3 Creating Network Resources

The resource definitions in the following sections in this chapter create a working example set of network resources for workload clusters. Use this configuration as a guide when you create these resources. You can change the values of properties such as CIDR blocks and IP addresses. You should not change the values of properties such as the network protocol, the stateful setting, or the private/public setting. See Workload Cluster Network Ports for specific ports that must be open for specific purposes.

If your network requires proxy settings to enable worker nodes to reach outside registries or repositories, for example, see Configuring a Proxy.

Note:

If the appliance administration network is enabled, ask your system administrator to verify that the administration network and the data center network are configured to allow traffic to and from the cluster control plane. See Administration Network Configuration Notes in the Oracle Private Cloud Appliance Installation Guide.

Create the following network resources. To use Terraform, see Example Terraform Scripts for Network Resources.

Note:

Create all of these network resources in the same compartment on the appliance.

• VCN. See Creating an OKE VCN.

• Internet gateway

• NAT gateway

• Route rules

• Security lists

• The following four subnets:

  • Worker. See Creating an OKE Worker Subnet.

  • Worker load balancer. See Creating an OKE Worker Load Balancer Subnet.

  • Control plane. See Creating an OKE Control Plane Subnet.

  • Control plane load balancer. See Creating an OKE Control Plane Load Balancer Subnet.