1. Using Oracle Cloud Infrastructure Compute Classic
  2. Connecting to Instances Using Oracle Cloud Infrastructure FastConnect Classic
  3. Managing Virtual Circuits

Managing Virtual Circuits

Topics

Creating a Virtual Circuit

Not Oracle Cloud at Customer This topic does not apply to Oracle Cloud at Customer.

A virtual circuit is a layer-2 or layer-3 Ethernet VLAN that isolates network traffic between customers. It is an isolated network path that runs over one or more physical network connections to provide a single, logical connection between the router on the edge of your network and the Oracle router. Each virtual circuit is made up of information shared between you and Oracle, as well as an Oracle FastConnect Partner (if you're connecting through an Oracle FastConnect Partner).

Prerequisites

  • FastConnect Classic must be available in the site you have selected. If FastConnect Classic isn’t available in the selected site, the Virtual Circuit page isn’t displayed in the web console.

  • Ensure that you meet one of the following prerequisites based on whether you are setting up a public or private virtual circuit.

    • Public virtual circuit: You can advertise only public IPv4 prefixes over this connection. RFC 1918 addresses, if any, are dropped if they are advertised over the connection. Ensure that the public IPv4 prefixes that you want to advertise are registered to you in an Internet Routing Registry (IRR) or Regional Internet Registry (RIR). The BGP session is brought down or disabled if you cross the specified prefix-limit of advertising 200 IPv4 prefixes over public peering or 2000 private (RFC1918) IPv4 prefixes over private peering.

    • Private virtual circuit: You can advertise private IP addresses (RFC1918) and extend your remote data center resources that use private IP address without the need to use IPSec VPN or Network Address Translation (NAT). Your IP address are not translated, but forwarded to Oracle as is. The BGP session is brought down or disabled if you cross the specified prefix-limit of advertising 2000 private (RFC1918) IPv4 prefixes over private peering.

      You must create a private gateway to use private peering. A private gateway allows you to connect from your on-premises data center to instances on IP networks using their private IP addresses. While creating a private gateway, specify the names of the IP networks that you want to associate with this private gateway. See Creating a Private Gateway.

      Note down the name of your private gateway. You’ll need to select this private gateway while setting up your connection.

  • If you are not connecting through an Oracle FastConnect Partner and connecting through Direct Cross Connects, ensure that you have created the cross connects. See Creating a Cross Connect.

  • You must have already created the IP networks that you want to connect to, along with the required security rules, vNICsets, and ACLs that you need to enable access to instances using FastConnect Classic. See Connecting to Instances Using Oracle Cloud Infrastructure FastConnect Classic.

  • To complete this task, you must have the Compute_Operations role. If this role isn’t assigned to you or you’re not sure, then ask your system administrator to ensure that the role is assigned to you in Oracle Cloud Infrastructure Classic Console. See Modifying User Roles in Managing and Monitoring Oracle Cloud.

Procedure

  1. Sign in to the Compute Classic console. If your domain spans multiple sites, select the appropriate site. To change the site, click the Site menu near the top of the page.
  2. Click the Network tab.
  3. In the Network drop-down list, expand FastConnect, and then click Virtual Circuits.
  4. Click Create Virtual Circuit.
  5. Select or enter the following information.
    • Name: Enter a unique name for the virtual circuit.
    • Connection Type: Select Direct Cross Connect to establish a direct connection to an Oracle data center using cross connects. If you want to establish a connection through an Oracle FastConnect partner, select a partner based on their availability at the location from which you want to connect to FastConnect Classic.

    • Circuit Type: Select Public or Private based on whether you want to advertise public or private IP addresses over the connection. For example, select Public if you want to access Oracle Cloud services through Compute Classic by using public IP prefixes. Select Private when you want to extend your on-premise private networks to the Oracle Cloud. A private virtual circuit will enable you to connect to Oracle Cloud resources from your on-premise private (RFC1918) networks. When you use a private virtual circuit, it eliminates the need for IPSec VPN and Network Address Translation (NAT) to extend your private routing domain.

      • Private Gateway: If you select Private, you must select the private gateway that you have created. A private gateway allows you to connect from your on-premises data center to instances on IP networks using their private IP addresses.

      • Public IP Prefixes: If you select Public, specify the public IPv4 prefixes (in CIDR notation) that you want to advertise over the connection. You can also specify reverse NAT IP addresses. These IPv4 prefixes must be registered to you in an IRR or RIR.

  6. Different fields appear on the console depending on the Connection Type that you select. If any of the following fields do not appear in the console, it indicates that those fields are not relevant for the selected Connection Type. Select or enter the following information based on the fields that appear.

    • AT&T NetBond Service Key: This field appears only if you have selected AT&T NetBond as the Connection Type. Enter the service key that you have received from AT&T.

      If you haven’t ordered AT&T NetBond for Oracle FastConnect from AT&T NetBond, you can order it after creating the virtual circuit. Once you receive the service key from AT&T, you can update the virtual circuit to specify the key.

    • Enter the following information to map the link that you have created to a router in Oracle Cloud. If you have created primary and secondary links to ensure high availability, specify the following information for both the links. When you set up two links between your network and Oracle Cloud, a redundant connection is established to FastConnect edge router which ensures high availability.

      • Your Router Interface IP: Enter the IP address of your network edge router for this VLAN in CIDR format.

      • Oracle Router Interface IP: Enter the IP address of the Oracle router for this VLAN in CIDR format.

      • VLAN: The VLAN ID that you want to use for this virtual circuit. Enter an integer between 100 and 4000. The VLAN ID must be unique.

      • Cross Connect: Select a cross connect that you have created.

    • Enter the following information for your BGP session:
      • Your BGP ASN: The public or private ASN for your network. If you use a public ASN, ensure that the ASN is registered to you. You can work with your Internet service provider or one of the registries to obtain an ASN.

        Note:

        If you do not have a registered public ASN, you can use private ASNs or use the fixed ASN provided by Oracle for configuring the network.

      • BGP MD5 Password: Enter the BGP MD5 password.

  7. Click Create.
    The virtual circuit is created.

After creating a virtual circuit, follow the procedure to set up a connection using FastConnect Classic. See Getting Started With the Service in Using Oracle Cloud Infrastructure FastConnect Classic.

Listing Virtual Circuits

Not Oracle Cloud at Customer This topic does not apply to Oracle Cloud at Customer.

After you’ve created a virtual circuit, you can see a list of virtual circuits in your account.

Prerequisites

  • To complete this task, you must have the Compute_Monitor or Compute_Operations role. If this role isn’t assigned to you or you’re not sure, then ask your system administrator to ensure that the role is assigned to you in Oracle Cloud Infrastructure Classic Console. See Modifying User Roles in Managing and Monitoring Oracle Cloud.

Procedure

  1. Sign in to the Compute Classic console. If your domain spans multiple sites, select the appropriate site. To change the site, click the Site menu near the top of the page.
  2. Click the Network tab.
  3. In the Network drop-down list, expand FastConnect, and then click Virtual Circuits.
A list of virtual circuits is displayed.

Updating a Virtual Circuit

Not Oracle Cloud at Customer This topic does not apply to Oracle Cloud at Customer.

After you’ve created a virtual circuit and the virtual circuit is provisioned, you can modify the parameters of the virtual circuit.

Prerequisites

  • To complete this task, you must have the Compute_Operations role. If this role isn’t assigned to you or you’re not sure, then ask your system administrator to ensure that the role is assigned to you in Oracle Cloud Infrastructure Classic Console. See Modifying User Roles in Managing and Monitoring Oracle Cloud.

Procedure

  1. Sign in to the Compute Classic console. If your domain spans multiple sites, select the appropriate site. To change the site, click the Site menu near the top of the page.
  2. Click the Network tab.
  3. In the Network drop-down list, expand FastConnect, and then click Virtual Circuits.
  4. Go to the virtual circuit that you want to modify. From the menu icon menu, select Update.
  5. Update the information as required. Different fields appear on the console depending on the Connection Type that you have selected. If any of the following fields do not appear in the console, it indicates that those fields are not relevant for the selected Connection Type. Select or enter the following information based on the fields that appear.

    • Public IP prefixes: This field appears only if you are have selected the Circuit Type as Public. You can add or remove public IP prefixes. If you add a new prefix, Oracle first verifies your company's ownership before advertising it across the connection. These IPv4 prefixes must be registered to you in an IRR or RIR. If you remove a prefix, Oracle stops advertising the prefix within a few minutes of your editing the virtual circuit.

    • AT&T NetBond Service Key: This field appears only if you have selected AT&T Netbond as the Connection Type. Enter the service key that you have received from AT&T.

      When you order AT&T NetBond for Oracle FastConnect, AT&T generates a service key. Enter the value of this key.

    • Enter the following information to map the link that you have created to a router in Oracle Cloud. If you have created primary and secondary links to ensure high availability, specify the following information for both the links. When you set up two links between your network and Oracle Cloud, a redundant connection is established to FastConnect edge router which ensures high availability.

      • Your Router Interface IP: Enter the IP address of your network edge router for this VLAN in CIDR format.

      • Oracle Router Interface IP: Enter the IP address of the Oracle router for this VLAN in CIDR format.

      • VLAN: The VLAN ID that you want to use for this virtual circuit. Enter an integer between 100 and 4000. The VLAN ID must be unique.

      • Cross Connect: Select a cross connect that you have created.

    • Enter the following information for your BGP session:
      • Your BGP ASN: The public or private ASN for your network. If you use a public ASN, ensure that the ASN is registered to you. You can work with your Internet service provider or one of the registries to obtain an ASN.

        Note:

        If you do not have a registered public ASN, you can use private ASNs or use the fixed ASN provided by Oracle for configuring the network.

      • BGP MD5 Password: Enter the BGP MD5 password.

    • Only if you have selected Verizon as your Oracle FastConnect Partner, enter the following information that you have receive from Verizon. After you order Verizon SCI Connectivity for Oracle FastConnect and the service is provisioned, you’ll can see the network configuration information on the Verizon SCI portal. Provide the following information that’s available on the Verizon SCI portal.

      • Verizon BGPAS Number: Enter the Verizon BGP ASN.

      • Primary Verizon IPAddress: Enter the Verizon IP Address of Primary Router.

      • Secondary Verizon IPAddress: Enter the Verizon IP Address of Secondary Router.

      • Primary Verizon VLANID: Enter the Verizon VLAN ID of Primary Router.

      • Secondary Verizon VLANID: Enter the Verizon VLAN ID of Secondary Router.

      • Cloud Service Name: Enter Oracle FastConnect.

  6. Click Update. The virtual circuit is updated.

Deleting a Virtual Circuit

Not Oracle Cloud at Customer This topic does not apply to Oracle Cloud at Customer.

If you don’t need a virtual circuit any more, you can delete it.

Prerequisites

  • To complete this task, you must have the Compute_Operations role. If this role isn’t assigned to you or you’re not sure, then ask your system administrator to ensure that the role is assigned to you in Oracle Cloud Infrastructure Classic Console. See Modifying User Roles in Managing and Monitoring Oracle Cloud.

Procedure

  1. Sign in to the Compute Classic console. If your domain spans multiple sites, select the appropriate site. To change the site, click the Site menu near the top of the page.
  2. Click the Network tab.
  3. In the Network drop-down list, expand FastConnect, and then click Virtual Circuits.
  4. Go to the virtual circuit that you want to delete. From the menu icon menu, select Delete.