Oracle introduced Cloud Guard some time ago to OCI, in this post I’ll take a brief look what Cloud Guard is and how you can get notified on unwanted changes in your tenancy. As an example, I have a public VCN which is required for my project. I might have several admins managing the VCN…
OCI Private DNS part 2 – DNS forwarders and listeners
This is the second part of my OCI Private DNS posts. You can read the first part from here. In this post I will extend my configuration to have two VCN’s which will be connected via Local Peering Gateways together. Other VCN will have Private Zone for thatfinnishguy.com and the other VCN for somethingelse.com. Both…
OCI Private DNS part 1 – Configuration
I’ve wanted to write something about this topic for quite a while and finally OCI has released it’s first step of Private DNS capabilities! Why do I think this is a big thing? For example let’s say you need to have Hub & Spoke model with multiple VCNs, if you’ve wanted to resolve hostnames between…
Use case for Network Security Groups in OCI
So a while back OCI got NSGs (Network Security Groups) but most what I still see with implementations is that people tend to use Security Lists. Remember Security Lists are applied on subnet level while NSGs are applied to VNICs. I recently got following dilemma on tenancy created a while back. Challenge All the subnets…
How I studied for the Oracle Cloud Infrastructure 2019 Certified Architect Professional 1Z0-997
Earlier this week I took the 1Z0-997 Oracle Cloud Infrastructure 2019 Certified Architect Professional. In this post I’ll try to share on how I studied on the test and what areas I feel helped me on passing the certification. I won’t be posting any questions or answers but rather want to help you on studying…
Series – Get your database running with Terraform part 7: Subnets
Now we have everything else setup on the network side apart from subnets. Subnets are continuous IP address blocks which don’t overlap with any other subnet IP address block in your VCN. Things to remember: As time of writing this Oracle has released new functionality regarding subnets, regional subnets. Earlier each subnet was tied in…
Series – Get your database running with Terraform part 6: Security Lists
Before we can create the subnets we still need to create security lists. They will control what ingress and egress traffic will be allowed within subnets. I will create two security lists for this project, one for private subnet and another one for public subnet. Security lists can have have multiple rules in them and…
Series – Get your database running with Terraform part 4: IGW and NAT GW
Previous part three on creating VCN can be found from here. Now let’s start with basics. What are IGW and NAT GW. Internet Gateway (IGW) in OCI is the connection point which routes your VCN traffic from and to public Internet depending on what traffic you allow through your security lists. If you use an…
Series – Get your database running with Terraform part 3: VCN
Now after we have compartment where to place resources we are ready to create Virtual Cloud Network (VCN). Since previous post was about compartments and how they logically group your resources one way to think is that a VCN groups your network resources together. You can read part 2 from here. VCN is relatively simple…
Using Oracle Cloud Infrastructure with Terraform modules
When I started to use Terraform I quickly adapted on concept of using modules with it. Why? Because in my opinion the more you can automate and standardize the easier overall management of your solution becomes. So what are modules and why should I use them? I made a short video presentation on creating infrastructure…