Many times a question has been raised by our customers and the question sounds like this: it is possible to access the Object Storage or Oracle Services Network...
Many times a question has been raised by our customers and the question sounds like this: it is possible to access the Object Storage or Oracle Services Network (OSN) from a Spoke VCN VMs by using the Hub VCN SGW? In our blog post we will explore this possibility and on another hand we will explain how this can be achieved from the OCI routing perspective. As you guessed, we are going to use the Hub&Spoke networking topology and use the Transit Routing to explain the concept:...
Many times a question has been raised by our customers and the question sounds like this: it is possible to access the Object Storage or Oracle Services Network (OSN) from a Spoke VCN VMs by using the...
Introduction When designing a secure and robust route to your compute nodes there are many avenues to take depending on your use case. As I was learning...
Introduction When designing a secure and robust route to your compute nodes there are many avenues to take depending on your use case. As I was learning about the many edge resources you can use within Oracle Cloud Infrastructure (OCI) like Load Balancers, Traffic Steering policies, Web Application Firewall (WAF) policies and DNS zones it became apparent as an architect that I needed to understand in more detail how these services worked and when and why should you use...
Introduction When designing a secure and robust route to your compute nodes there are many avenues to take depending on your use case. As I was learning about the many edge resources you can use...
Introduction A load balancer (LB) monitors the health of the backend servers periodically to ensure that the requests are served only by healthy servers in a...
Introduction A load balancer (LB) monitors the health of the backend servers periodically to ensure that the requests are served only by healthy servers in a backend set. The OCI LB service supports 2 approaches for checking the health of the backend servers: TCP – Checks if a TCP (Layer 4) connection can be made to the backend server on a specified port. HTTP – Checks if a pre-configured URI is accessible over HTTP (Layer 7) and returns the expected result ( Status code or...
Introduction A load balancer (LB) monitors the health of the backend servers periodically to ensure that the requests are served only by healthy servers in a backend set. The OCI LB service supports 2...
The purpose of this blog is to provide you a simple guide how to troubleshoot FastConnect
In the previous blogs, we imported the GSN3 VM and created a Cisco ASAv appliance. I would like to continue the journey and use what we created so far for a...
In the previous blogs, we imported the GSN3 VM and created a Cisco ASAv appliance. I would like to continue the journey and use what we created so far for a real lab scenario. In this blog, I will show you how to create an IPSEC tunnel from an ASAv in GNS3 and an OCI DRG. I will mention again that this blog doesn’t have any production value and that the firmware used here for the ASAv is downloaded from Cisco’s website. As a prerequisite, you will need to have an OCI tenant...
In the previous blogs, we imported the GSN3 VM and created a Cisco ASAv appliance. I would like to continue the journey and use what we created so far for a real lab scenario. In this blog, I...
Few days ago I have received a request from one of my colleagues, the request was as follow: I have a customer who wants to copy a file over the Internet to a...
Few days ago I have received a request from one of my colleagues, the request was as follow: I have a customer who wants to copy a file over the Internet to a private VM in OCI using a bastion VM. The file copy should occur directly to the private VM and not to the bastion VM and from the bastion to the private VM. As we can conclude from the request only the bastion VM is exposed to the Internet. Reading further about the request we saw that other cloud vendors explained how...
Few days ago I have received a request from one of my colleagues, the request was as follow: I have a customer who wants to copy a file over the Internet to a private VM in OCI using a bastion VM. The...
In this blog post we will discuss and analyze the relative performance that we can obtain by running IPSec over Internet, one common scenario that we are...
In this blog post we will discuss and analyze the relative performance that we can obtain by running IPSec over Internet, one common scenario that we are implementing in OCI to achieve bidirectional connectivity between our Customers premises and OCI. I used the term "relative" because the transfer rates depends on many factors when using the Internet as underlying IP transport infrastructure and we can mention: distance between the endpoints, delay, latency, jitter, type of...
In this blog post we will discuss and analyze the relative performance that we can obtain by running IPSec over Internet, one common scenario that we are implementing in OCI to achieve bidirectional...
Introduction I frequently come across the situation, where I find OCI Instances that have numerous well-known ports exposed to the public internet - VNC with...
Introduction I frequently come across the situation, where I find OCI Instances that have numerous well-known ports exposed to the public internet - VNC with Port 5901 being one of the common offenders. I have even come across OCI Instances where VNC was active with a logged in root session waiting to be used on the VNC without a password... This article will show in easy steps how to avoid this situation and walks through the secure use of VNC via an SSH tunnel. The second...
Introduction I frequently come across the situation, where I find OCI Instances that have numerous well-known ports exposed to the public internet - VNC with Port 5901 being one of the...
Overview The purpose of this document is to help with troubleshooting different network services running on top of OCI. We will start with a short introduction...
Overview The purpose of this document is to help with troubleshooting different network services running on top of OCI. We will start with a short introduction of the OSI Model that will help to understand the network architecture and at what layer an issue might occur. Next, we will cover basic tools that will help with the following: Discover host availability Discover packet loss Discover delay or latency Discover MTU size limitations Network path discovery Path MTU...
Overview The purpose of this document is to help with troubleshooting different network services running on top of OCI. We will start with a short introduction of the OSI Model that will help to...
