Firewall Rules for External Traffic Through the Encrypted VPN Tunnel
If you use the Oracle-provided TLS VPN solution, the following table is
informational only, illustrating the traffic transmitted over the VPN in support of
Oracle Advanced Support Gateway. If the alternative VPN solution is used, the
following traffic must be allowed to communicate over the VPN.
Table 2 Firewall Rules between Oracle Advanced Support Gateway and the Oracle Data
Center Using VPN Tunnel
|
|
|
|
|
Oracle Advanced Support Gateway
|
-
192.206.43.194/32
-
198.51.38.197/32
|
Syslog (TCP/514)
|
Oracle Advanced Support Gateway Syslog
|
|
Oracle Advanced Support Gateway
|
198.51.38.194/32
|
HTTPS (TCP/8080,9898)
|
Oracle Advanced Support Gateway file integrity
monitoring
|
|
198.51.38.193/32
|
Oracle Advanced Support Gateway
|
HTTPS (TCP/8080,9898)
|
Oracle Advanced Support Gateway file integrity monitoring
|
-
192.206.43.209/32
-
198.51.38.209/32
-
140.85.164.34/32
|
Oracle Advanced Support Gateway
|
Security Scanner
-
TCP/UDP/1-65535
-
ICMP (Types 8 & 0)
|
Oracle Advanced Support Gateway availability and security
scanning
|
-
198.51.37.1/32
-
193.188.5.1/32
-
140.83.88.1/32
-
140.83.88.129/32
-
140.83.89.1/32
-
141.146.155.40/32
-
141.146.155.41/32
-
192.206.43.208/32
-
198.51.38.208/32
|
Oracle Advanced Support Gateway
|
|
Management traffic to remotely manage Oracle Advanced Support
Gateway and also facilitate remote access
|
|
Oracle Advanced Support Gateway
|
-
192.206.43.196/32
-
198.51.38.198/32
|
HTTPS (TCP/443)
|
REST services for Oracle Advanced Support Gateway
|
|
Oracle Advanced Support Gateway
|
-
192.206.43.193/32
-
198.51.38.196/32
|
LDAP (TCP/636)
|
Oracle Advanced Support Gateway authentication (LDAP)
|
|