racli alter network

Modifies the Recovery Appliance protocol with TLS enabled|only|disabled.

Syntax

racli alter network --network_type=VALUE [--silent]

Options

Details

--service

Indicate the service being modified on the system. Valid value is "ra_server". Cannot be used of --network_type or its arguments.

--network_type

Indicate network type on the system. Cannot be used of --service or its arguments.

--encrypt

Specifies TLS encryption status on the system: "only" means HTTPS encryption; "enable" means dual HTTPS and HTTP; and "disable" means HTTP.

--http_port

Specifies HTTP port number to use. Default port is 8001.

--https_port

Specifies HTTPS port number to use. Default port is 8005.

--tcp_port

Specifies the TCP port number to use. Default port is 1521.

--tcps_port

Specifies TCPS port number to use. Default port is 2484

--rep_tcps_port

Specifies the replication TCPS port number to use. Default port is 2485.

--rep_tcp_port

Specifies the replication TCP port number to use. Default port is 1522.

--silent

When present

Refer to the command line syntax regarding which options can be used at the same time.

The optional parameters --network_type and --service cannot be used together, and they cannot each other's optional parameters.

When configuring HTTPS (encrypt=[enable!only]), optional parameters for changing the default ports for HTTP, TCP, and replication TCP are ignored. Similarly, when disabling HTTPS (encrypt=disable), optional parameters for changing ports for HTTPS, TCPS, and replication TCPS are ignored.

Examples

The following example configures TLS on system for dual mode HTTPS and HTP. It changes the TCPS port number and leaves the other ports set to their default values.

racli alter network --service=ra_server --encrypt=enable --tcps_port=2848

If replication is managed by RACLI, running racli alter network to disable or enable TLS on the downstream Recovery Appliance automatically imports the downstream Recovery Appliance's certificate into the upstream Recovery Appliance, updates the upstream Recovery Appliance's tnsnames.ora, and restarts the replication server. Thus, the manual steps mentioned in TLS Replication are no longer required. This is true for bidirectional replication as well.

If replication is not managed by RACLI, and the user runs racli alter network, then the manual steps described in TLS Replication are required.