on 09-05-2008 6:00 AM
Dears,
I am configuring sap router on my Netweaver 2004s server.
I have created saprouttab file.File is:
SNC connection to SAP
KT "p:CN=sapserv2, OU=SAProuter, O=SAP, C=DE" 194.39.131.34 *
SNC-connection from SAP to local system for R/3 Support
KP "p:CN=sapserv2, OU=SAProuter, O=SAP, C=DE" 122.160.80.45 *
Access from local network to SAP
P * 194.39.131.34 3299
All other connections will be denied
D * * *
122.160.80.45 is our public IP.
Not I started saprouter by Saprouter -r -R saprouttab.ini -K "p: CN=computer-prosind, OU=0000802166, OU=SAProuter, O=SAP, C=DE"
Its showing:
trcfile dev_rout
no logging active
So First I want to know that whether my saprouter has been started or not.
Second thing In RFC creation step in msg server option i have to enter this format string but not getting what exactly i should enter in my case.
/H/<IP>/S/sapdp99/H/194.39.131.34/sapdp99/H/oss001
My public IP is 122.160.80.45 and local server IP 172.168.1.15 and what this H and S showing in string.
Please suggest.
Deepak.
Edited by: Deepak Mittal on Sep 5, 2008 7:00 AM
Hi,
Not I started saprouter by Saprouter -r -R saprouttab.ini -K "p: CN=computer-prosind, OU=0000802166, OU=SAProuter, O=SAP, C=DE"
create saprouttab file without any extension.
you can install snc saprouter as windows service also
check Note 525751 - Installation of the SNC SAPRouter as NT Service
the saposs rfc destination has following value
/H/<local_ip>/S/sapdp99/H/<sapserv_ip>/S/sapdp99/H/oss001
where local_ip is your local ip where saprouter is running
sapserv_ip = sap server ip in your case it is 194.39.131.34
don't maintain saposs rfc directly insted of that use tcode OSS1 -> parameter -> technical settings -> change
maintain it here.
also check Note 30289 - SAProuter documentation
regards,
kaushal
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Kaushal,
Thanks for the information.
While starting router its showing:
C:\saprouter>saprouter -r
trcfile dev_rout
no logging active
ERROR => invalid lines in './saprouttab', see 'dev_rout' [nirout.cpp 7998]
SAP Network Interface Router, Version 38.10
Dev_rout file is:
command line arg 0: saprouter
command line arg 1: -r
main: pid = 2148, ppid = 0, port = 3299, parent port = 0 (0 = parent is not a saprouter)
reading routtab: './saprouttab'
ERROR => SNC field without SNC active, skip line 2 [nirout.cpp 7767]
ERROR => SNC field without SNC active, skip line 4 [nirout.cpp 7767]
Please suggest.
Hi,
you can not run SNC router using saprouter -r command.
did you check the link which i suggested.
you need to execute following in case of SNC router.
Saprouter -r -S <port> -K "p: <Your Distingiushed Name>"
-K tells the saprouter to start with loading the SNC library.
Example: saprouter -r -S 3299 u2013K "p:CN=KPL60020686, OU=0000038946,OU=SAProuter, O=SAP, C=DE"
regards,
kaushal
Output of saprouter -r -S 3299 -K "p:CN=computer-prosind, OU=0000802166, OU=SAProuter, O=SAP, C=DE" is:
SAP Network Interface Router, Version 38.10
Compiled Jun 2 2008 01:55:34
start router : saprouter -r
stop router : saprouter -s
soft shutdown: saprouter -p
router info : saprouter -l (-L)
new routtab : saprouter -n
toggle trace : saprouter -t
cancel route : saprouter -c id
dump buffers : saprouter -d
flush " : saprouter -f
hide errInfo : saprouter -z
start router with third-party library: saprouter -a library
additional options
-R routtab : name of route-permission-file (default ./saprouttab)
-G logfile : name of log file (default no logging)
-T tracefile : name of trace file (default dev_rout)
-V tracelev : trace level to run with (default 1)
-H hostname : of running SAProuter (default localhost)
-S service : service-name / number (default 3299)
-P infopass : password for info requests
-C clients : maximum no of clients (default 800)
-Y servers : maximum no of servers to start (default 1)
-K [myname] : activate SNC; if given, use 'myname' as own sec-id
-A initstring: initialization options for third-party library
-D : switch DNS reverse lookup off
-E : append log- and trace-files to existing
-J filesize : maximum log file size in byte (default off)
-6 : IPv6 enabled
-Z : hide connect error information for clients
expert options
-B quelength : max. no. of queued packets per client (default 1)
-Q queuesize : max. total size for all queues (default 20000000 bytes)
-W waittime : timeout for blocking net-calls (default 5000 millisec)
-M min.max : portrange for outgoing connects, like -M 1.1023
-I address : address for outgoing connects, like -I 155.56.76.6
this is a sample routtab : -----------------------------------------
D host1 host2 serviceX
D host3
P * * serviceX
P 155.56.. 155.56
P 155.57.1011xxxx.*
P host4 host5 * xxx
P host6 localhost 3299
P host7 host8 telnet
S host9
P0,* host10
KP sncname1 * *
KS * host11 *
KD "sncname "abc" * *
KT sncname3 host11 *
deny routes from host1 to host2 serviceX
deny all routes from host3
permit routes from anywhere to any host using serviceX
permit all routes from/to addresses matching 155.56
permit ... with 3rd byte matching 1011xxxx
permit routes from host4 to host5 if password xxx supplied
permit information requests from host6
permit native-protocol-routes to non-SAP-server telnet
permit ... excluding native-protocol-routes (SAP-servers only)
permit ... if number of preceding/succeeding hops (SAProuters) <= 0/*
permit SNC-connection with partnerid = 'sncname1' to any host
permit all SAP-SAP SNC-connections to host11
deny all SNC-connections with partnerid = 'sncname "abc'
open connects to host11 with SNC enabled and partnerid = 'sncname3'
first match [host/sncname host service] is used
permission is denied if no entry matches
service wildcard (*) does not apply to native-protocol-routes
--------------------------------------------------------------------
Is it means that connection is working fine.
In OSS1 my settings is:
SAP router1
Name SAPRouter
IP Address 172.168.1.15 (my server IP where i am installing router)
Instance no. 01
SAP router at SAP
Name sapserv2 Name oss001
IP Address 194.39.131.34 DB Name O01
Instance no. 99 Instance no. 01
When I click on logon it shows:
Unable to connect to SAPNet message ser
(Default connection will be used...)
and then internel error
Please suggest.
Deepak
Hi Kaushal,
Checked the link and did changes in saprouttab and OSS1 as u suggested.
File is:
KT "p:CN=sapserv2, OU=SAProuter, O=SAP, C=DE" 194.39.131.34 *
KP "p:CN=sapserv2, OU=SAProuter, O=SAP, C=DE" 172.168.1.15 10
P 172.168.1.15 194.39.131.34 3299
D * * *
172.168.1.15 is my local IP.
but in OSS1 while login same error and RFC is also not working.
In RFC showing host name H/172.168.1.15/S/sapdp99/H/194.39.131.34/sapdp99/H/oss001 is unknown.
IP 194.39.131.34 is pingable from my router host.
Deepak
Edited by: Deepak Mittal on Sep 5, 2008 9:26 AM
User | Count |
---|---|
88 | |
23 | |
11 | |
9 | |
8 | |
5 | |
5 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.