PRVF-7617 Cluster Verify Fails For Network Check if Firewall Exists_1357657.1
PRVF-7617 Cluster Verify (cluvfy) Fails For Network Check if Firewall Exists (Doc ID 1357657.1)
In this Document
Applies to:Oracle Database - Enterprise Edition - Version 11.2.0.1 and laterInformation in this document applies to any platform. Symptoms
During Cluster Verification, a part of cluster installation, the connectivity check between nodes may fail with the following errors Check: TCP connectivity of subnet "10.0.0.0" Source Destination Connected? ------------------------------ ------------------------------ ---------------- racnode01:10.0.0.1 racnode02:10.0.0.2 failed ERROR: PRVF-7617 : Node connectivity between "racnode01 : 10.0.0.1" and "racnode02 : 10.0.0.2" failed Result: TCP connectivity check failed for subnet "10.0.0.0" This may occur on any of the interface. Causeiptables (a Linux firewall) is active between the nodes, blocking network traffic on the cluster interconnect network. Solution
1. A temporary solution is to disable iptables. A more permanent soution, if iptables is required, is to configure the iptables such that it does not block interconnect traffic(no firewall should exist between cluster nodes).
# service iptables save
# service iptables stop # chkconfig iptables off
# service ip6tables save
# service ipt6ables stop # chkconfig ip6tables off Note: IPV6 is not supported with Oracle Clusterware/RAC 11gR2 2. If SElinux is set to enforcing, change it to permissive or disable could help too. To check what mode the system is running:
# cat /selinux/enforce
Temporary switchoff enforcement, as root user:
# echo 0 > /selinux/enforce
This will switch to permissive mode, no reboot is required. To permanently switchoff enforcement, edit /etc/selinux/config, change SELINUX to either "permissive" or "disabled". A server reboot is required if change SELINUX to "disabled".
ReferencesNOTE:1054902.1 - How to Validate Network and Name Resolution Setup for the Clusterware and RACNOTE:1335136.1 - PRVF-7617: TCP connectivity check failed for subnet NOTE:1103313.1 - Grid Infrastructure 11gR2 ROOT.SH Fails on Second Node due to Firewall |
|
來自 “ ITPUB部落格 ” ,連結:http://blog.itpub.net/17252115/viewspace-1439617/,如需轉載,請註明出處,否則將追究法律責任。
相關文章
- Cluster Verification Check Fails With exectask: not found (Doc ID 1271177.1)AI
- Fails to Join the Cluster as CRSD and EVMD are in INTERMEDIATE StateAI
- PRVF-7617: TCP connectivity check failed for subnet (Doc ID 1335136.1)TCPAI
- 利用Cluster Verify Utility工具體驗RAC最佳實踐
- zt_oracle rac private network cluster interconnectOracle
- Runcluvfy-Dns Response Time Check-Fails with PRVF-5636 DNS response_1326997.1DNSAI
- HP:11gR2 runI Fails internal err occu within cluster verif framework"_983713.1AIFramework
- 安裝Oracle cluster報錯 Failure at final check of Oracle CRS Stack 10OracleAI
- 防火牆(firewall)防火牆
- Magic Firewall 簡介
- Centos 7 firewall 命令:CentOS
- firewall通用指令合集
- EM:Installa Require,Check for Config,Test Network Conne betw EM Comp_428665.1UI
- Oracle Profile and PASSWORD_VERIFY_FUNCTIONOracleFunction
- T-SQL Verify Database BackupSQLDatabase
- Database Firewall安全手冊Database
- XDMCP connection failsAI
- RuneScape - To verify your level of combatBAT
- 什麼是防火牆(Firewall)?防火牆
- Database Firewall管理員手冊Database
- onclick="return check()" 和 onclick="check()" 區別
- PHP composer 報錯 certificate verify failedPHPAI
- firewall-cmd 配置地址轉發
- firewall-cmd 常用命令
- centos7 firewall 防火牆 命令CentOS防火牆
- centos7firewall防火牆操作CentOS防火牆
- Database Firewall安全手冊總結Database
- chain RH-Firewall-1-INPUT(轉)AI
- 密碼檢驗函式verify_function密碼函式Function
- The password supplied with the username Domain\UserName was not correct. Verify that it was entered ...AI
- PRVF-5157 : Could not verify ASM group "CRS" ...ASM
- Firewall常用命令,開放埠
- Centos7 防火牆(firewall)開埠CentOS防火牆
- centos7下Firewall使用詳解CentOS
- 開源的firewall(防火牆) SINUS (轉)防火牆
- Database Firewall管理員手冊總結Database
- firewall-cmd 相關命令總結
- redis.cluster/memcached.cluster/wmware esxiRedis