Oracle 11gR2 RAC が SCAN アドレスに接続できない [終了]
-
26-09-2020 - |
質問
RAC 環境に問題があります。RedHat 6、Oracle 11.2.0.4 SEを使用しています。ASM を使用して 2 ノード RAC をセットアップします。
SQL Developerを使用して接続する場合、いずれかのクラスタ・ノードに直接接続するとサービス(dev1.xxxx-dmz.local)に接続できますが、クラスタ名を使用しようとすると次のメッセージが表示されます。
Status : Failure -Test failed: IO Error: The Network Adapter could not establish the connection
3つのIPアドレス(172.28.1.191、192、193)CSYA-Orarac1(172.28.1.91)CSYA-ORARAC1-VIP(172.28.1.95)CSYA-ORARAC2(172.28.1.92)を備えた次のDNSセットアップCSYA-OR Clusterがあります。 CSYA-ORARAC2-VIP(172.28.1.96)
出力
$ORACLE_GRID/bin/srvctl status scan
SCAN VIP scan1 is enabled
SCAN VIP scan1 is running on node csya-orarac2
SCAN VIP scan2 is enabled
SCAN VIP scan2 is running on node csya-orarac1
SCAN VIP scan3 is enabled
SCAN VIP scan3 is running on node csya-orarac1
$ORACLE_GRID/bin/srvctl status scan_listener
SCAN Listener LISTENER_SCAN1 is enabled
SCAN listener LISTENER_SCAN1 is running on node csya-orarac2
SCAN Listener LISTENER_SCAN2 is enabled
SCAN listener LISTENER_SCAN2 is running on node csya-orarac1
SCAN Listener LISTENER_SCAN3 is enabled
SCAN listener LISTENER_SCAN3 is running on node csya-orarac1
csya-orarac1
./lsnrctl status listener
LSNRCTL for Linux: Version 11.2.0.4.0 - Production on 08-MAY-2015 12:05:16
Copyright (c) 1991, 2013, Oracle. All rights reserved.
Connecting to (DESCRIPTION=(ADDRESS=(PROTOCOL=IPC)(KEY=LISTENER)))
STATUS of the LISTENER
------------------------
Alias LISTENER
Version TNSLSNR for Linux: Version 11.2.0.4.0 - Production
Start Date 08-MAY-2015 11:30:10
Uptime 0 days 0 hr. 35 min. 6 sec
Trace Level off
Security ON: Local OS Authentication
SNMP OFF
Listener Parameter File /u01/app/11.2.0/grid/network/admin/listener.ora
Listener Log File /u01/app/oracle/diag/tnslsnr/csya-orarac1/listener/alert/log.xml
Listening Endpoints Summary...
(DESCRIPTION=(ADDRESS=(PROTOCOL=ipc)(KEY=LISTENER)))
(DESCRIPTION=(ADDRESS=(PROTOCOL=tcp)(HOST=172.28.1.91)(PORT=1521)))
(DESCRIPTION=(ADDRESS=(PROTOCOL=tcp)(HOST=172.28.1.95)(PORT=1521)))
Services Summary...
Service "+ASM" has 1 instance(s).
Instance "+ASM1", status READY, has 1 handler(s) for this service...
Service "dev1.xxxx-dmz.local" has 1 instance(s).
Instance "dev11", status READY, has 1 handler(s) for this service...
Service "dev1XDB.xxxx-dmz.local" has 1 instance(s).
Instance "dev11", status READY, has 1 handler(s) for this service...
The command completed successfully
csya-orarac1
./lsnrctl status listener_scan2
LSNRCTL for Linux: Version 11.2.0.4.0 - Production on 08-MAY-2015 12:06:48
Copyright (c) 1991, 2013, Oracle. All rights reserved.
Connecting to (DESCRIPTION=(ADDRESS=(PROTOCOL=IPC)(KEY=LISTENER_SCAN2)))
STATUS of the LISTENER
------------------------
Alias LISTENER_SCAN2
Version TNSLSNR for Linux: Version 11.2.0.4.0 - Production
Start Date 08-MAY-2015 11:30:04
Uptime 0 days 0 hr. 36 min. 44 sec
Trace Level off
Security ON: Local OS Authentication
SNMP OFF
Listener Parameter File /u01/app/11.2.0/grid/network/admin/listener.ora
Listener Log File /u01/app/11.2.0/grid/log/diag/tnslsnr/csya-orarac1/listener_scan2/alert/log.xml
Listening Endpoints Summary...
(DESCRIPTION=(ADDRESS=(PROTOCOL=ipc)(KEY=LISTENER_SCAN2)))
(DESCRIPTION=(ADDRESS=(PROTOCOL=tcp)(HOST=172.28.1.192)(PORT=1521)))
Services Summary...
Service "dev1.xxxx-dmz.local" has 2 instance(s).
Instance "dev11", status READY, has 1 handler(s) for this service...
Instance "dev12", status READY, has 1 handler(s) for this service...
Service "dev1XDB.xxxx-dmz.local" has 2 instance(s).
Instance "dev11", status READY, has 1 handler(s) for this service...
Instance "dev12", status READY, has 1 handler(s) for this service...
The command completed successfully
csya-orarac1
./lsnrctl status listener_scan3
LSNRCTL for Linux: Version 11.2.0.4.0 - Production on 08-MAY-2015 12:10:50
Copyright (c) 1991, 2013, Oracle. All rights reserved.
Connecting to (DESCRIPTION=(ADDRESS=(PROTOCOL=IPC)(KEY=LISTENER_SCAN3)))
STATUS of the LISTENER
------------------------
Alias LISTENER_SCAN3
Version TNSLSNR for Linux: Version 11.2.0.4.0 - Production
Start Date 08-MAY-2015 11:30:05
Uptime 0 days 0 hr. 40 min. 44 sec
Trace Level off
Security ON: Local OS Authentication
SNMP OFF
Listener Parameter File /u01/app/11.2.0/grid/network/admin/listener.ora
Listener Log File /u01/app/11.2.0/grid/log/diag/tnslsnr/csya-orarac1/listener_scan3/alert/log.xml
Listening Endpoints Summary...
(DESCRIPTION=(ADDRESS=(PROTOCOL=ipc)(KEY=LISTENER_SCAN3)))
(DESCRIPTION=(ADDRESS=(PROTOCOL=tcp)(HOST=172.28.1.191)(PORT=1521)))
Services Summary...
Service "dev1.xxxx-dmz.local" has 2 instance(s).
Instance "dev11", status READY, has 1 handler(s) for this service...
Instance "dev12", status READY, has 1 handler(s) for this service...
Service "dev1XDB.xxxx-dmz.local" has 2 instance(s).
Instance "dev11", status READY, has 1 handler(s) for this service...
Instance "dev12", status READY, has 1 handler(s) for this service...
The command completed successfully
csya-orarac1
nslookup csya-or-cluster
Server: 172.28.1.42
Address: 172.28.1.42#53
Name: csya-or-cluster.xxxx-dmz.local
Address: 172.28.1.191
Name: csya-or-cluster.xxxx-dmz.local
Address: 172.28.1.193
Name: csya-or-cluster.xxxx-dmz.local
Address: 172.28.1.192
csya-orarac2
./lsnrctl status listener_scan1
LSNRCTL for Linux: Version 11.2.0.4.0 - Production on 08-MAY-2015 12:07:51
Copyright (c) 1991, 2013, Oracle. All rights reserved.
Connecting to (DESCRIPTION=(ADDRESS=(PROTOCOL=IPC)(KEY=LISTENER_SCAN1)))
STATUS of the LISTENER
------------------------
Alias LISTENER_SCAN1
Version TNSLSNR for Linux: Version 11.2.0.4.0 - Production
Start Date 08-MAY-2015 11:30:02
Uptime 0 days 0 hr. 37 min. 49 sec
Trace Level off
Security ON: Local OS Authentication
SNMP OFF
Listener Parameter File /u01/app/11.2.0/grid/network/admin/listener.ora
Listener Log File /u01/app/11.2.0/grid/log/diag/tnslsnr/csya-orarac2/listener_scan1/alert/log.xml
Listening Endpoints Summary...
(DESCRIPTION=(ADDRESS=(PROTOCOL=ipc)(KEY=LISTENER_SCAN1)))
(DESCRIPTION=(ADDRESS=(PROTOCOL=tcp)(HOST=172.28.1.193)(PORT=1521)))
Services Summary...
Service "dev1.xxxx-dmz.local" has 2 instance(s).
Instance "dev11", status READY, has 1 handler(s) for this service...
Instance "dev12", status READY, has 1 handler(s) for this service...
Service "dev1XDB.xxxx-dmz.local" has 2 instance(s).
Instance "dev11", status READY, has 1 handler(s) for this service...
Instance "dev12", status READY, has 1 handler(s) for this service...
The command completed successfully
csya-orarac2
nslookup csya-or-cluster
Server: 172.28.1.42
Address: 172.28.1.42#53
Name: csya-or-cluster.xxxx-dmz.local
Address: 172.28.1.193
Name: csya-or-cluster.xxxx-dmz.local
Address: 172.28.1.191
Name: csya-or-cluster.xxxx-dmz.local
Address: 172.28.1.192
どちらのノードからでも次のように sqlplus を使用してローカルに接続できます
sqlplus system/xxxxxxx@csya-or-cluster.xxxx-dmz.local:1521/dev1.xxxx-dmz.local
csya-orarac1 のリスナーパラメータは次のように設定されます。
SQL> show parameter _listener
NAME TYPE VALUE
------------------------------------ ----------- ------------------------------
local_listener string (DESCRIPTION=(ADDRESS_LIST=(AD
DRESS=(PROTOCOL=TCP)(HOST=xxxx
-orarac1.xxxx-dmz.local)(PORT=
1521))))
remote_listener string csya-or-cluster.xxxx-dmz.local
:1521
csya-orarac2 のリスナーパラメータは次のように設定されます。
SQL> show parameter _listener
NAME TYPE VALUE
------------------------------------ ----------- ------------------------------
local_listener string (DESCRIPTION=(ADDRESS_LIST=(AD
DRESS=(PROTOCOL=TCP)(HOST=csya
-orarac2.xxxx-dmz.local)(PORT=
1521))))
remote_listener string csya-or-cluster.xxxx-dmz.local
:1521
両方のノード上の hosts ファイル
127.0.0.1 localhost localhost.localdomain localhost4 localhost4.localdomain4
::1 localhost localhost.localdomain localhost6 localhost6.localdomain6
192.168.28.92 rhproxy.xxxxxxxxx.com
#Public Host Names
172.28.1.91 csya-orarac1.xxxx-dmz.local csya-orarac1
172.28.1.92 csya-orarac2.xxxx-dmz.local csya-orarac2
#Private Host Names
172.28.97.91 csya-orarac1-priv.xxxx-dmz.local csya-orarac1-priv
172.28.97.92 csya-orarac2-priv.xxxx-dmz.local csya-orarac2-priv
#Virtual Host Names
172.28.1.95 csya-orarac1-vip.xxxx-dmz.local csya-orarac1-vip
172.28.1.96 csya-orarac2-vip.xxxx-dmz.local csya-orarac2-vip
172.28.1.229 rhproxy rhproxy.xxxxxxxxxx.com
誰かが何が問題なのかわかるといいのですが、オンラインで他の人が同様の問題を抱えているのを見ましたが、彼らが投稿した解決策はどれも私には効果がないようです。
ありがとう
解決
この問題は、ファイアウォール ポリシーにより、ポート 1521 経由での VIP アドレスへのアクセスが許可されていないことが原因であることが判明しました。これらの IP は許可されるようになり、問題は解決されました。おかげで バラズ すべての助けのために。