rw

Published September 3rd, 2024.

Introduction Oracle Analytics Platform

The Oracle Analytics platform comprises OAC (Oracle Analytics Cloud) and OAS (Oracle Analytics Server). It supports the efforts of every analytics user role. AI and ML are embedded throughout the platform to accelerate productivity and power better business decisions. Features include:

  • Data visualization and storytelling
  • Machine learning
  • Mobile analytics
  • Open data source connectivity
  • Data preparation and enrichment
  • Enterprise data modeling

OAC PLATFORM

About

This post is a member of the Oracle Analytics Terraform series and is a sequel to the Deploy OCI Identity Components Before Provisioning Oracle Analytics Services post. It includes architectural diagrams, a deployment module, links to references, and guides in deploying initial networking components required for three use cases:

  • Private access to Oracle Services.
  • PAC (Private Access Channel) for Oracle Services.
  • Private Endpoints for Oracle Services.
Prerequisites

Following the guidance in this post requires:

Topics
rw
Architecture
Initial State

Slide58

This diagram depicts an OCI region, compartment, identity domain, administrator account, and policy in a customer’s cloud account (tenancy).

Prepared State

Slide59

This diagram depicts the initial OCI network components required for three use cases.

rw
Components

The deployment package deploys the following components. Each component shows the use case dependencies.

DRG (Dynamic Routing Gateway)

A DRG acts as a virtual router, providing a path for traffic between a VCN (Virtual Cloud Network) and on-premises networks, third-party clouds, and other VCNs.

A DRG may already exist in the region designated for Oracle Analytics services. If it does, it is used in the deployment; if not, it is created.

A DRG is:

  • Required for private access to Oracle Analytics services.
  • Optional for Oracle Analytics service endpoints.
  • Optional for OAC PAC (Private Access Channel).
VCN

VCNs are virtual, private networks created in an OCI region and compartment. They resemble traditional networks, with firewall rules, route tables, and gateways. VCNs contain one or more CIDR block ranges of IP addresses.

A VCN is required for:

  • Private access to Oracle Analytics services.
  • Oracle Analytics service endpoints.
  • OAC PAC.
Private Subnet

Private Subnets have a contiguous range of IP addresses that do not overlap with other subnets in the VCN. They prohibit Internet ingress and egress and are assigned a route table, security lists, and DHCP options.

A private subnet is required for:

  • Oracle Analytics service endpoints.
  • OAC PAC.
Service Gateway

A service gateway allows a VCN to access Oracle Analytics services privately without traversing the public internet.
A regional service gateway enables access only to supported Oracle services in the same region as the VCN.

A service gateway is:

  • Required for private access to Oracle Analytics services.
  • Optional for OAC PAC.
  • Optional for Oracle Analytics service endpoints.
NAT Gateway

NAT (Network Address Translation) is a networking technique commonly used to give an entire private network access to the Internet without assigning each host a public IPv4 address. The private hosts initiate connections to the Internet and receive responses but cannot accept connections initiated from the Internet.

A NAT gateway is optional for:

  • Oracle Analytics service endpoints.
  • OAC PAC.
DRG Attachment

A DRG attachment explicitly attaches a DRG to a VCN. A DRG must be attached to a VCN to route traffic to and from it.

A DRG attachment is:

  • Required for private access to Oracle Analytics services.
  • Optional for Oracle Analytics service endpoints.
  • Optional for OAC PAC.
OCI DNS Resolver

An OCI DNS resolver is created for VCNs using a DNS label. By default, it resolves hostnames of resources in the VCN and hostnames published on the Internet. The resolver can be extended to resolve additional hostnames in other OCI DNS zones.

An OCI DNS resolver is:

  • Optional for Oracle Analytics service endpoints.
  • Required for OAC PAC.
OCI DNS Listener Endpoint

A DNS listener endpoint receives and resolves DNS queries from outside the VCN.

A DNS listener endpoint is:

  • Optional for Oracle Analytics service endpoints.
OCI DNS Forwarder Endpoint

A DNS forwarder endpoint forwards DNS queries to listening endpoints outside the VCN for resolution. Decisions about where to forward queries are based on defined resolver rules.

A DNS forwarder endpoint is:

  • Optional for Oracle Analytics service endpoints.
  • Optional for OAC PAC.
rw
Deployment

Follow these steps to deploy the example components:

Note:
This post’s examples use the Terraform state file from the Deploy Initial Components for Oracle Analytics Services post.

  1. Locate the Terraform state zip file downloaded from the steps in the above post. An example file name is INIT_OA_COMPONENTS-2024-09-03-17_05_13.zip.
  2. Download the deployment module (INIT_OA_NET_COMPONENTS.zip) from here.
  3. Sign in to the OCI Tenancy example domain (Example_Domain) as the Example user (Example.ServiceAdmin).
    • Change to the designated OCI Region for Oracle Analytics services.
  4. Click on
    Developer Tools
    Developer Tools and select Cloud Shell.
    • Click on the
      GearIcon
      Gear Icon and select Upload.
      • Drop or Select the INIT_OA_COMPONENTS*.zip file.
        Upload OA-INIT
      • Click Upload.
    • Click on the
      GearIcon
      Gear Icon and select Upload.
      • Drop or Select the INIT_OA_NET_COMPONENTS.zip file.
        UploadOA_NET
      • Click Upload.
    • Decompress the INIT_OA_NET_COMPONENTS.zip file. Copy, paste, and run the following commands. 
      cd; [ -d INIT_OA_NET_COMPONENTS ] && rm -r INIT_OA_NET_COMPONENTS;
unzip INIT_OA_NET_COMPONENTS.zip;
  5. Deploy the components. Copy, paste, and run the following commands. 
    cd ~/INIT_OA_NET_COMPONENTS; source setup.sh \
> >(tee -a INIT_OA_NET_COMPONENTS_setup.log) 2> >(tee -a INIT_OA_NET_COMPONENTS_setup.log >&2)

    Note: Wait for all components to finish.

  6. Optionally, view the setup log file. Copy, paste, and run the following commands. 
    cd ~/INIT_OA_NET_COMPONENTS; more INIT_OA_NET_COMPONENTS_setup.log;
  7. Validate the components using the OCI console.
    • Navigate to Networking > Dynamic routing gateways.
      • Navigate to the root compartment.
      • Click and view the DRG. It is either a pre-existing DRG or a new one named Example_DRG.
    • Navigate to Networking > Virtual Cloud Networks.
      • Navigate to the Example_Compartment.
      • Click and view the Example_VCN.
        • Click and view the Example_Private_Subnet.
        • Return to the Example_VCN screen.
        • Under Resources, view the following:
          • The Example_NAT_Gateway
          • The Example_Service_Gateway
          • The Example_DRG_Attachment
        • Click and view the DNS_Resolver.
          • Under Resources, click Endpoints and view the following:
            • The Example_Resolver_Listener.
            • The Example_Resolver_Forwarder.
rw
Removal

If desired, the deployed components can be removed by following these steps:

  1. Sign in to the OCI Tenancy example domain (Example_Domain) as the Example user (Example.ServiceAdmin).
    • Change to the designated OCI Region for Oracle Analytics services.
  2. Click on
    Developer Tools
    Developer Tools and select Cloud Shell.
  3. Remove the components. Copy, paste, and run the following commands.

Note: When prompted to approve the destroy step, type yes (case-sensitive).
Wait for all components to finish. This can take up to 10 minutes.

cd ~/INIT_OA_NET_COMPONENTS; source remove.sh > >(tee -a INIT_OA_NET_COMPONENTS_remove.log) 2> >(tee -a INIT_OA_NET_COMPONENTS_remove.log >&2)
  1. Optionally, view the removal log file.
cd ~/INIT_OA_NET_COMPONENTS; more INIT_OA_NET_COMPONENTS_remove.log;

  1. Validate the component removal using the OCI console.

rw
Explore More

Example network components that support OAC have been provisioned.

Explore more about Oracle Analytics by visiting the community, blogs, and library.

Explore Analytics Platform Features
rw
var coll = document.getElementsByClassName(“collapsible”); var i; for (i = 0; i < coll.length; i++) { coll[i].addEventListener("click", function() { this.classList.toggle("active"); var content = this.nextElementSibling; if (content.style.display === "block") { content.style.display = "none"; } else { content.style.display = "block"; } }); }