies an alternate RADIUS server to use in case the primary server is unavailable		 sqlnet.radius_alternate=<???>
sqlnet.radius_altnerate=radiusbak
SQLNET.RADIUS_ALTERNATE_PORT
specifies the port number for the alternate RADIUS server		 sqlnet.radius_alternate_port=<port_number>
sqlnet.radius_alternate_port=1655
SQLNET.RADIUS_ALTERNATE_RETRIES
Secifies the number of times the database server should resend messages to the alternate RADIUS server		 sqlnet.radius_alternate_retries=<integer>
sqlnet.radius_alternate_retries=5
SQLNET.RADIUS_AUTHENTICATION
Specifies the location of the primary RADIUS server, either by its host name or IP address		 sqlnet.radius_authentication=<host_name | ip_address>
sqlnet.radius_authentication=192.168.15.71
SQLNET.RADIUS_AUTHENTICATION_INTERFACE
Specifues the class containing the user interface used to interact with the user		 sqlnet.radius_authentication_interface=<DefaultRadiusInterface>
sqlnet.radius_authentication_interface=DefaultRadiusInterface
SQLNET.RADIUS_AUTHENTICATION_PORT
Specifies the listening port of the primary RADIUS server		 sqlnet.radius_authentication_port=<port_number>
sqlnet.radius_authentication_port=1645
SQLNET.RADIUS_AUTHENTICATION_RETRIES
Specifies the number of times the database server should resend messages to the primary RADIUS server (Default = 3)		 sqlnet.radius_authentication_retries=<integer>
sqlnet.radius_authentication_retries=5
SQLNET.RADIUS_AUTHENTICATION_TIMEOUT
Specifies the time, in seconds, that the database server should wait for a response from the primary RADIUS server (Default = 10)		 sqlnet.radius_authentication_timeout=<seconds_integer>
sqlnet.radius_authentication_timeout=15
SQLNET.RADIUS_CHALLENGE_RESPONSE
Enables/Disables the challenge response		 sqlnet.radius_challenge_response=<off | on>
sqlnet.radius_challenge_response=on
SQLNET.RADIUS_SECRET
Specifies the location of the RADIUS secret key		 sqlnet.radius_secret=<file_path>
sqlnet.radius_secret=/u01/app/oracle/product/21.0.0/db_1/network/security/radius
SQLNET.RADIUS_SEND_ACCOUNTING
To turn accounting on and off. If enabled, then packets are sent to the active RADIUS server at listening port plus one		 sqlnet.radius_send_accounting=<off | on>
sqlnet.radius_send_accounting=on
SQLNET.RECV_TIMEOUT
Specifies the time, in seconds, for a database server to wait for client data after establishing a connection: The client must send some data within the time interval		 sqlnet.recv_timeout=<seconds_interval>
sqlnet.recv_timeout=3
SQLNET.SEND_TIMEOUT
Specifies the time, in seconds, for a database server to complete a send operation to clients after establishing a connection		 sqlnet.send_timeout=<seconds_integer>
sqlnet.send_timeout=3
SQLNET.URI
Specify a database client URI mapping on a web server		 sqlnet.uri=</sqlnet | (any_other_valid_value)>
sqlnet.uri=/sqlnet/orabase
SQLNET.USE_HTTPS_PROXY
Enables forward HTTP proxy tunneling for client connections		 sqlnet.use_https_proxy=<on | off>
sqlnet.use_https_proxy=on
SQLNET.WALLET_OVERRIDE
Determines whether the client should override the strong authentication credential with the password credential in the stored wallet to log in to the database		 sqlnet.wallet_override=<false | true>
sqlnet.wallet_override=true
SSL_CERT_PATH (or) SSL_CRL_PATH
Specifies the destination directory of the CRL of CA
This parameter relates to OWM and is deprecated in 21c		 ssl_cert_path=<path_name>
ssl_cert_path=/u01/app/oracle/product/12.1.0/dbhome_1/network/security/ssl
SSL_CERT_REVOCATION
Use to configure a certificate revocation check		 ssl_cert_revocation=<none | requested | required>
ssl_cert_revocation=required
SSL_CIPHER_SUITES
Controls which combination of encryption and data integrity is used by the Secure Sockets Layer (SSL). Cipher suites that use Advanced Encryption Standard (AES) only work with Transport Layer Security (TLS 1.0).		 ssl_cipher_suites=<ssl_cipher_suite_name>

Cipher Suites
SSL_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
SSL_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
SSL_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
SSL_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
SSL_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
SSL_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
SSL_RSA_WITH_AES_128_CBC_SHA256
SSL_RSA_WITH_AES_128_GCM_SHA256
SSL_RSA_WITH_AES_128_CBC_SHA
SSL_RSA_WITH_AES_256_CBC_SHA
SSL_RSA_WITH_AES_256_CBC_SHA256
SSL_RSA_WITH_AES_256_GCM_SHA384
SSL_RSA_WITH_RC4_128_MD5
SSL_RSA_WITH_RC4_128_SHA
SSL_RSA_WITH_3DES_EDE_CBC_SHA
SSL_DH_anon_WITH_3DES_EDE_CBC_SHA
SSL_DH_anon_WITH_RC4_128_MD5
ssl_cipher_suites=SSL_RSA_WITH_RC4_128_SHA
SSL_EXTENDED_KEY_USAGE
Specifies the purpose of the certificate key		 ssl_extended_key_usage="<client authentication>"
ssl_extended_key_usage="client authentication"
SSL_SERVER_DN_MATCH
Enforces the rule that the distinguished name (DN) for the database server must matche its service name		 ssl_server_dn_match=<no | yes>
ssl_server_dn_match=yes
SSL_VERSION
Force the version of the SSL connection		 ssl_version=<undetermined | 2.0 | 3.0>
ssl_version=3.0
TCP.CONNECT_TIMEOUT
Set TCP Connection Establishment Timeout		 tcp.connect_timeout=<seconds>
tcp.connect_timeout=45
TCP.EXCLUDED_NODES
Excluding nodes: Use this parameter to specify which clients are denied access to the database		 tcp.excluded_nodes=<hostname | ip_address, hostname | ip_address,...>
tcp.excluded_nodes=(spammer.hacker.com, mktg.us.acme.com, 144.25.5.25)
TCP.INVITED_NODES
Use this parameter to check for invited and excluded nodes. This list takes precedence over the TCP.EXCLUDED_NODES parameter if both lists are present		 tcp.invited_nodes=<hostname | ip_address, hostname | ip_address, ...>
tcp.invited_nodes=(sales.us.acme.com, hr.us.mlib.com, 144.185.5.73)
TCP.NODELAY
TCP delay: Use this parameter to preempt delays in buffer flushing within the TCP/IP protocol stack		 tcp.nodelay=<no | yes>
tcp.nodelay=yes
TCP.QUEUESIZE
Configures the maximum length of the queue for pending connections on a TCP listening socket (Linux Default = 128)		 tcp.queuesize=<integer>
tcp.queuesize=92
TCP.VALIDNODE_CHECKING
Node checking: Required for Excluded and Invited nodes		 tcp.validnode_checking=<no | yes>
tcp.validnode_checking=yes
TNSPING.TRACE_DIRECTORY
Specifies the destination directory for the TNSPING utility trace file, tnsping.trc (Default $ORACLE_HOME/network/trace)		 tnsping.trace_directory=<Null, logfile_location>
tnsping.trace_directory=$ORACLE_HOME/network/trace
TNSPING.TRACE_LEVEL
Enables/disables the TNSPING utility tracing at the specified level or to turn it off		 tnsping.trace_level=<off | admin | support | user>
tnsping.trace_level=admin
USE_CMAN
Specifies the client routing to Oracle Connection Manager		 use_cman=<false | true>
use_cman=true
USE_DEDICATED_SERVER
Use to append (SERVER=dedicated) to the CONNECT_DATA section of the connect descriptor used by the client		 use_dedicated_server=<off | on>
use_dedicated_server=on
WALLET_LOCATION
Header for wallet location specification		 Complex O/S dependant syntax ... read the docsProfile
WALLET_LOCATION=
  (SOURCE=
    (METHOD=file)
    (METHOD_DATA=(DIRECTORY=/etc/oracle/wallets/databases)))
ADR Diagnostic Parameters
ADR_BASE
The default on the server side is ORACLE_BASE, or ORACLE_HOME/log, if ORACLE_BASE is not defined		 adr_base=<file_path>
adr_base=/oracle/network/trace
DIAG_ADR_ENABLED
Specifies whether ADR tracing is enabled		 diag_adr_enabled=<off | on>
diag_adr_enabled=on
TRACE_LEVEL_CLIENT
Use to turn client tracing on at a specified level or to turn it off		 trace_level_client = <off | 0 | 4 | 10 | 16>
trace_level_client=16
TRACE_LEVEL_SERVER
Use to turn server tracing on at a specified level or to turn it off		 trace_level_sever = <off | 0 | 4 | 10 | 16>
trace_level_server=16
TRACE_TIMESTAMP_CLIENT
To add a time stamp in the form of dd-mmm-yyyy hh:mm:ss:mil to every trace event in the client trace file, which has a default name of sqlnet.trc.		 trace_timestamp_client=<false | off | on | true>
trace_timestamp_client=true
TRACE_TIMESTAMP_SERVER
To add a time stamp in the form of dd-mmm-yyyy hh:mm:ss:mil to every trace event in the server trace file, which has a default name of sqlnet.trc.		 trace_timestamp_server=<false | off | on | true>
trace_timestamp_server=true
Non-ADR Diagnostic Parameters: Connection Tracing
LOG_DIRECTORY_CLIENT
Specifies the destination directory for the client log file		 log_directory_client = <operating system path>
log_directory_client=/oracle/network/log
LOG_DIRECTORY_SERVER
Specifies the destination directory for the server log file		 log_directory_server = <operating_system_path>
log_diretory_server=/oracle/network/log
LOG_FILE_CLIENT
Specifies the name of the log file for the client		 log_file_client = <file_name>
log_file_client=sqlnet.log
LOG_FILE_SERVER
Specifies the name of the log file for the server		 log_file_server = <file_name>
log_file_server=sqlnet.log
TRACE_DIRECTORY_CLIENT
Specifies the destination directory for the client trace file		 trace_directory_client = <file_path>
trace_directory_client=c:\temp\network\trace
TRACE_DIRECTORY_SERVER
Specifies the destination directory for the server trace file		 trace_directory_server = <file_path>
trace_directory_server=/home/oracle/network/trace
TRACE_FILE_CLIENT
Specifies the name of the client trace file (Default = ORACLE_HOME/network/trace/cli.trc)		 trace_file_client=<directory_path_and_file_name>
trace_file_client=ORACLE_HOME/network/trace/sqlnet_client.trc
TRACE_FILE_SERVER
Specifies the name of the server trace file		 trace_file_server=<directory_path_and_file_name>
trace_file_server=ORACLE_HOME/network/trace/sqlnet_server.trc
TRACE_FILEAGE_CLIENT
Specifies the maximum age of client trace files in minutes		 trace_fileage_client=<unlimited | integer_in_minutes>
trace_fileage_client=46080
TRACE_FILEAGE_SERVER
Specifies the maximum age of server trace files in minutes		 trace_fileage_server=<unlimited | integer_in_minutes>
trace_fileage_server=46080
TRACE_FILELEN_CLIENT
Specify the size of the client trace files in kilobytes (KB)		 trace_filelen_client=<integer_in_KB>
trace_filelen_client=128
TRACE_FILELEN_SERVER
Specify the size of the server trace files in kilobytes (KB)		 trace_filelen_server=<integer_in_KB>
trace_filelen_server=128
TRACE_FILENO_CLIENT
Specifies the number of trace files for client tracing		 trace_fileno_client=<integer>
trace_fileno_client=10
TRACE_FILENO_SERVER
Specifies the number of trace files for server tracing		 trace_fileno_server=<integer>
trace_fileno_server=10
TRACE_UNIQUE_CLIENT
Specifies whether a unique trace file is created for each client trace session		 trace_unique_client=<off | on>
trace_unique_client=off
 
LISTENER.ORA Parameters
Protocol Address Parameters
ADDRESS
Specifies a single listener protocol address		 address=<address_parameters>
listener=
 (DESCRIPTION=
  (ADDRESS_LIST=
   (ADDRESS=(PROTOCOL=tcp)(HOST=prod1)(PORT=1521))
   (ADDRESS=(PROTOCOL=tcp)(HOST=prod2)(PORT=1526))))
DESCRIPTION
Header for listener list and listener parameters		 description=<description_parameters>
listener=
 (DESCRIPTION=
  (ADDRESS_LIST=
   (ADDRESS=(PROTOCOL=tcp)(HOST=prod2)(PORT=1521))
   (ADDRESS=(PROTOCOL=tcp)(HOST=prod2)(PORT=1521))))
IP
Identifies the type of IP address the listener listens on when a host name is specified		 ip=<first | v4_only | v6_only>
listener=
 (DESCRIPTION=
  (ADDRESS=(PROTOCOL=tcp)(HOST=mlib3-vip)(PORT=1522)(IP=v6_only))
QUEUESIZE
Specifies the number of concurrent connection requests that the listener can accept on a TCP/IP or IPC listening endpoint		 queuesize=<number_of_concurrent_connection_requests>
listener=
 (DESCRIPTION=
  (ADDRESS=(PROTOCOL=tcp)(HOST=prod1)(PORT=1521)(QUEUESIZE=20)))
RECV_BUF_SIZE
Specifies, in bytes, the buffer space for receive operations of sessions		 recv_buf_size=<bytes>
listener=
 (DESCRIPTION=
  (ADDRESS_LIST=
   (ADDRESS=(PROTOCOL=tcp)(HOST=prod1)(PORT=1521)
    (RECV_BUF_SIZE=32767))
   (ADDRESS=(PROTOCOL=ipc)(KEY=extproc)
    (RECV_BUF_SIZE=32767))))
SEND_BUF_SIZE
Specifies, in bytes, the buffer space for send operations of sessions		 send_buf_size=<bytes>
listener=
 (DESCRIPTION=
  (ADDRESS_LIST=
   (ADDRESS=(PROTOCOL=tcp)(HOST=prod2)(PORT=1521)
    (SEND_BUF_SIZE=32767))
   (ADDRESS=(PROTOCOL=ipc)(KEY=extproc)
    (SEND_BUF_SIZE=32767))))
Connection Rate Limiter Parameters
CONNECTION_RATE_<LISTENER> connection_rate_<listener_name>=<number_of_connections_per_second>
connection_rate_listener=15
RATE_LIMIT
Indicate a listening end-point is rate limited		 rate_limit <no | yes | integer>
(rate_limit=YES)

(or)

(rate_limit=15)

Example:
CONNECTION_RATE_LISTENER=15
LISTENER=
  (ADDRESS_LIST=
    (ADDRESS=(PROTOCOL=tcp)(HOST=)(PORT=1521)(RATE_LIMIT=yes))
    (ADDRESS=(PROTOCOL=tcp)(HOST=)(PORT=1522)(RATE_LIMIT=yes))
    (ADDRESS=(PROTOCOL=tcp)(HOST=)(PORT=1526)))
Control Parameters
ADMIN_RESTRICTIONS_<listener_name>
Restricts the runtime administration of the listener		 admin_restrictions_<listener_name>=<off | on>
admin_restrictions_listener=on
CRS_NOTIFICATION_<listener_name>
By default, the Oracle Net listener notifies Cluster Ready Services (CRS) when it is started or stopped. These notifications allow CRS to manage the listener in an Oracle Real Application Clusters environment. This behavior can be prevented by setting the CRS_NOTIFICATION_listener_name parameter to off.		 crs_notifications_<listner_name>=<off | on>
crs_notifications_listener=on
DEDICATED_THROUGH_BROKER_<listener_name>
Enables the server to spawn a thread or process when a connection to the database is requested through the listener		 dedicated_through_broker_<listener_name>=<off | on>
dedicated_through_broker_listener=on
DEFAULT_SERVICE_<listener_name>
Enables users to connect to the database without having to specify a service name from the client side		 default_service_<listener_name>=<off | on>
default_service_listener=on
INBOUND_CONNECT_TIMEOUT_<listener_name>
Specifies the time, in seconds, for the client to complete its connect request to the listener after the network connection had been established (Default = 60)		 inbound_connect_timeout_<listener_name>=<seconds>
inbound_connect_timeout_listener=6
MAX_ALL_CONNECTIONS_<listener_name>
Specifies the maximum number of concurrent registration and client connection sessions that can be supported by Oracle Net Listener (Default is operating system dependant)		 max_all_connections_<listener_name>=<number_of_connections>
max_all_connections_listener=30
MAX_REG_CONNECTIONS_<listener_name>
Specifies the maximum number of concurrent registration connection sessions that can be supported by Oracle Net Listener (Default = 512)		 max_reg_connections_<listener_name>=<number_of_connections>
max_reg_connections_listener=256
REGISTRATION_EXCLUDED_NODES_<listener_name>
Specifies the list of nodes that cannot register with the listener. Ignored if registration_invited_nodes is specified		 registration_excluded_nodes_<(listener_name>=<(comma_delimited_node_list)
registration_excluded_nodes_listener=(10.1.26.*, 10.16.40.0/24, 2001:DB8:3eff:fe38, node2)
REGISTRATION_INVITED_NODES_<listener_name>
Specifies the list of nodes that can register with the listener. Excluded nodes is ignored if this is specified		 registration_invited_nodes_<listener_name>=<(comma_delimited_node_list)
registration_invited_nodes_listener=(10.1.35.*, 10.1.34.0/24, 2001:DB8:fe38:7303, node1)
REMOTE_REGISTRATION_ADDRESS_<listener_name>
Use to secure registration requests through dedicated secure registration endpoints for SCAN listeners		 remote_registration_address_<listener_name>=<off>
remote_registration_address_listener=off
SAVE_CONFIG_ON_STOP_<listener_name>
Specifies whether runtime configuration changes are saved to the listener.ora file		 save_config_on_stop_<listener_name>=<false | true>
save_config_on_stop_listener=false
SSL_CLIENT_AUTHENTICATION
Specifies whether a client is authenticated using the Secure Sockets Layer (SSL)		 ssl_client_authentication=<false | true>
ssl_client_authentication=true
SUBSCRIBE_FOR_NODE_DOWN_EVENT_<listener_name>
Subscribe to Oracle Notification Service (ONS) notifications for downed events		 subscribe_for_node_down_event_<listener_name> = <off | on>
subscribe_for_node_down_event_listener=on
USE_SID_AS_SERVICE_<listener_name>
Enables the system identifier (SID) in the connect descriptor to be interpreted as a service name		 use_sid_as_service_<listener_name>=<off | on>
use_sid_as_service_listener=on
VALID_NODE_CHECKING_REGISTRATION_<listener_name>
Enables valid node checking		 valid_node_checking_registration_<listener_name>=<on | off | subnet>
valid_node_checking_registration_listener=on
WALLET_LOCATION
Use to specify the location of a credentials wallet. Be sure to read the doc as there are significant differences between operating systems and additional parameters not shown here		 wallet_location=<wallet_location_parameters>
WALLET_LOCATION=
 (SOURCE=(METHOD=file)(METHOD_DATA =
   (DIRECTORY= /u01/oraclebase/admin/orabasexx/wallet)))
ADR Diagnostic Parameters
ADR_BASE_<listener_name>  
 
DIAG_ADR_ENABLED_<listener_name>  
 
LOGGING_<listener_name>  
 
TRACE_LEVEL_<listener_name>  
 
TRACE_TIMESTAMP_<listener_name>  
 
Non-ADR Diagnostic Parameters for Oracle Net Listener
LOG_DIRECTORY_<listener_name>
 		  
 
LOG_FILE_<listener_name>  
 
TRACE_DIRECTORY_<listener_name>  
 
TRACE_FILE_<listener_name>
 		  
 
TRACE_FILELEN_<listener_name>
 		  
 
TRACE_FILENO_<listener_name>  
 
Class of Secure Transport Parameters
DYNAMIC_REGISTRATION_<listener_name>
Enable/disable dynamic registration		 dynamic_registration_<listener_name> =<off | on>
dynamic_registration_listener=on
SECURE_CONTROL_<listener_name>
Specifies the transports on which control commands are to be serviced		 secure_control_<listener_name> = [(]transport1[,transport2, ....,transportn)]
LISTENER=
  (DESCRIPTION=
    (ADDRESS_LIST=
      (ADDRESS=(PROTOCOL=tcp)(HOST=perrito)(PORT=1521))
      (ADDRESS=(PROTOCOL=ipc)(KEY=extproc))
      (ADDRESS=(PROTOCOL=tcps)(HOST=perrito)(PORT=1522))))
  SECURE_CONTROL_LISTENER=tcps
SECURE_PROTOCOL_<listener_name>
Specifies the transports on which administration and registration requests are accepted		 secure_protocol_<listener_name> = [(]transport1[,transport2, ....,transportn)]
LISTENER=
  (DESCRIPTION=
    (ADDRESS_LIST=
      (ADDRESS=(PROTOCOL=tcp)(HOST=perrito)(PORT=1521))
      (ADDRESS=(PROTOCOL=ipc)(KEY=extproc))
      (ADDRESS=(PROTOCOL=tcps)(HOST=perrito)(PORT=1522))))
  SECURE_PROTOCOL_listener=tcps
SECURE_REGISTER_<LISTENER>
Specifies the transports on which registration requests are to be accepted		 secure_register_<listener_name> = <TCPS | IPC>
LISTENER=
  (DESCRIPTION=
    (ADDRESS_LIST=
      (ADDRESS=(PROTOCOL=tcp)(HOST=perrito)(PORT=1521))
      (ADDRESS=(PROTOCOL=ipc)(KEY=extproc))
      (ADDRESS=(PROTOCOL=tcps)(HOST=perrito)(PORT=1522))))
  SECURE_REGISTER_listener=tcps
 
TNSNAMES.ORA
Connect Descriptor Descriptions
DESCRIPTION
Networking parameter of the tnsnames.ora file specifies a container for a connect descriptor		 DESCRIPTION = (<connection parameters>)
PDBDEV =
  (DESCRIPTION =
    (ADDRESS_LIST =
      (ADDRESS = (PROTOCOL = TCP)(HOST = 127.0.0.1)(PORT = 1521))
  )
    (CONNECT_DATA =
    (SERVICE_NAME = pdbdev)
  )
)
DESCRIPTION_LIST
Networking parameter of the tnsnames.ora file defines a list of connect descriptors for a particular net service name		 (DESCRIPTION_LIST=
  (DESCRIPTION=
    (ADDRESS=...)
      (CONNECT_DATA=(SERVICE_NAME=<service_name>)))
  (DESCRIPTION=
TBD
Protocol Address Section
ADDRESS
Networking parameter specifies the protocol address under the ADDRESS_LIST or DESCRIPTION parameter		 PROTOCOL = <EXADIRECT | IPC | NMP | SDP | TCP | TCPS | WS | WSS>
PDBDEV =
  (DESCRIPTION =
    (ADDRESS_LIST =
      (ADDRESS = (PROTOCOL = TCP)(HOST = 127.0.0.1)(PORT = 1521))
  )
    (CONNECT_DATA =
    (SERVICE_NAME = pdbdev)
  )
)
ADDRESS_LIST
Networking parameter specifies the number of protocol addresses sharing common characteristics		  
PDBDEV =
  (DESCRIPTION =
    (ADDRESS_LIST =
    (ADDRESS = (PROTOCOL = TCP)(HOST = 127.0.0.1)(PORT = 1521))
  )
    (CONNECT_DATA =
    (SERVICE_NAME = pdbdev)
  )
)
Optional Address List Parameters
COLOCATION_TAG
Route all connections with the same colocation_tag to the same instance		 colocation_tag=<instance_name>
PDBDEV=
 (DESCRIPTION=
   (ADDRESS=(PROTOCOL=tcp)(HOST=perrito1-svr)(PORT=1521))
   (ADDRESS=(PROTOCOL=tcp)(HOST=perrito2-svr)(PORT=1521))
 )
 (CONNECT_DATA=
    (SERVICE_NAME=mlib.org)
    (COLOCATION_TAG=racnode1)))
CONNECTION_ID_PREFIX
Adds an application specific identifier to the connection identifier		 connection_id_prefix=<prefix_value>
PDBDEV=
 (DESCRIPTION=
  (SDU=32767)
   (ADDRESS_LIST=
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod1)(PORT=1521))
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod2)(PORT=1521)))
  (CONNECT_DATA=
   (SERVICE_NAME=prod.mlib.org)
   (CONECTION_ID_PREFIX=hrapp)))
ENABLE
Allow the caller to detect a terminated remote server, typically it takes 2 hours or more to notice		 enable=<broken>
PDBDEV=
 (DESCRIPTION=
  (ENABLE=broken)
  (ADDRESS=(PROTOCOL=tcp)(HOST=perrito1-svr)(PORT=1521))
   (ADDRESS=(PROTOCOL=tcp)(HOST=perrito2-svr)(PORT=1521)))
  (CONNECT_DATA=(SERVICE_NAME=mlib.org))
EXPIRE_TIME
Specifies frequency in minutes, to verify that remote server connections are active		 expire_time=<0 | integer>
PDBDEV=
 (DESCRIPTION=
  (EXPIRE_TIME=10)
  (ADDRESS=(PROTOCOL=tcp)(HOST=perrito1-svr)(PORT=1521))
   (ADDRESS=(PROTOCOL=tcp)(HOST=perrito2-svr)(PORT=1521)))
  (CONNECT_DATA=(SERVICE_NAME=mlib.org))
FAILOVER
Enables or disables connect-time failover for multiple protocol addresses		 failover=<(no, off, false) | (yes, on, true)>
PDBDEV=
 (DESCRIPTION=
  (FAILOVER=on)
  (ADDRESS_LIST=
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod1)(PORT=1521))
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod2)(PORT=1526))
  )
  (CONNECT_DATA=(SERVICE_NAME=prod.mlib.org)))
KERBEROS5_PRINCIPAL
When specified is used to verify that the principal name in the credential cache matches the SQLNET.ORA parameter value		 kerberox5_principal=<kerberos5_principal_name>
TBD
LOAD_BALANCE
Enables or disables client load balancing for multiple protocol addresses		 load_balance=<(no, off, false) | (yes, on, true)>
PDBDEV=
 (DESCRIPTION=
  (LOAD_BALANCE=on)
  (ADDRESS_LIST=
   (ADDRESS=(PROTOCOL=tcp)(HOST=prod1)(PORT=1521))
   (ADDRESS=(PROTOCOL=tcp)(HOST=prod2)(PORT=1526)))
  (CONNECT_DATA=(SERVICE_NAME=prod.mlib.org))
RECV_BUF_SIZE
Supports TCP/IP, TCP/IP with SSL, and SDP protocols and used to specify, in bytes, the buffer space for receive operations of sessions		 recv_buf_size=<bytes>
PDBDEV=
 (DESCRIPTION=
  (ADDRESS_LIST=
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod1)(PORT=1521)
    (RECV_BUF_SIZE=9375000))
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod2)(PORT=1526)
    (RECV_BUF_SIZE=9375000))
  (CONNECT_DATA=
   (SERVICE_NAME=prod.mlib.org)))
SDU
Instruct Oracle Net to optimize the transfer rate of data packets being sent across the network with a specified session data unit (SDU) size (Default 8K)		 SDU=<512 - 2097152 bytes>
PDBDEV=
 (DESCRIPTION=
  (SDU=32767)
   (ADDRESS_LIST=
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod1)(PORT=1521))
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod2)(PORT=1521)))
  (CONNECT_DATA=
   (SERVICE_NAME=prod.mlib.org))
SEND_BUF_SIZE
Specifies, in bytes, the buffer space for send operations of sessions. The default value for this parameter is operating system specific. The default for the Linux 2.6 operating system is 110592 (108 KB) bytes.		 send_buf_size=<bytes>
PDBDEV=
 (DESCRIPTION=
  (ADDRESS_LIST=
   (ADDRESS=(PROTOCOL=tcp)(HOST=prod1)(PORT=1521)
    (RECV_BUF_SIZE=9375000))
   (ADDRESS=(PROTOCOL=tcp)(HOST=prod2)(PORT=1521)
    (RECV_BUF_SIZE=9375000)))
  (CONNECT_DATA=
   (SERVICE_NAME=pdbdev.mlib.org)))
SOURCE_ROUTE
Enables routing through multiple protocol addresses (Default off)		 source_route=<no | off | on | yes>
PDBDEV=
 (DESCRIPTION=
  (SOURCE_ROUTE=on)
  (ADDRESS=(PROTOCOL=tcp)(HOST=cman_pc)(PORT=1630))
  (ADDRESS=(PROTOCOL=tcp)(HOST=prod1)(PORT=1521))
  (CONNECT_DATA=(SERVICE_NAME=prod.mlib.org))
Connection Data Section
CONNECT_DATA
Defines the service to which to connect, such as SERVICE_NAME		 connect_data=(SERVICE_NAME ...)
PDBDEV=
 (DESCRIPTION=
  (SDU=32767)
   (ADDRESS_LIST=
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod1)(PORT=1521))
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod2)(PORT=1521)))
  (CONNECT_DATA=
   (SERVICE_NAME=prod.mlib.org))
FAILOVER_MODE
Instructs Oracle Net to fail over to a different listener if the first listener fails		 failover_mode=<backup | method | retries | transaction | type>
TBD
HS
Directs Oracle Net to connect to a non-Oracle system through Heterogeneous Services		 hs=<none | ok>
TBD
INSTANCE_NAME
Identifies the database instance to access		 instance_name = <instance_name>
PDBDEV =
  (DESCRIPTION=
    (ADDRESS_LIST=
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod1)(PORT=1527))
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod2)(PORT=1528)))
  )
  (CONNECT_DATA=
    (SERVICE_NAME=pdbdev)
    (INSTANCE_NAME=orabasexxi)))
SERVER
Direct the listener to connect the client to a specific type of service handler		 (server = <dedicated | shared>)
PDBDEV=
 (DESCRIPTION=
  (SDU=32767)
   (ADDRESS_LIST=
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod1)(PORT=1521))
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod2)(PORT=1521)))
  (CONNECT_DATA=
   (SERVICE_NAME=prod.mlib.org)
   (SERVER=dedicated)))
SERVICE_NAME
identifies the Oracle Database database service to access		 (service_name = <service_name>)
PDBDEV=
 (DESCRIPTION=
   (ADDRESS_LIST=
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod1)(PORT=1521))
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod2)(PORT=1521)))
  (CONNECT_DATA=
   (SERVICE_NAME=prod.mlib.org)
   (SERVER=dedicated)))
SHARDING_KEY
Routes a database request to a specific shard		 sharding_key=<shard_key_name>
ORABIGDATA=
 (DESCRIPTION=
   (ADDRESS_LIST=
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod1)(PORT=1521))
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod2)(PORT=1521)))
  (CONNECT_DATA=
   (SERVICE_NAME=humongous.mlib.org)
   (SERVER=dedicated)
   (SHARDING_KEY=63810977)))
SUPER_SHARDING_KEY
Routes a database request to a collection of shards		 super_sharding_key=<shard_collection_name>
ORABIGDATA=
 (DESCRIPTION=
   (ADDRESS_LIST=
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod1)(PORT=1521))
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod2)(PORT=1521)))
  (CONNECT_DATA=
   (SERVICE_NAME=humongous.mlib.org)
   (SERVER=dedicated)
   ((SHARDING_KEY=63810977)(SUPER_SHARDING_KEY=tiger)))
TUNNEL_SERVICE_NAME
The server CMAN listener will route the connection to a gateway that has a tunnel connection to the requested client		 tunnel_service_name=<name_of_the_tunnel>
PDBDEV=
 (DESCRIPTION=
  (SDU=32767)
   (ADDRESS_LIST=
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod1)(PORT=1521))
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod2)(PORT=1521)))
  (CONNECT_DATA=
   (SERVICE_NAME=prod.mlib.org)
   (TUNNEL_SERVICE_NAME=bigdogs)))
Security Parameters
IGNORE_ANO_ENCRYPTION_FOR_TCPS
Specifies if the SQLNET.ENCRYPTION_CLIENT parameter should be ignored for a specific TNS alias		 IGNORE_ANO_ENCRYPTION_FOR_TCPS=<false | true>
PDBDEV=
 (DESCRIPTION=
   (ADDRESS_LIST=
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod1)(PORT=1521))
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod2)(PORT=1521)))
  (CONNECT_DATA=
   (SERVICE_NAME=prod.mlib.org))
   (SECURITY=IGNORE_ANO_ENCRYPTION_FOR_TCPS=TRUE))
SSL_SERVER_CERT_DN
 		 SSL_SERVER_CERT_DN
PDBDEV=
 (DESCRIPTION=
   (ADDRESS_LIST=
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod1)(PORT=1521))
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod2)(PORT=1521)))
  (CONNECT_DATA=
   (SERVICE_NAME=prod.mlib.org))
   (SECURITY=SSL_SERVER_CERT_DN="cn=hr,cn=OracleContext,dc=us,dc=sea,dc=com"))
Timeout Parameters
CONNECT_TIMEOUT
Specifies the timeout duration in ms, sec, or min for a client to establish an Oracle Net connection		  
PDBDEV=
 (DESCRIPTION=
   (CONNECT_TIMEOUT=12 ms)(RETRY_COUNT=5)(RETRY_DELAY=1)
   (ADDRESS_LIST=
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod1)(PORT=1521))
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod2)(PORT=1521)))
  (CONNECT_DATA=
   (SERVICE_NAME=prod.mlib.org))
RETRY_COUNT
Specifies the number of times an ADDRESS list is traversed before the connection attempt is terminated		  
PDBDEV=
 (DESCRIPTION=
   (CONNECT_TIMEOUT=12 ms)(RETRY_COUNT=5)(RETRY_DELAY=1)
   (ADDRESS_LIST=
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod1)(PORT=1521))
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod2)(PORT=1521)))
  (CONNECT_DATA=
   (SERVICE_NAME=prod.mlib.org))
RETRY_DELAY
In conjunction with RETRY_COUNT, specifies the delay in seconds between subsequent retries for a connection		  
PDBDEV=
 (DESCRIPTION=
   (CONNECT_TIMEOUT=12 ms)(RETRY_COUNT=5)(RETRY_DELAY=1)
   (ADDRESS_LIST=
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod1)(PORT=1521))
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod2)(PORT=1521)))
  (CONNECT_DATA=
   (SERVICE_NAME=prod.mlib.org))
TRANSPORT_CONNECT_TIMEOUT
Specifies the transport connect timeout duration in ms, sec, or min for a client to establish an Oracle Net connection		  
PDBDEV=
 (DESCRIPTION=
   (TRANSPORT_CONNECT_TIMEOUT=12 ms)
   (ADDRESS_LIST=
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod1)(PORT=1521))
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod2)(PORT=1521)))
  (CONNECT_DATA=
   (SERVICE_NAME=prod.mlib.org))
Compression Parameters
COMPRESSION
Enables or disables the data compression		 compression=<off | on>
PDBDEV=
 (DESCRIPTION=
   (COMPRESSION=ON)
   (ADDRESS_LIST=
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod1)(PORT=1521))
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod2)(PORT=1521)))
  (CONNECT_DATA=
   (SERVICE_NAME=prod.mlib.org))
COMPRESSION_LEVELS
Specifies the compression level when compression is enabled		 compression_levels=<low | high>
PDBDEV=
 (DESCRIPTION=
   (COMPRESSION=ON)
   (COMPRESSION_LEVELS=(LEVEL=HIGH)
   (ADDRESS_LIST=
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod1)(PORT=1521))
    (ADDRESS=(PROTOCOL=tcp)(HOST=prod2)(PORT=1521)))
  (CONNECT_DATA=
   (SERVICE_NAME=prod.mlib.org))
TNSNAMES.ORA File Samples
Connection Expansion (11gR2+ RAC with Scan Address) -- the initial TNSNAMES entry

(DESCRIPTION_LIST =
  (LOAD_BALANCE=off)(FAILOVER=on)
  (DESCRIPTION =
    (LOAD_BALANCE=on)
    (ADDRESS=(PROTOCOL=tcp)(HOST=sales-scan)(PORT=1521))
    (CONNECT_DATA=(SERVICE_NAME=sales.example.com)))
  (DESCRIPTION =
    (LOAD_BALANCE=on)
    (ADDRESS=(PROTOCOL=tcp)(HOST=backup-scan)(PORT=1521))
    (CONNECT_DATA=(SERVICE_NAME=sales.example.com))))

-- expands internally to:

(DESCRIPTION_LIST =
  (LOAD_BALANCE=off)(FAILOVER=on)
  (DESCRIPTION =
    (ADDRESS_LIST=
      (LOAD_BALANCE=on)
      (ADDRESS=(PROTOCOL=tcp)(HOST=sales-1)(PORT=1521))
      (ADDRESS=(PROTOCOL=tcp)(HOST=sales-2)(PORT=1521)))
      (CONNECT_DATA=(SERVICE_NAME=sales.example.com)))
  (DESCRIPTION =
    (ADDRESS_LIST=
      (LOAD_BALANCE=on)
      (ADDRESS=(PROTOCOL=tcp)(HOST=backup-1)(PORT=1521))
      (ADDRESS=(PROTOCOL=tcp)(HOST=backup-2)(PORT=1521)))
    (CONNECT_DATA=(SERVICE_NAME=sales.example.com))))
Connection Pooling Follow the DBMS_CONNECTION_POOL link below

To enable DRCP connection pooling set USE_ENHANCED_POLL=on in the server sqlnet.ora file
IPV6 Mapping Use URL syntax to specify IPv6 addresses

[2001:fe8::12]:1522/sales.us.example.com:dedicated/inst1

-- is equivalent to

(DESCRIPTION=
  (ADDRESS=(PROTOCOL=tcp)(HOST=2001:fe8::12)(PORT=1522))
  (CONNECT_DATA=(SERVICE_NAME=ataload.mlib.com)
    (INSTANCE_NAME=alpha3)
    (SERVER=dedicated)))
Infiniband Mapping (DESCRIPTION=
  (ADDRESS_LIST=
  (ADDRESS=(PROTOCOL=SDP)(HOST=alpha1.mlib.org)(PORT=1526))
  (ADDRESS=(PROTOCOL=SDP)(HOST=alpha2.mlib.org)(PORT=1526))
  (CONNECT_DATA=(SERVICE_NAME=dataload.mlib.com))
 
TNSPING
Common usage variations tnsping '(ADDRESS=(PROTOCOL=tcp)(HOST=<hostname>)(PORT=1521))' 50
tnsping '(ADDRESS=(PROTOCOL=tcp)(HOST=<localhost>)(PORT=1521))' 50
tnsping '(ADDRESS=(PROTOCOL=tcp)(HOST=<x.y.z.n>)(PORT=1521))' 50
 
Operating System Notes
Linux Note -- to find used ports on a Linux server:

[oracle@gg00a dirprm]$ netstat -lntu
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address   Foreign Address State
tcp        0      0 0.0.0.0:5801    0.0.0.0:*       LISTEN
tcp        0      0 0.0.0.0:5901    0.0.0.0:*       LISTEN
tcp        0      0 0.0.0.0:111     0.0.0.0:*       LISTEN
tcp        0      0 0.0.0.0:6001    0.0.0.0:*       LISTEN
tcp        0      0 0.0.0.0:56754   0.0.0.0:*       LISTEN
tcp        0      0 0.0.0.0:22      0.0.0.0:*       LISTEN
tcp        0      0 127.0.0.1:631   0.0.0.0:*       LISTEN
tcp        0      0 127.0.0.1:25    0.0.0.0:*       LISTEN
tcp        0      0 0.0.0.0:633     0.0.0.0:*       LISTEN
tcp        0      0 127.0.0.1:2207  0.0.0.0:*       LISTEN
tcp        0      0 127.0.0.1:2208  0.0.0.0:*       LISTEN
tcp        0      0 :::47406        :::*            LISTEN
tcp        0      0 :::1521         :::*            LISTEN
tcp        0      0 :::6001         :::*            LISTEN
tcp        0      0 :::22           :::*            LISTEN
tcp        0      0 :::7809         :::*            LISTEN
udp        0      0 0.0.0.0:5353    0.0.0.0:*
udp        0      0 0.0.0.0:111     0.0.0.0:*
udp        0      0 0.0.0.0:627     0.0.0.0:*
udp        0      0 0.0.0.0:630     0.0.0.0:*
udp        0      0 0.0.0.0:631     0.0.0.0:*
udp        0      0 0.0.0.0:34070   0.0.0.0:*
udp        0      0 0.0.0.0:68      0.0.0.0:*
udp        0      0 0.0.0.0:45534   0.0.0.0:*
udp        0      0 :::5353         :::*
udp        0      0 :::49517        :::*
udp        0      0 ::1:63872       :::*
udp        0      0 ::1:39693       :::*
udp        0      0 :::59798        :::*
udp        0      0 ::1:19812       :::*
Windows Note -- to find used ports on a Windows server:

c:\> netstat -a

c:\Users\oracle>netstat -a

-- active connections

Proto Local Address Foreign Address           State
TCP   0.0.0.0:80      perrito4:0                LISTENING
TCP   0.0.0.0:135     perrito4:0                LISTENING
TCP   0.0.0.0:443     perrito4:0                LISTENING
TCP   0.0.0.0:445     perrito4:0                LISTENING
TCP   0.0.0.0:623     perrito4:0                LISTENING
TCP   0.0.0.0:1521    perrito4:0                LISTENING
TCP   0.0.0.0:5500    perrito4:0                LISTENING
TCP   0.0.0.0:8080    perrito4:0                LISTENING
TCP   0.0.0.0:16992   perrito4:0                LISTENING
TCP   0.0.0.0:27019   perrito4:0                LISTENING
TCP   0.0.0.0:46897   perrito4:0                LISTENING
TCP   0.0.0.0:49152   perrito4:0                LISTENING
TCP   0.0.0.0:49153   perrito4:0                LISTENING
TCP   0.0.0.0:49154   perrito4:0                LISTENING
TCP   0.0.0.0:49155   perrito4:0                LISTENING
TCP   0.0.0.0:49161   perrito4:0                LISTENING
TCP   0.0.0.0:49178   perrito4:0                LISTENING
TCP   0.0.0.0:57541   perrito4:0                LISTENING
TCP   10.0.0.5:139    perrito4:0                LISTENING
TCP   10.0.0.5:64972  157.55.235.170:40021      ESTABLISHED
TCP   10.0.0.5:64979  91.190.218.54:12350       ESTABLISHED
TCP   10.0.0.5:64980  msnbot-65-52-108-74:https ESTABLISHED
TCP   10.0.0.5:64987  col402-m:https            ESTABLISHED
TCP   10.0.0.5:64999  40.114.216.241:https      ESTABLISHED
TCP   10.0.0.5:65000  a104-91-230-158:https     CLOSE_WAIT
TCP   10.0.0.5:65006  a104-91-230-158:https     CLOSE_WAIT
TCP   10.0.0.5:65142  a23-193-243-216:https     CLOSE_WAIT
TCP   10.0.0.5:65272  stackoverflow:https       ESTABLISHED
TCP   10.0.0.5:65284  12.171.5.32:https         ESTABLISHED
TCP   10.0.0.5:65287  ec2-54-82-42-17:http      ESTABLISHED
TCP   127.0.0.1:49451 perrito4:49452            ESTABLISHED
TCP   127.0.0.1:49452 perrito4:49451            ESTABLISHED
TCP   127.0.0.1:61911 perrito4:0                LISTENING
TCP   [::]:135        perrito4:0                LISTENING
TCP   [::]:445        perrito4:0                LISTENING
TCP   [::]:623        perrito4:0                LISTENING
TCP   [::]:1521       perrito4:0                LISTENING
TCP   [::]:5500       perrito4:0                LISTENING
TCP   [::]:8080       perrito4:0                LISTENING
TCP   [::]:16992      perrito4:0                LISTENING
TCP   [::]:49152      perrito4:0                LISTENING
TCP   [::]:49153      perrito4:0                LISTENING
TCP   [::]:49154      perrito4:0                LISTENING
TCP   [::]:49155      perrito4:0                LISTENING
TCP   [::]:49161      perrito4:0                LISTENING
TCP   [::]:49178      perrito4:0                LISTENING
TCP   [::]:57541      perrito4:0                LISTENING
TCP   [::1]:52975     perrito4:0                LISTENING
TCP   [::1]:61901     perrito4:61903            ESTABLISHED
TCP   [::1]:61903     perrito4:61901            ESTABLISHED
TCP   [fe80::dd51:3e3a:c1a:afce%13]:1521 perrito4:57542 ESTABLISHED
TCP   [fe80::dd51:3e3a:c1a:afce%13]:57542 perrito4:1521 ESTABLISHED
UDP   0.0.0.0:443     *:*
UDP   0.0.0.0:500     *:*
UDP   0.0.0.0:4500    *:*
UDP   0.0.0.0:46897   *:*
UDP   0.0.0.0:57351   *:*
UDP   10.0.0.5:137    *:*
UDP   10.0.0.5:138    *:*
UDP   10.0.0.5:1900   *:*
UDP   10.0.0.5:63053  *:*
UDP   127.0.0.1:1900  *:*
UDP   127.0.0.1:58243 *:*
UDP   127.0.0.1:63054 *:*
UDP   [::]:500        *:*
UDP   [::]:4500       *:*
UDP   [::1]:1900      *:*
UDP   [::1]:63052     *:*
UDP   [fe80::dd51:3e3a:c1a:afce%13]:1900  *:*
UDP   [fe80::dd51:3e3a:c1a:afce%13]:63051 *:*

-- to find the executable using that port

c:\> netstat -b

-- to find the port by protocol

c:\> netstat -p TCP (or other protocol name)

-- for help with additional options

c:\> netstat -h

Related Topics
ADR
DBMS_CONNECTION_POOL
Listener and LISTENER.ORA
Net Services Compression
Profile
What's New In 21c
What's New In 23c

Morgan's Library Page Footer
This site is maintained by Dan Morgan. Last Updated: This site is protected by copyright and trademark laws under U.S. and International law. © 1998-2023 Daniel A. Morgan All Rights Reserved
  DBSecWorx