• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1625
  • Last Modified:

Oracle connection through ASA

I have a web server running Apache 5.1 connected to the DMZ port on the ASA 5510. We have an Oracle server inside our network. I have an open 1521 port between the web server ip and the oracle server ip. when anyone connects to the web server through the web app and tries to create a BOL we intermittantly get an error saying the connection timed out. Below is a copy of the error:
Anyway, we need someone to do some testing to see if we can replicate this error 

2008-10-24 21:29:00,312 [http-8080-Processor25] ERROR org.apache.catalina.core.ContainerBase.[Catalina].[localhost].[/ecoenergy].[action] - Servlet.service() for servlet action threw exception
java.lang.IllegalStateException: Cannot forward after response has been committed
          at org.apache.catalina.core.ApplicationDispatcher.doForward(ApplicationDispatcher.java:313)
          at org.apache.catalina.core.ApplicationDispatcher.forward(ApplicationDispatcher.java:301)
          at org.apache.struts.action.RequestProcessor.doForward(RequestProcessor.java:1056)
          at org.apache.struts.action.RequestProcessor.processForwardConfig(RequestProcessor.java:388)
          at org.apache.struts.action.RequestProcessor.process(RequestProcessor.java:231)
          at org.apache.struts.action.ActionServlet.process(ActionServlet.java:1164)
          at org.apache.struts.action.ActionServlet.doGet(ActionServlet.java:397)
          at javax.servlet.http.HttpServlet.service(HttpServlet.java:689)
          at javax.servlet.http.HttpServlet.service(HttpServlet.java:802)
          at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:252)
          at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:173)
          at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213)
          at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:178)
          at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:126)
          at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:105)
          at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:107)
          at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:148)
          at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:856)
          at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.processConnection(Http11Protocol.java:744)
          at org.apache.tomcat.util.net.PoolTcpEndpoint.processSocket(PoolTcpEndpoint.java:527)
          at org.apache.tomcat.util.net.LeaderFollowerWorkerThread.runIt(LeaderFollowerWorkerThread.java:80)
          at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:684)
          at java.lang.Thread.run(Thread.java:534)
The ASA is 2 months old, both the web server and the oracle server are running Windows 2003 server R2, this problem only started when we connected the web server to the DMZ 2 days ago. we have 2 other web apps running on the same server connected to the DMZ port, one pointing to a SQL server with no problems and another pointing to the same oracle server with no problems.
0
johnsross
Asked:
johnsross
1 Solution
 
QuoriCommented:
Run a debug on the ASA and initiate the connection again and see what happens.

I'd suggest doing this in a time of low usage. :)
0
 
johnsrossAuthor Commented:
Thx, already started that process after submitting the question. turns out the ASA 5510 and its SQL*NET filter has a glitch in the buffer size limit, Cisco had a patch for the device, after patching it the traffic is flowing through between the DMZ and the internal server.
0

Featured Post

Managing Security & Risk at the Speed of Business

Gartner Research VP, Neil McDonald & AlgoSec CTO, Prof. Avishai Wool, discuss the business-driven approach to automated security policy management, its benefits and how to align security policy management with business processes to address today's security challenges.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now