Change Oracle Listener port number from default 1521 to other

book

Article ID: 184684

calendar_today

Updated On:

Products

Data Loss Prevention Enforce

Issue/Introduction

Due to security issue customer need to change previous default Oralce listener port(1521) number.

Environment

DLP 14.6 - 15.0

Resolution

1. Stop all Vontu service.
2. Run Oralce Net Configuration Assistant.
3. Delete previous Listener as below.

cid:image004.png@01D46F6E.4A70D020
cid:image005.png@01D46F6E.4A70D020

4. Add a new Listener.

cid:image007.png@01D46F6F.A939D6A0
cid:image008.png@01D46F6F.A939D6A0
cid:image009.png@01D46F6F.A939D6A0
cid:image010.png@01D46F6F.A939D6A0

5. Select "Use another port number" and input new port number.

cid:image011.png@01D46F6F.A939D6A0

6. Select "No".

cid:image012.png@01D46F6F.A939D6A0

7. Access Oralce Net Configuration Assistant and Reconfig "Local Net Service Name Configuration".

cid:image014.png@01D46F6F.A939D6A0
cid:image015.png@01D46F6F.A939D6A0


8. Select "PROTECT" as the service name.

cid:image016.png@01D46F6F.A939D6A0

9. Service name is "protect".

cid:image017.png@01D46F6F.A939D6A0

10. Select "TCP" as the Network protocol.

cid:image018.png@01D46F6F.A939D6A0

11. Host name is DB host name or IP address.
      Select Use another port number and input the new port number.

cid:image019.png@01D46F70.94D9D0B0

12. Click Finish.

cid:image021.png@01D46F70.94D9D0B0

13. Stop oracle listener service with command "lsnrctl stop".
14. In Oralce installation path *\oracle\product\12.1.0.2.0\db_1\NETWORK\ADMIN change the pervious port number in "listener.ora" and "tnsnames.ora" files.
15. In "Listener.ora" file, it must has “SECURE_REGISTER_LISTENER= (IPC)” script as below. (If no, add as below)

LISTENER =

  (DESCRIPTION_LIST =

    (DESCRIPTION =

      (ADDRESS = (PROTOCOL = TCP)(HOST = win-64-ora11203.dlpdi.test)(PORT = 15521))

      (ADDRESS = (PROTOCOL = IPC)(KEY = PROTECT))

    )

  )

SECURE_REGISTER_LISTENER= (IPC)

16. In enforce installation path *\SymantecDLP\Protect\config, change "jdbc.dbalias.oracle-thin" option's port number in "jdbc.properties" file.
17. Start listener service with "lsnrctl start" command.
18. Login DB with sysdba and input below two command.

ALTER
SYSTEM
SET local_listener
=
'(DESCRIPTION=(ADDRESS=(PROTOCOL=ipc)(KEY=PROTECT)))'
SCOPE=both;

 

ALTER
SYSTEM
REGISTER;

 

 

19. Start all Vontu service and you can check the new port number after 3~5 minutes.