Configure Security Lists
If you plan to provision your Oracle SOA Cloud Service instance in an existing subnet, note that the provisioning process will not create any security lists to open ports in the subnets. You must open the ports explicitly before provisioning.
Open required ports as shown in the following table:
| Private Subnet (OCI only) | Public Subnet (OCI or OCI Classic) | |||
|---|---|---|---|---|
| with LB | without LB | with LB | without LB | |
| Bastion instance subnet | Port 22 to public | Port 22 to public | N/A | N/A |
| Oracle SOA Cloud Service instance subnet |
Port 22 to Bastion subnet CIDR Port 9073 to load balancer subnet's CIDR All ports to within the same subnet CIDR |
Port 22 to Bastion subnet CIDR All ports to within the same subnet CIDR |
Port 22 to public Port 9073 to load balancer subnet's CIDR All ports to within the same subnet CIDR |
Port 22 to public Port 9074 to public All ports to within the same subnet CIDR |
| Load balancer subnet | Port 443 to public | N/A | Port 443 to public | N/A |
| DB connectivity | Port 1521 to public | N/A | Port 1521 to public | N/A |
| OTD Console access | Port 8989 to known CIDR | N/A | Port 8989 to known CIDR | N/A |
| WebLogic Admin Server Console access | Port 7002 to known CIDR | Port 7002 to known CIDR | Port 7002 to known CIDR | Port 7002 to known CIDR |
The following screen shows an example security list for a public subnet:
For more information, see Security Lists in the Oracle Cloud Infrastructure Documentation.