This post is Part 3 from my FREE 5 Part Video Series On Networking in Oracle’s Gen 2 Cloud for beginners in which I have covered how to create VCN, Subnet (Public & Private), Internet Gateway (IGW), Security List (Ingress & Egress) & Dynamic Routing Gateway (DRG).
If you haven’t watched part 2 or completed task given in the second video, then I suggest you to first check the Part 2, where I have covered 3 Ways to Connect to Oracle Cloud
Virtual Cloud Network (VCN) & Subnet
- The first thing you design when you plan to deploy an application on Premise or Cloud is to define the Network.
- VCN is the bigger Network in which you deploy environment like TEST, DEV & UAT
- Within each of these environments, you define Database Tier, Application Tier, Web or DMZ Tier.
- This is where VCN & Subnet comes into the picture, so one way of setting this in the cloud is that create one VCN per environment and then break this bigger VCN in smaller Subnet (each Subnet hosting specific Tiers)
Security List
- When you go from 1 Subnet to another or 1 Network to another these are protected by Firewall and in Oracle Cloud Terms we call Security List
- if you want network traffic from application tier to database tier then in Database Subnet allow port 1521
Check out: our blog on Oracle Security Zones in OCI
Dynamic Routing Gateway (DRG)
- let’s assume you want to connect VCN in Oracle Cloud with On-Premise Network using IP Sec VPN Tunnel or FastConnect (as discussed in Part 2 of this video series ) then DRG will be configured at the cloud side of the VPN tunnel
- If you would like to connect VCN in One Region to VCN in another Region then you use Dynamic Routing Gateway
Internet Gateway (IGW)
- You can think of an Internet Gateway as a Virtual Router connecting the edge of the cloud network with the public internet.
- Traffic that originates in your VCN and is destined for a public IP address outside the VCN goes through the Internet Gateway.
Sneak Peak of Next Video!
In my next video, I’ll be covering What are 2 Types of
Quiz Question
Can you configure Public Load Balancer in one AD alone?
Leave your answer in the comment and I’ll answer this in the next video
Action Plan For You
- Log in to Oracle Cloud Trial Account that you created in Part 1 of this series
- Create a Network (VCN) this is the first thing you do before you perform any task using CIDR 10.0.0.0/16
– 10.0.1.0 / 24 (Private) for hosting Database
– 10.0.2.0 / 24 (Private) for hosting Application
– 10.0.3.0 / 24 & 10.0.4.0 / 24 (Public) for hosting Public Load Balancer.
– To allow port 1521 from Application Tier 10.0.2.0 / 24 to Database Tier 10.0.1.0 / 2
– To Allow Application 8000 from 2 Subnets to Application Tier
And if you want to take your career to next level by becoming Oracle Certified Cloud Architect even if you are a beginner then I would like to invite you to Join my FREE Masterclass on How To Become Oracle Certified Cloud Architect [1Z0-932] in 8 Weeks. Click on the image below to register for FREE
Rizwan says
Dear Atul sir,
I am following your video lectures. i have created 1 VCN in which i have created 4 subnet 1 for db tier 2nd for application tier 3rd & 4th for load balancing. 1st two subnet are private and 2nd two are public. My question is.
1. when i create an instance for dbTier, when i select DBTier subnet (that is private) it generate only private key. not public key. how i would access this machine from internet?
2. And i have follow the above video to create VCN its all done. Now i am trying to create DB instance by selecting private DBTierSubnet which i have created in VCN its disabling the public key option. what should i do?
I am waiting for your response. i hope you will help me.
Thank you.
Regards
Rizwan Shah.
Surbhi Sharma says
Hi Rizwan,
If you have deployed DB on the private subnet, it will give you the private IP only and you can only connect when you are connected to oracle network either by fast connect or IP Sec VPN tunnel and the other option is to deploy a bastion host and using that bastion host you can connect to your DB node.
To know more about this registered for FREE Masterclass (https://k21academy.com/oci02)
https://www.oracle.com/a/ocom/docs/bastion-hosts.pdf
https://www.youtube.com/watch?v=DLAc7PGgdUo
Regards,
Surbhi
Team K21