Last time I showed how to provision Autonomous Database Serverless (ADB-S) on Google Cloud. This time I have provisioned a new ADB and want to see how I can connect from my VM running on the same VPC as the ADB. I’ll use sqlcl to connect to the database, to install it you will need…
Can you believe it? Provisioning Autonomous Database in GCP!
I bet few years back folks didn’t expect that by 2024 we would be able to provision OCI resources in other clouds. Last year the announcement for Azure and this year announcements for GCP and AWS have been really exciting and I think long term they’ll have a positive impact with Oracle’s reputation also. One…
Thoughts on Oracle Database@Azure
This will NOT be a technical walkthrough on Oracle Database@Azure but rather my opinions and thoughts on how it will shape the Oracle workload destinations when migrating out from on-premises. Once I get few technical implementations under my belt, I’ll also write some more details on how I see it works and how we need…
OCI Vulnerability Scanning Setup
Many times when you work for someone, they already have their own vulnerability scanning throughout the organization. What usually happens is that onboarding to that tooling might take time, that’s why I initially started to look on OCI Vulnerability Scanning Service – to have something scanning your servers or images from day 1! Or could…
OCI IP Address Insights
Recently OCI announced small but VERY useful service, IP Address Insights. Why this matters? I’ve run into multiple issues where we have VCNs and subnets deployed and don’t have any visibility on how many IP addresses are currently allocated on given VCN/subnet and who’s also reserving those. Not too long ago, someone reached out to…
OCI Network Firewall – Real World problems
I recently hit an issue with OCI Network Firewall that we had configured with NAT GW (see previous posts on it). We expected only to use it for egress traffic from OCI to public internet from our private compute VMs but a new requirement came which required to access some privately exposed services on OCI,…
Installing OCI Network Firewall – Allowing traffic via policies
Now that we have designed and installed our OCI Network Firewall we’re ready to allow some traffic through the firewall. What you’ll end up doing is to modifying policies which are applied to the firewall. How it works is that there’s always a single policy attached to the firewall, if you need to update the…
Installing OCI Network Firewall – Provisioning and Configuration
Now we’re going to follow the initial design I laid out here. We already have networking provisioned, so next step will be to use OCI Console and provision our OCI Network Firewall. Once we’ve provisioned it, I’ll see what happens with traffic when it hits the firewall. Final post of this series will be then…
Installing OCI Network Firewall – Design
One of the cool things Oracle has brought to OCI is managed network firewall service which is based on Palo Alto. Before OCI Network Firewall I saw constant requirement to provision self-managed firewall such as Palo Alto, Fortinet, Check Point etc. This is still a requirement as OCI Network Firewall might not provide all the…
Getting VCN Flow Logs to Streaming
Many times after you’ve enabled the VCN Flow Logs (or any logs what so ever!) there will be a requirement to get those logs out to some other system. VCN Flow Logs is one, I’ve also configured Cloud Guard logs/alerts in similar way that I will show here. Key point is to get the logs…