A VCN for OCI Load Balancer

A VCN for OCI Load Balancer

Matt Mulvaney's photo
Matt Mulvaney
·

2 min read

In this Blog, we are designing a VCN and the Load Balancer.

Our overall design has another VCN which contains an ORDS in a compute instance.

Deploying a these two VCNs, connected by an LPG, is valid for achieving network segmentation and scaling flexibility in Oracle OCI environments as is a valid approach.

However it requires more complex configuration and may introduce slight latency and additional management overhead - even so, these blogs will guide you though.

We are aiming for this set up

Basically an isolation from Compute Boxes (in 20230323-1639) from the Load Balancer (vnc-lb).

Let’s start

Steps

We’ll create a new VCN, that includes a Public facing subnet and therefore requires a separation from my other OCI kit. I’m going to create these with specifically named CIDR Blocks because in another Blog, we’re going to use a Local Peering Gateway and peered CIDRs cannot clash.

  1. In OCI go to Hamburger > Networking > Virtual Cloud Networks > Create VCN

  2. Create a new VCN specifically for the Load Balancer with a name of vnc-lb and an IPv4 CIDR Block of 10.1.0.0/16 then click Create VCN

  3. Create a Subnet with a name of subnet-lb-private and an IPv4 CIDR Block of 10.1.1.0/24 and click Private Subnet

  4. Create a Subnet with a name of subnet-lb-public and an IPv4 CIDR Block of 10.1.2.0/24 and click Public Subnet

  5. Click Network Security Groups > Create Network Security Group > Name = nsg-lb > Next

  6. Direction = Ingress, Source Type = CIDR, Source CIDR = 10.1.2.0/24, IP Protocol = TCP, Destination Port Range = 443

  7. Click Add Another Rule

  8. Direction = Egress, Source Type = CIDR, Source CIDR = 0.0.0.0/0, IP Protocol = All Protocols

  9. Click Create

  10. Click Security Lists > Default Security List > Ingress Rules > Add Ingress Rules

  11. In Source CIDR Port Range type 0.0.0.0/0 in Destination Port Range type type 443

  12. Click Add Ingress Rule

  13. Go back to the VCN and click Internet Gateways > Create Internet Gateway

  14. Use a new of ig-lb and click Create Internet Gateway

  15. Go back to the VCN and click Route Tables > Default Route Table > Add Route Rules

  16. Use Target Type = Internet Gateway and a Destination CIDR Block of 0.0.0.0/0 and a Target Internet Gateway of ig-lb

  17. Click Create Route Rules

Whats next?

  • If you’re followng a series of blogs, go back to where you left off otherwise…

  • Create a Load Balancer

ENJOY!

What’s the picture? Its Knaresborough Castle, Visit Yorkshire

OCIvcnLoad BalancingOracle