Starting with PT 8.56 Oracle delivered a new feature with Tuxedo that will block a server if too many failed logins occurred or if Tuxedo believes it is being attached by the server.
As a default, if a client login fails three (3) times in 60 seconds, the associated IP address is blocked.
If warranted for your environment, you can tune the TM_WS_MAX_FAILED_TRIAL (limit of failed login attempts) and TM_WS_ATTACK_IP_CHK_INTERVAL (time interval for failed login attempts) environment variables to allow for more login failures and/or a different, smaller interval. If you’re certain that there is no actual attacker, it may consider disabling this option. You can disable it by setting the TM_WS_MAX_FAILED_TRIAL environment variable to 0 (TM_WS_MAX_FAILED_TRIAL=0).
The limit on failed login attempts is a security mechanism to protect against a client guessing a password. Changing the values of these environment variables is done at your own risk.
These log errors are in the TUXLOG log files.
To view current blocked connections
export DOMAIN="APPDOM"
export TUXCONFIG="$PS_CFG_HOME/appserv/$DOMAIN/PSTUXCFG"
tmadmbclist -l
To unblock a specified IP address run the following
export DOMAIN="APPDOM"
export TUXCONFIG="$PS_CFG_HOME/appserv/$DOMAIN/PSTUXCFG"
export IP_ADDRESS="<<IP ADDRESS>>"
tmadmbclist -b $IP_ADDRESS
To view current blocked connections
cd $env:PS_CFG_HOME
$env:TUXCONFIG="${env:PS_CFG_HOME}\\appserv\\<<domain>>\\PSTUXCFG"
cmd /c tmadmbclist -l
To unblock a specified IP address run the following
cd $env:PS_CFG_HOME
$env:TUXCONFIG="${env:PS_CFG_HOME}\\appserv\\<<domain>>\\PSTUXCFG"
cmd /c tmadmbclist -b <<IP ADDRESS>>