I recently came across requirement to get OCI Oracle Autonomous Database audit logs to OCI Logging Service, mainly due to getting them to external SIEM system. Typically once we get the logs to Logging, we can use OCI Service Connector to ingest them to Oracle Streaming and then from there, external systems can get the…
Connecting to Autonomous Database Running on Google Cloud
Last time I showed how to provision Autonomous Database Serverless (ADB-S) on Google Cloud. This time I have provisioned a new ADB and want to see how I can connect from my VM running on the same VPC as the ADB. I’ll use sqlcl to connect to the database, to install it you will need…
Can you believe it? Provisioning Autonomous Database in GCP!
I bet few years back folks didn’t expect that by 2024 we would be able to provision OCI resources in other clouds. Last year the announcement for Azure and this year announcements for GCP and AWS have been really exciting and I think long term they’ll have a positive impact with Oracle’s reputation also. One…
IP Address Insights with CLI
My previous post on IP Address Insights I mentioned it wasn’t yet available with CLI but I was wrong! It was there, just my Cloud Shell CLI version wasn’t the latest so didn’t have the command yet available. If you have 3.40.2 and above, the following commands are now available: oci network ipam list-ip-inventory oci…
Thoughts on Oracle Database@Azure
This will NOT be a technical walkthrough on Oracle Database@Azure but rather my opinions and thoughts on how it will shape the Oracle workload destinations when migrating out from on-premises. Once I get few technical implementations under my belt, I’ll also write some more details on how I see it works and how we need…
OCI Vulnerability Scanning Setup
Many times when you work for someone, they already have their own vulnerability scanning throughout the organization. What usually happens is that onboarding to that tooling might take time, that’s why I initially started to look on OCI Vulnerability Scanning Service – to have something scanning your servers or images from day 1! Or could…
OCI IP Address Insights
Recently OCI announced small but VERY useful service, IP Address Insights. Why this matters? I’ve run into multiple issues where we have VCNs and subnets deployed and don’t have any visibility on how many IP addresses are currently allocated on given VCN/subnet and who’s also reserving those. Not too long ago, someone reached out to…
OCI Network Firewall – Real World problems
I recently hit an issue with OCI Network Firewall that we had configured with NAT GW (see previous posts on it). We expected only to use it for egress traffic from OCI to public internet from our private compute VMs but a new requirement came which required to access some privately exposed services on OCI,…
Installing OCI Network Firewall – Allowing traffic via policies
Now that we have designed and installed our OCI Network Firewall we’re ready to allow some traffic through the firewall. What you’ll end up doing is to modifying policies which are applied to the firewall. How it works is that there’s always a single policy attached to the firewall, if you need to update the…
Installing OCI Network Firewall – Provisioning and Configuration
Now we’re going to follow the initial design I laid out here. We already have networking provisioned, so next step will be to use OCI Console and provision our OCI Network Firewall. Once we’ve provisioned it, I’ll see what happens with traffic when it hits the firewall. Final post of this series will be then…