Scenario 2: Deploying the Gateway Using Shared Services on an Oracle-Managed Network
This deployment scenario is defined as follows:
Deploying the Gateway Using Shared Services on an Oracle-Managed Network
| Gateway location: | Customer tenant |
| Gateway compartment: | Shared services |
| Network managed by: | Oracle |
| VCN location: | Shared services compartment |
| Gateway subnet location: | Shared services compartment |
| Location of customer subnet(s): | Customer compartment(s) |
Scenario 2 Deployment Requirements
Make sure you meet the following requirements for successfully deploying the gateway in this scenario:
- Import the gateway image to the customer tenant using the instructions provided below.
- Allocate a new compartment for Oracle shared services (if this step is not already completed.)
- Create a new subnet in the shared services VCN where the gateway will reside (/29 will suffice.)
- Place customer assets in other subnets on the shared services VCN and/or in the customer 's own VCN.
- Configure the customer VCN to allow traffic to the specified addresses by generating a security list based on the firewall requirements listed in Oracle Advanced Services Gateway Security Guide
- Set up an internet gateway or NAT gateway to allow traffic to the internet on the customer VCN.
Note:
If you opt to use a NAT gateway, Oracle assumes that the customer is responsible for building and activating the gateway up to the point when SSLVPN is connected. - Generate a route table incorporating rules pointing the required traffic to the internet on the customer VCN.
- (Optional) Set up a local peering gateway and establish a peering connection if the customer has assets in their own VCN.