MiniCluster includes a storage array with a mix of SSDs and HDDs. The HDDs can be configured to provide shared storage to the VMs.
MiniCluster includes a shared storage isolation feature – A toggle switch that facilitates isolation of shared storage applied only to global and kernel zones. This helps to isolate a security and compliance-enabled VM group environment from sharing files with the global and kernel zones. This ensures that VM groups are no longer attached to NFS mounts and that the NFS services are disabled.
For highly secure environments, do not enable shared storage for database VMs and application VMs. If shared storage is enabled, the file system must be accessible to the VMs as read-only. For instructions on how to enable or disable the shared storage, refer to the Oracle MiniCluster S7-2 Administration Guide available at: http://docs.oracle.com/cd/E69469_01.
The /sharedstore directory is the mount point for the shared storage:
Ensure that the shared storage is not available to database VMs and application VMs, or that it is read-only.
In production deployments, ensure that both kernel zones are not accessible over public networks or directly accessible to client access. All direct access and use of shared storage services from public networks or client access must be terminated. If VMs require access to the /sharedstore file system through NFS, ensure that they are facilitated through IPSec/IKE channels.