Thoughts on Oracle Database@Azure

This will NOT be a technical walkthrough on Oracle Database@Azure but rather my opinions and thoughts on how it will shape the Oracle workload destinations when migrating out from on-premises. Once I get few technical implementations under my belt, I’ll also write some more details on how I see it works and how we need…

OCI Vulnerability Scanning Setup

Many times when you work for someone, they already have their own vulnerability scanning throughout the organization. What usually happens is that onboarding to that tooling might take time, that’s why I initially started to look on OCI Vulnerability Scanning Service – to have something scanning your servers or images from day 1! Or could…

OCI IP Address Insights

Recently OCI announced small but VERY useful service, IP Address Insights. Why this matters? I’ve run into multiple issues where we have VCNs and subnets deployed and don’t have any visibility on how many IP addresses are currently allocated on given VCN/subnet and who’s also reserving those. Not too long ago, someone reached out to…

OCI Network Firewall – Real World problems

I recently hit an issue with OCI Network Firewall that we had configured with NAT GW (see previous posts on it). We expected only to use it for egress traffic from OCI to public internet from our private compute VMs but a new requirement came which required to access some privately exposed services on OCI,…

Installing OCI Network Firewall – Design

One of the cool things Oracle has brought to OCI is managed network firewall service which is based on Palo Alto. Before OCI Network Firewall I saw constant requirement to provision self-managed firewall such as Palo Alto, Fortinet, Check Point etc. This is still a requirement as OCI Network Firewall might not provide all the…

Getting VCN Flow Logs to Streaming

Many times after you’ve enabled the VCN Flow Logs (or any logs what so ever!) there will be a requirement to get those logs out to some other system. VCN Flow Logs is one, I’ve also configured Cloud Guard logs/alerts in similar way that I will show here. Key point is to get the logs…