Release Notes
Release 5.1 for Oracle Linux
E22689-03
December 2011
These Release Notes contain important information about the Oracle Database Firewall Release 5.1. They apply to Oracle Database Firewall on all platforms.
This document contains the following sections:
You can download the most current version of this document from the following Web site:
Refer to the Oracle Database Firewall Installation Guide for installation instructions.
You can upgrade from Oracle Database Firewall release 5.0 to 5.1.
If you have not already done so, you must apply the Oracle Database Firewall Bundle Patch 5 (Patch 13077854) before upgrading from release 5.0 to 5.1.
The upgrade procedure is done in the three stages detailed in the following sections. If you have a Management Server, perform all three of these stages on the Management Server first, then on the Database Firewall:
Caution:
Be sure that your configuration and data backups are up-to-date before performing the upgrade procedure.To upgrade the base platform:
Log in to the Database Firewall or Management Server as root.
Insert Oracle Database Firewall 5.1 installation disk 1, and mount using the command:
mount /dev/cdrom /mnt
Create a /tmp/disk1.repo file, and insert the following in this file:
[DBFW-disk1] name=DBFW Platform update baseurl=file:///mnt/secerno/updates enabled=1 gpgcheck=0
Execute the command:
yum -y update -c /tmp/disk1.repo --disablerepo=secerno-updates
Inspect the output for errors.
Unmount Disk 1 using the command:
umount /mnt
Remove the disk from the drive.
Note:
If you have managed Database Firewalls, first upgrade the Management Server, then the Database Firewalls.To upgrade the Oracle Database Firewall or Management Server:
Insert Oracle Database Firewall 5.1 installation Disk 2, and mount using the command:
mount /dev/cdrom /mnt
Copy the RPM file that matches your platform from Disk 2 to the Database Firewall or Management Server.
The RPM file is in the root directory on Disk 2.
Apply the RPM by running the command:
rpm --freshen --repackage RPM_File
Unmount Disk 2 using the command:
umount /mnt
Reboot the Database Firewall or Management Server.
Note: Check console 9 for additional booting messages.
To verify this procedure:
Log in to the Database Firewall or Management Server Administration Console, and check that it displays version 5.1.
Run one of the following commands and verify that version 5.1 is displayed.
For a Database Firewall, run: rpm -q dbfw-multi
For a Management Server, run: rpm -q dbfw-mgmtsvr
Run the command:
uname -r
The output should be: 2.6.18-274.3.1.0.1.el5PAE or later.
To upgrade the embedded Oracle Database:
Insert Oracle Database Firewall 5.1 installation Disk 3.
As user root, mount using the command:
mount /dev/cdrom /mnt
Shutdown the following Database Firewall or Management Server system services:
/etc/init.d/monitor stop /etc/init.d/dbfw stop /etc/init.d/controller stop /etc/init.d/stund stop /etc/init.d/dbfwlistener stop /etc/init.d/dbfwdb stop
Switch to user oracle:
su - oracle
Run the command:
. /var/lib/oracle/dbfw/bin/oraenv
Specify dbfwdb when prompted.
Install the opatch utility update:
cd $ORACLE_HOME unzip /mnt/updates/opatch/p6880880_112000_LINUX.zip
If prompted, select to replace all files in this directory.
Check that the opatch utility was successfully installed by running the command:
/var/lib/oracle/dbfw/OPatch/opatch version
Version 11.2.0.1.6 should be displayed.
Unzip the PSU zip file:
unzip /mnt/updates/psu/p12419331_112020_LINUX.zip -d /tmp
Change directory:
cd /tmp/12419331
In the /tmp/12419331 apply the patch using the command:
/var/lib/oracle/dbfw/OPatch/opatch apply
If there are errors, see the patch documentation.
Exit, and start the Oracle database as user root:
/etc/init.d/dbfwdb start /etc/init.d/dbfwlistener start
Switch to user oracle:
su - oracle
Run the command:
. /var/lib/oracle/dbfw/bin/oraenv
Specify dbfwdb when prompted.
Upgrade existing databases:
sqlplus /nolog SQL> CONNECT / AS SYSDBA SQL> @/var/lib/oracle/dbfw/rdbms/admin/catbundle.sql psu apply SQL> QUIT
In the directory $ORACLE_BASE/cfgtoollogs/catbundle, check the following files for errors. The timestamp is the actual time:
catbundle_PSU_database SID_APPLY_timestamp.log
catbundle_PSU_database SID_GENERATE_timestamp.log
Reboot the system.
Note: Check console 9 for additional booting messages.
Verify that the Oracle database was upgraded correctly:
Log in as user Oracle, and run the command:
. /var/lib/oracle/dbfw/bin/oraenv
Specify dbfwdb when prompted.
Log in to the database:
sqlplus sys as sysdba
Check the dba_registry_history table:
select * from dba_registry_history
Verify that patch set update 11.2.0.2.3 is mentioned.
The system has the following known issues:
Enabling or Disabling Local Monitor in DPE Mode Terminates Database Sessions
Update from Disc 1 Fails if Run a Second Time During Upgragde
If you enable or disable Local Monitor from a protected database being monitored in DPE mode, any existing database sessions terminate.
This issue is tracked with Oracle bug 11859598.
After the first stage of the upgrade procedure (upgrading the base platform), the booting Database Firewall message is not displayed. To see the complete booting messages, check console 9.
This issue is tracked with Oracle bug 13461821.
During stage one of the upgrade (upgrading the base platform), once you execute the command in Step 4 (yum -update...), if you then run this command another time, for example if you use a different Disc 1, the update fails.
The workaround is to run the following command before you run the yum -update... command again:
yum clean all -c /tmp/disk1.repo --disablerepo=secerno-updates
This issue is tracked with Oracle bug 13452515.
For information about Oracle's commitment to accessibility, visit the Oracle Accessibility Program website at http://www.oracle.com/pls/topic/lookup?ctx=acc&id=docacc.
Oracle customers have access to electronic support through My Oracle Support. For information, visit http://www.oracle.com/pls/topic/lookup?ctx=acc&id=info or visit http://www.oracle.com/pls/topic/lookup?ctx=acc&id=trs if you are hearing impaired.
Oracle Database Firewall Release Notes, Release 5.1 for Oracle Linux
E22689-03
Copyright © 2003, 2011, Oracle and/or its affiliates. All rights reserved.
This software and related documentation are provided under a license agreement containing restrictions on use and disclosure and are protected by intellectual property laws. Except as expressly permitted in your license agreement or allowed by law, you may not use, copy, reproduce, translate, broadcast, modify, license, transmit, distribute, exhibit, perform, publish, or display any part, in any form, or by any means. Reverse engineering, disassembly, or decompilation of this software, unless required by law for interoperability, is prohibited.
The information contained herein is subject to change without notice and is not warranted to be error-free. If you find any errors, please report them to us in writing.
If this is software or related documentation that is delivered to the U.S. Government or anyone licensing it on behalf of the U.S. Government, the following notice is applicable:
U.S. GOVERNMENT RIGHTS Programs, software, databases, and related documentation and technical data delivered to U.S. Government customers are "commercial computer software" or "commercial technical data" pursuant to the applicable Federal Acquisition Regulation and agency-specific supplemental regulations. As such, the use, duplication, disclosure, modification, and adaptation shall be subject to the restrictions and license terms set forth in the applicable Government contract, and, to the extent applicable by the terms of the Government contract, the additional rights set forth in FAR 52.227-19, Commercial Computer Software License (December 2007). Oracle America, Inc., 500 Oracle Parkway, Redwood City, CA 94065.
This software or hardware is developed for general use in a variety of information management applications. It is not developed or intended for use in any inherently dangerous applications, including applications that may create a risk of personal injury. If you use this software or hardware in dangerous applications, then you shall be responsible to take all appropriate fail-safe, backup, redundancy, and other measures to ensure its safe use. Oracle Corporation and its affiliates disclaim any liability for any damages caused by use of this software or hardware in dangerous applications.
Oracle and Java are registered trademarks of Oracle and/or its affiliates. Other names may be trademarks of their respective owners.
Intel and Intel Xeon are trademarks or registered trademarks of Intel Corporation. All SPARC trademarks are used under license and are trademarks or registered trademarks of SPARC International, Inc. AMD, Opteron, the AMD logo, and the AMD Opteron logo are trademarks or registered trademarks of Advanced Micro Devices. UNIX is a registered trademark of The Open Group.
This software or hardware and documentation may provide access to or information on content, products, and services from third parties. Oracle Corporation and its affiliates are not responsible for and expressly disclaim all warranties of any kind with respect to third-party content, products, and services. Oracle Corporation and its affiliates will not be responsible for any loss, costs, or damages incurred due to your access to or use of third-party content, products, or services.