cancel
Showing results for 
Search instead for 
Did you mean: 

Router Issue

Former Member
0 Kudos

Dears,

I am configuring sap router on my Netweaver 2004s server.

I have created saprouttab file.File is:

  1. SNC connection to SAP

KT "p:CN=sapserv2, OU=SAProuter, O=SAP, C=DE" 194.39.131.34 *

  1. SNC-connection from SAP to local system for R/3 Support

KP "p:CN=sapserv2, OU=SAProuter, O=SAP, C=DE" 122.160.80.45 *

  1. Access from local network to SAP

P * 194.39.131.34 3299

  1. All other connections will be denied

D * * *

122.160.80.45 is our public IP.

Not I started saprouter by Saprouter -r -R saprouttab.ini -K "p: CN=computer-prosind, OU=0000802166, OU=SAProuter, O=SAP, C=DE"

Its showing:

trcfile dev_rout

no logging active

So First I want to know that whether my saprouter has been started or not.

Second thing In RFC creation step in msg server option i have to enter this format string but not getting what exactly i should enter in my case.

/H/<IP>/S/sapdp99/H/194.39.131.34/sapdp99/H/oss001

My public IP is 122.160.80.45 and local server IP 172.168.1.15 and what this H and S showing in string.

Please suggest.

Deepak.

Edited by: Deepak Mittal on Sep 5, 2008 7:00 AM

Accepted Solutions (0)

Answers (1)

Answers (1)

Former Member
0 Kudos

Hi,


Not I started saprouter by Saprouter -r -R saprouttab.ini -K "p: CN=computer-prosind, OU=0000802166, OU=SAProuter, O=SAP, C=DE"

create saprouttab file without any extension.

you can install snc saprouter as windows service also

check Note 525751 - Installation of the SNC SAPRouter as NT Service

also check

the saposs rfc destination has following value

/H/<local_ip>/S/sapdp99/H/<sapserv_ip>/S/sapdp99/H/oss001

where local_ip is your local ip where saprouter is running

sapserv_ip = sap server ip in your case it is 194.39.131.34

don't maintain saposs rfc directly insted of that use tcode OSS1 -> parameter -> technical settings -> change

maintain it here.

also check Note 30289 - SAProuter documentation

regards,

kaushal

Former Member
0 Kudos

Hi Kaushal,

Thanks for the information.

While starting router its showing:

C:\saprouter>saprouter -r

trcfile dev_rout

no logging active

      • ERROR => invalid lines in './saprouttab', see 'dev_rout' [nirout.cpp 7998]

SAP Network Interface Router, Version 38.10

Dev_rout file is:

command line arg 0: saprouter

command line arg 1: -r

main: pid = 2148, ppid = 0, port = 3299, parent port = 0 (0 = parent is not a saprouter)

reading routtab: './saprouttab'

      • ERROR => SNC field without SNC active, skip line 2 [nirout.cpp 7767]

      • ERROR => SNC field without SNC active, skip line 4 [nirout.cpp 7767]

Please suggest.

Former Member
0 Kudos

Hi,

you can not run SNC router using saprouter -r command.

did you check the link which i suggested.

you need to execute following in case of SNC router.

Saprouter -r -S <port> -K "p: <Your Distingiushed Name>"

-K tells the saprouter to start with loading the SNC library.

Example: saprouter -r -S 3299 u2013K "p:CN=KPL60020686, OU=0000038946,OU=SAProuter, O=SAP, C=DE"

regards,

kaushal

Former Member
0 Kudos

Output of saprouter -r -S 3299 -K "p:CN=computer-prosind, OU=0000802166, OU=SAProuter, O=SAP, C=DE" is:

SAP Network Interface Router, Version 38.10

Compiled Jun 2 2008 01:55:34

start router : saprouter -r

stop router : saprouter -s

soft shutdown: saprouter -p

router info : saprouter -l (-L)

new routtab : saprouter -n

toggle trace : saprouter -t

cancel route : saprouter -c id

dump buffers : saprouter -d

flush " : saprouter -f

hide errInfo : saprouter -z

start router with third-party library: saprouter -a library

additional options

-R routtab : name of route-permission-file (default ./saprouttab)

-G logfile : name of log file (default no logging)

-T tracefile : name of trace file (default dev_rout)

-V tracelev : trace level to run with (default 1)

-H hostname : of running SAProuter (default localhost)

-S service : service-name / number (default 3299)

-P infopass : password for info requests

-C clients : maximum no of clients (default 800)

-Y servers : maximum no of servers to start (default 1)

-K [myname] : activate SNC; if given, use 'myname' as own sec-id

-A initstring: initialization options for third-party library

-D : switch DNS reverse lookup off

-E : append log- and trace-files to existing

-J filesize : maximum log file size in byte (default off)

-6 : IPv6 enabled

-Z : hide connect error information for clients

expert options

-B quelength : max. no. of queued packets per client (default 1)

-Q queuesize : max. total size for all queues (default 20000000 bytes)

-W waittime : timeout for blocking net-calls (default 5000 millisec)

-M min.max : portrange for outgoing connects, like -M 1.1023

-I address : address for outgoing connects, like -I 155.56.76.6

  1. this is a sample routtab : -----------------------------------------

D host1 host2 serviceX

D host3

P * * serviceX

P 155.56.. 155.56

P 155.57.1011xxxx.*

P host4 host5 * xxx

P host6 localhost 3299

P host7 host8 telnet

S host9

P0,* host10

KP sncname1 * *

KS * host11 *

KD "sncname "abc" * *

KT sncname3 host11 *

  1. deny routes from host1 to host2 serviceX

  2. deny all routes from host3

  3. permit routes from anywhere to any host using serviceX

  4. permit all routes from/to addresses matching 155.56

  5. permit ... with 3rd byte matching 1011xxxx

  6. permit routes from host4 to host5 if password xxx supplied

  7. permit information requests from host6

  8. permit native-protocol-routes to non-SAP-server telnet

  9. permit ... excluding native-protocol-routes (SAP-servers only)

  10. permit ... if number of preceding/succeeding hops (SAProuters) <= 0/*

  11. permit SNC-connection with partnerid = 'sncname1' to any host

  12. permit all SAP-SAP SNC-connections to host11

  13. deny all SNC-connections with partnerid = 'sncname "abc'

  14. open connects to host11 with SNC enabled and partnerid = 'sncname3'

  1. first match [host/sncname host service] is used

  2. permission is denied if no entry matches

  3. service wildcard (*) does not apply to native-protocol-routes

  4. --------------------------------------------------------------------

Is it means that connection is working fine.

In OSS1 my settings is:

SAP router1

Name SAPRouter

IP Address 172.168.1.15 (my server IP where i am installing router)

Instance no. 01

SAP router at SAP

Name sapserv2 Name oss001

IP Address 194.39.131.34 DB Name O01

Instance no. 99 Instance no. 01

When I click on logon it shows:

Unable to connect to SAPNet message ser

(Default connection will be used...)

and then internel error

Please suggest.

Deepak

Former Member
0 Kudos

Hi,

first check the link which i suggest according to that maintain your sapsouttab file and start saprouter.

regards,

kaushal

Former Member
0 Kudos

Hi Kaushal,

Checked the link and did changes in saprouttab and OSS1 as u suggested.

File is:

KT "p:CN=sapserv2, OU=SAProuter, O=SAP, C=DE" 194.39.131.34 *

KP "p:CN=sapserv2, OU=SAProuter, O=SAP, C=DE" 172.168.1.15 10

P 172.168.1.15 194.39.131.34 3299

D * * *

172.168.1.15 is my local IP.

but in OSS1 while login same error and RFC is also not working.

In RFC showing host name H/172.168.1.15/S/sapdp99/H/194.39.131.34/sapdp99/H/oss001 is unknown.

IP 194.39.131.34 is pingable from my router host.

Deepak

Edited by: Deepak Mittal on Sep 5, 2008 9:26 AM

Former Member
0 Kudos

Hi,

send request to me , check my business card on SDN,

I'll send you documentation.

regards,

kaushal