On the part 1 we looked on how to create new block volume on another OCI Region using the new Block Volume Replication feature. While it was really straightforward, in a real Disaster Recovery situation you might want to automate the whole process. So let’s look on that! I plan on using Terraform and OCI…
OCI Block Volume Replication Part 1 – Basics
Let’s talk about new OCI Cross-Region Block Volume Replication! I wanted to test this feature out as it can provide much needed help when you need to build your Disaster Recovery environment on different Region. In earlier cases we’ve used rsync for this, one great advantage with this new feature is that it uses Oracle’s…
OCI Transit Networking DNS part 1
First of all, big thanks for my colleagues Rob and Travis for giving me some good ideas on this post! I usually recommend Transit Networking for most of the implementations as it provides security and scalability for your OCI infrastructure. Transit networking means one of your VCN acts as a Hub and the other VCNs…
Get notified on unwanted network changes with OCI Cloud Guard
Oracle introduced Cloud Guard some time ago to OCI, in this post I’ll take a brief look what Cloud Guard is and how you can get notified on unwanted changes in your tenancy. As an example, I have a public VCN which is required for my project. I might have several admins managing the VCN…
OCI High Availability Designs with Availability Domains
This is more generic post rather than technical. I usually get lot of questions in early phase on how we are going to place compute instances in different Availability Domains (AD’s) for high availability purposes. But first, what is an Availability Domain? Region can consist of one or more Availability Domains which are physically separated,…
OCI CLI scripting fun – bulk deleting Vault secrets
Probably this post as such isn’t useful to many, but I figured since it contains some OCI CLI scripting it might serve as an idea to something else for someone. Recently I got a bunch of OCI Vault keys which had to be loaded to OCI Vault. What happened is of course the load didn’t…
OCI DBCS Clone from backup fails when Database Vault is enabled
Recently I was creating a DBCS database clone but the creation failed, luckily we could find out the node IPs through support and from the dcs-agent-debug.log we could see following statement failing: When looking this script what it tries to do is set the default password limits for DEFAULT profile. While trying it out on…
OCI Private DNS part 2 – DNS forwarders and listeners
This is the second part of my OCI Private DNS posts. You can read the first part from here. In this post I will extend my configuration to have two VCN’s which will be connected via Local Peering Gateways together. Other VCN will have Private Zone for thatfinnishguy.com and the other VCN for somethingelse.com. Both…
OCI Private DNS part 1 – Configuration
I’ve wanted to write something about this topic for quite a while and finally OCI has released it’s first step of Private DNS capabilities! Why do I think this is a big thing? For example let’s say you need to have Hub & Spoke model with multiple VCNs, if you’ve wanted to resolve hostnames between…
OCI Linux and opening firewall ports with bootstrap
This is just a short post but something I was struggling to figure out. I wanted to open port 80 while starting up OCI Linux 7.8 instance and was using cloud-init portion what you have in the advanced section when creating a compute instance. Initially I had this in the bootstrap configuration: But no matter…