about ports used in connection pool to oracle

[Geminist]

There're two servers,one with weblogic and the other with oracle.
Now they're supposed to work on internet.All the ports are to be closed except the necessary ones concerning security strategy.
The connection pool of weblogic requires port 1521 to access oracle server.I told them to open 1521.But connection failed.Tracing the net status,I found there would be a thread connecting to some port of oracle server other than 1521 during the connection.It seems incremental:1992,1993,...2070,2071,2080,2081,2082,2083..
Anyone would tell me how to find out the port range of this activity so I may decide how to set the fire wall?

 

[kduffin]

What are you doing to see the sockets/trace the connection? If you look at the netstat on the Weblogic server, you'll see something similar to:

172.16.2.81.58288 172.16.3.204.1521 24820 0 24820 0 ESTABLISHED
172.16.2.81.58351 172.16.3.204.1521 24820 0 24820 0 ESTABLISHED
172.16.2.81.58369 172.16.3.204.1521 24820 0 24820 0 ESTABLISHED
172.16.2.81.58370 172.16.3.204.1521 24820 0 24820 0 ESTABLISHED

The first socket (IP/port) is local while the second is the remote destination. Local IP/port combinations will change and increment as you state. The destination should not change.

You should only have to open port 1521/tcp. What firewall are you using?

Cheers,

Keith