OKE Cluster Management Across Networks
Learn about OKE cluster management across the admin and data networks on Private Cloud Appliance.
Private Cloud Appliance admin and data networks are configured by Oracle, when Oracle installs the Private Cloud Appliance in the data center.
The OKE service runs on the management nodes in the admin network, while the OKE clusters are deployed in the data network as shown in the following diagram.
The management interface of an OKE cluster is port 6443 on its load balancer public IP address. This address is assigned from the data center IP range that was reserved and configured as public IPs during the Private Cloud Appliance appliance installation.
Because of the network segregation, traffic from the OKE service must exit the appliance through the admin network, and reenter through the data network to reach the OKE cluster.
The data center network appliance must allow traffic in both directions. Without the necessary firewall and routing rules, users cannot deploy OKE clusters.
See Workload Cluster Network Ports (Flannel Overlay) and Workload Cluster Network Ports (VCN-Native Pod) for ports needed for OKE.
For information about other network ports, see Access Configuration With Administration Network.