Additional Notes

• Reverse Path Awareness

  Services such as the Credential Exchange Server rely on Oracle-initiated traffic into the customer’s VCN. Failure to allow reverse traffic may not affect initial setup but will result in operational failures later.

• High Availability

  For production workloads, Oracle recommends redundant VPN tunnels or FastConnect circuits. Customers should verify that both paths are configured, operational, and tested.

• Subnet Ownership

  While Oracle provisions the VNICs used for private endpoints, the subnet is owned and maintained by the customer. Customers must ensure subnet health and configuration, including availability of private IP addresses and security policies.

For detailed guidance on OCI networking best practices, refer to the Oracle Cloud Infrastructure Networking Documentation.