Introduction

In this 3-part blog series we are going to discuss a very common request that I have heard from OIC customers regarding how they can securely connect to their OIC instances.  The 3 OIC connectivity models we will be discussing are below, for each one we need to consider that the Network Access feature for OIC only supports 15 entries.

The following scenarios were tested with the help of my colleague Aditya Trivedi.

OIC Connectivity Models

1. On-Premises access via a VPN tunnel or a FastConnect link using Service Gateway and VCN Security Lists.This blog can be found here.

2. Connecting to OIC from another OCI Region via RPC using Service Gateway and VCN Security Lists.This blog can be found here.

3. Public Internet access via an LBaaS using the OIC Vanity URL feature. This blog can be found here

If we combine all scenarios in a single diagram this will look like this one

Prerequisites

For all scenarios we need to have the following prerequisites:
–    OIC instance provisioned
–    VPN tunnel or FastConnect provisioned and working
–    RPC connectivity already established and working between OCI OIC Region and OCI Remote Region

Caveats and Limitations

This mini-series will only cover connectivity from a user/machine to OIC, meaning the reverse-path from OIC to different sources will not be covered.
Also, we will not cover any redundancy options, thus focusing only on basic connectivity.