Manually Create a Virtual Cloud Network (VCN) and Resources

You can manually create a VCN and the specific resources you need.

The VCN requires the following resources at a minimum:

• Create a private subnet for the database

• Create security lists and routing tables on the database subnet. You only need to create the security list if the JRF operations database is in a different compartment than the compartment where Oracle WebLogic Server for Oracle Cloud Infrastructure is provisioned.

• Create an internet gateway.

Create a Virtual Cloud Network (VCN)

Create a VCN using the Oracle Cloud Infrastructure Console.

To create a VCN without additional resources:

1. Open the navigation menu. Under Core Infrastructure, go to Networking and click Virtual Cloud Networks.
2. Choose your compartment on the left side of the page. The page updates to display only the resources in that compartment.
3. Click Create Virtual Cloud Network.
4. Enter the following:

   • Create in Compartment: Use the default Compartment or select a different compartment.

   • Name: A friendly name for the cloud network. It doesn't have to be unique, and it cannot be changed later in the Console (but you can change it with the API). Avoid entering confidential information.

   • Create Virtual Cloud Network Only: Make sure this radio button is selected.

   • CIDR Block: A single, contiguous CIDR block for the cloud network. For example: 172.16.0.0/16. You cannot change this value later.

     Note:

     If you intend to migrate databases and to use VPN or Fast Connect to connect to this VCN from on-premises, make sure that the VCN CIDR range on Oracle Cloud Infrastructure does not overlap with the on-premises VCN CIDR range.

   • Use DNS Hostnames in this VCN: If you want the instances in the VCN to have DNS hostnames (which can be used with the Internet and VCN Resolver, a built-in DNS capability in the VCN), select the Use DNS Hostnames in this VCN check box. Then you can specify a DNS label for the VCN, or the Console will generate one for you. The dialog box automatically displays the corresponding DNS Domain Name for the VCN (<VCN DNSlabel>.oraclevcn.com).

   • Tags: Optionally, you can apply tags. If you are not sure if you should apply tags, skip this option for now. You can apply tags later, if required.

5. Click Create Virtual Cloud Network.

Create a Security List

Security lists act as virtual firewalls using a set of ingress and egress security rules that apply to all the virtual network interface cards (VNICs) in any subnet that is associated with the security list.

1. Open the navigation menu. Under Core Infrastructure, go to Networking and click Virtual Cloud Networks.
2. Click the VCN you're interested in.
3. Under Resources, click Security Lists.
4. Click Create Security List.
5. Enter the following:
   • Name: A descriptive name for the security list. For example: domain-db-security-list. The name doesn't have to be unique, and it cannot be changed later in the Console (but you can change it with the API). Avoid entering confidential information.
   • Create in Compartment: The compartment where you want to create the security list, if different from the compartment you're currently working in.
6. Add ingress or egress security rules. You can also add, revise, and delete security rules after you create the security list.
7. Click Create Security List.

Create a Private Subnet

Create a private subnet to house resources for which you do no want to provide access through public IP addresses.

Subnets act as a unit of configuration within the virtual cloud network (VCN). All virtual network interface cards (VNICs) in a given subnet use the same route table, security lists, and DHCP options. When you designate a subnet as private, VNICs in the subnet can't have public IP addresses.

1. Open the navigation menu. Under Core Infrastructure, go to Networking and click Virtual Cloud Networks.
2. Choose a compartment you have permission to work in (on the left side of the page). The page updates to display only the resources in that compartment.
3. Click the VCN where you want to create the subnet.
4. In the VCN details page, click Subnets.
5. Click Create Subnet.

   Enter the following:

   • Name: A friendly name for the subnet (for example, domain-db-subnet). It doesn't have to be unique, and it cannot be changed later in the Console (but you can change it with the API). Avoid entering confidential information.
   • Regional or Availability Domain-Specific: Select Regional (recommended), which means the subnet spans all availability domains in the region. Later when you launch an instance, you can create it any availability domain in the region.
   • CIDR Block: A single, contiguous CIDR block within the VCN's CIDR block. For example: 10.0.5.0/24 if the VCN CIDR block is 10.0.0.0/16) You cannot change this value later.
   • Route Table: Select the default route table.
   • Subnet Access: Select Private Subnet, which means instances in the subnet cannot have public IP addresses.
   • Use DNS Hostnames in this Subnet:This option is available only if you provided a DNS label for the VCN during creation. The option is required for assignment of DNS hostnames to hosts in the subnet, and required if you plan to use the VCN's default DNS feature (called the Internet and VCN Resolver). If the check box is selected, you can specify a DNS label for the subnet, or the Console will generate one for you. The dialog box automatically displays the corresponding DNS Domain Name for the subnet (<subnet_DNS_label>.<VCN_DNS_label>.oraclevcn.com).
   • DHCP Options: Select the default set of DHCP options.
   • Security Lists: Select the security list your created earlier, such as domain-db-security-list.
   • Tags: Leave as is. You can add tags later if you want.
6. Click Create Subnet.

Create an Internet Gateway

Add an internet gateway to a virtual cloud network (VCN) to enable direct connectivity to and from the internet and then update the route table to use the gateway.

1. Open the navigation menu. Under Core Infrastructure, go to Networking and click Virtual Cloud Networks.
2. Choose a compartment you have permission to work in (on the left side of the page). The page updates to display only the resources in that compartment.
3. Click the VCN where you want to create the subnet.
4. In the VCN details page, click Internet Gateways.
5. Click Create Internet Gateway.

   Enter the following:

   • Name: A friendly name for the internet gateway. It doesn't have to be unique, and it cannot be changed later in the Console (but you can change it with the API). Avoid entering confidential information.
   • Create in Compartment: The compartment where you want to create the internet gateway, if different from the compartment you're currently working in.
   • Tags: Optionally, you can apply tags. If you have permissions to create a resource, you also have permissions to apply free-form tags to that resource. To apply a defined tag, you must have permissions to use the tag name space. For more information about tagging, see Resource Tags. If you are not sure if you should apply tags, skip this option (you can apply tags later) or ask your administrator.
6. Click Create Gateway.
7. In the VCN details page, click Route Tables.
8. Click the Default Route Table for <VCN>
9. Click Add Route Rules
   Enter the following:

   • Target Type: Internet Gateway
   • Destination CIDR block: 0.0.0.0/0 (which means that all external traffic that is not already covered by other rules in the route table will go to the target specified in this rule)
   • Compartment: The compartment where the internet gateway is located.
   • Target: The internet gateway you just created.
   • Description: An optional description of the rule.
10. Click Add Route Rules.