Oracle Cloud Infrastructure – Configuring Network Access with Access Control Rules (ACLs)

When running Autonomous Databases (ADB) in Oracle Cloud Infrastructure (OCI), it’s crucial to prioritize security, even for development and test environments. Allowing unrestricted public access (0.0.0.0/0) is not a secure solution and should be avoided. To ensure that only trusted sources can access your databases, you can restrict access to specific IP addresses and Virtual Cloud Networks (VCNs). To enhance security, I configured my ADB to allow access only from specified IP addresses and VCNs. This approach ensures that only authorized users can connect to the database. My next step was to add the public IP address of my workstation to the ADB’s access control rules, so I can securely manage the database from my current location. While the OCI…

Read More

Oracle Cloud Infastructure – Enable Multipath for Ultra High Performance UHP Storage

The Oracle Cloud Infrastructure Block Volume service leverages NVMe-based storage for consistent performance and offers flexible and elastic performance options. You only need to provision the required capacity, and the performance scales according to the selected performance level, up to the service limits. There are four performance levels available who have a direct impact at performance. Four Levels of Performance Ultra High Performance: Ideal for workloads with the highest I/O demands, offering the best possible performance. This level allows you to purchase between 30 and 120 VPUs per GB/month. Higher Performance: Suitable for workloads with high I/O requirements that do not need the peak performance of the Ultra High Performance level. This level provides 20 VPUs per GB/month. Balanced: The…

Read More

Oracle Cloud Infrastructure CLI – How to fix sign.py:10: CryptographyDeprecationWarning

WSL2 is a game-changer for developers like me. I prefer Oracle Linux 8 for coding in Ansible, Terraform, and OCI-CLI. Setting up Oracle Linux 8.8 on WSL2 from the Microsoft Store was easy. With OCI CLI configured within the Linux environment, managing Oracle Cloud Infrastructure resources became effortless. WSL2 eliminates the need for additional virtualization software, providing a seamless Linux environment on Windows. This integration has significantly improved my development workflow, making tasks like deploying infrastructure and managing cloud resources more accessible. In conclusion, WSL2’s integration with Windows and support for various Linux distributions, including Oracle Linux, has transformed the way I work. If you’re a developer, I highly recommend giving WSL2 a try – it might just revolutionize your…

Read More

Oracle Cloud Infrastructure – iSCSI Block Volume Attachment – the magic Way

Have you always attached an OCI Block Volume to a Compute Instance? If yes, I assume by console or OCI CLI and then executed manually the iSCSI commands to attach the device on OS level. But wait, here is a magic way to attach the Block Volume – by the Oracle Cloud Agent. Prerequisites Attached Service Gateway in VCN Oracle Cloud Agent software installed on the instance Enable the Block Volume Management plugin Verify Compute Instance disk status Create a Block Volume and attach Block Volume to Compute Instance OCI Tool oci-iscsi-config The OCI CLI method – the expressway If you want to  auto-attach a high-performance block volume (multipath enabled) or a block volume where auto-tune is enabled, these two…

Read More

Oracle 11g – let’s move that old Stuff to the Oracle Cloud

This blog post describes the lift and shift of an on-prem Oracle 11g Enterprise Edition to Oracle Cloud Infrastructure by using Oracle RMAN paired with OCI Object Storage. Works for other versions > Oracle 11g / Enterprise Edition too (the tablespace encryption method may change). Architecture Q&A What’s the motivation of the lift and shift of a good old on-prem Oracle 11g database to Oracle Database Service? Hardware runs out of lifecycle Out scoping of an on-prem database which is only used for several times to compare old data Regulatory, for example we have the keep and access the data for 10 yrs Changing from on-prem licenses to the license included model Upgrade tests for 19c and convert to Multitenancy…

Read More