Sun Microsystems, Inc.  Oracle System Handbook - ISO 7.0 May 2018 Internal/Partner Edition
   Home | Current Systems | Former STK Products | EOL Systems | Components | General Info | Search | Feedback

Asset ID: 1-71-1559197.1
Update Date:2017-08-07
Keywords:
Solution Type  Technical Instruction Sure

Solution  1559197.1 :   VLE and VSM6 ASR Client Security Requirements  

Related Items 
    

  • StorageTek Virtual Storage Manager System 6 (VSM6)
    •  
  • Sun Virtual Library Extension (VLE)
    •  
Related Categories 
    

  • PLA-Support>Sun Systems>TAPE>Virtual Tape>SN-TP: VLE
    •  






In this Document


Goal


Solution




Applies to:  

StorageTek Virtual Storage Manager System 6 (VSM6) - Version All Versions and later
Sun Virtual Library Extension (VLE) - Version 1.0 to 1.3 [Release 1.0]
Information in this document applies to any platform.



Goal


To configure firewalls so that VLE or VSM6 product ASR registration and communication will succeed.


To configure firewalls, you will need information about the security aspects of communication between components in the client environment. Port 443 must be open to the URLs in the following table.


 


Solution


 The table below depicts the data collected for case creation, used to determine entitlement.








Data Collected




Destination URL 




Port and Description








Activation event


 




Client registration:
https://transport.oracle.com/v1/queue/registry


Product activation:
https://transport.oracle.com/v1/queue/asr-cam-activation 




Port 443; Static Data collected for purpose of registration and activation. 








Alarm and messages event


 




Alarm and administrative messages:
https://transport.oracle.com/v1/queue/asr-cam-messages


 




Port 443;


Potential case generating events are sent via the secure transport to trigger case generation.


Event type = alert








Audit event




Audit messages:
https://transport.oracle.com/v1/queue/asr-cam-audit


 




Port 443; Dynamic configuration data collected and sent every seven days.


Event type = audit








Heartbeat event


 




Heartbeat messages:
https://transport.oracle.com/v1/queue/asr-cam-heartbeat


 




Port 443; Dynamic data periodically collected to establish a device is capable of connecting.
Sent every 6 hours.


Event type = daily








Customers using the host name AND explicitly limiting outbound traffic at their firewall to the current IP address will need to use IP address 141.146.1.169  for outbound traffic.


Customers using the host name (transport.oracle.com) but NOT explicitly limiting outbound traffic at their firewall to a specific IP address do not need to make any changes.


-    Endpoint: transport.oracle.com will now translate to the new IP address 141.146.1.169
-    Oracle also recommends configuring your firewall rules to allow outbound traffic to all Oracle servers: 141.146.*.*


See also related Knowledge <Document 1586229.1> (What does VSM6 & VLE use for ASR)



Attachments

This solution has no attachment


















       

Copyright © 2018 Oracle, Inc.  All rights reserved.

 Feedback