Go Bastion(less!) on OCI

Update May 31st, 2021 – Seems like there was documentation bug so I’ve updated part about Agents. They are disabled by default so you need to enable them always if you want to use Bastion Service Managed session. I’ve always had slight dislike on requiring Bastion (Jump) server on any cloud which is self-managed. Sure,…

OCI Dynamic Routing Gateway Attachments Part 1 – Basics

As you might have seen, few weeks ago Oracle announced improved Dynamic Routing Gateway functionality which I was super excited about. Why? Previously when you’ve designed Transit Networking on OCI you’ve always had to use Hub & Spoke model for your traffic to flow from on-premises to Spoke VCN. Also, setting up connectivity between VCNs…

OCI Block Volume Replication Part 1 – Basics

Let’s talk about new OCI Cross-Region Block Volume Replication! I wanted to test this feature out as it can provide much needed help when you need to build your Disaster Recovery environment on different Region. In earlier cases we’ve used rsync for this, one great advantage with this new feature is that it uses Oracle’s…

OCI Transit Networking DNS part 1

First of all, big thanks for my colleagues Rob and Travis for giving me some good ideas on this post! I usually recommend Transit Networking for most of the implementations as it provides security and scalability for your OCI infrastructure. Transit networking means one of your VCN acts as a Hub and the other VCNs…

OCI High Availability Designs with Availability Domains

This is more generic post rather than technical. I usually get lot of questions in early phase on how we are going to place compute instances in different Availability Domains (AD’s) for high availability purposes. But first, what is an Availability Domain? Region can consist of one or more Availability Domains which are physically separated,…