Oracle Cloud enables business differentiation with more than a thousand software as a service (SaaS) applications and Oracle's infrastructure as a service (IaaS) capabilities and services.
These Oracle Cloud capabilities are often used in some of the following scenarios:
Connectivity provides the foundation for all of these scenarios. But let’s focus on the first two scenarios, which require a connection between an on-premises location to Oracle Cloud. Oracle provides migration tools that simplify migrations from on-premises workloads to the cloud. However, for many users, it’s not only about migration; they also want fast continual archiving, fast archive retrieval, and disaster recovery. Whatever the use case, the move to cloud brings challenges about security, latency, and reliability.
With On Demand, Colt’s software defined networking (SDN)-enabled network connectivity service, customers can connect to Oracle Cloud across EMEA, APAC, and North America from 25,000 data center and enterprise locations.
This post provides all the necessary steps for configuring a FastConnect link from Oracle Cloud Infrastructure to an on-premises router by using Colt’s Dedicated Cloud Access On Demand service.
You need accounts in both Oracle Cloud Infrastructure and Colt.
On the on-premises side of the connection, administrator access to the router that will serve as the customer premises equipment (CPE) is required. In this post, we use a Cisco CSR.
You must also meet the following prerequisites in Oracle Cloud Infrastructure:
The example in this post uses a private peering connection.
To create a FastConnect connection, you create a virtual cloud network (VCN), create a dynamic routing gateway (DRG), and attach the VCN to the DRG. Then, you configure the FastConnect circuit that the DRG will use to reach the on-premises network.
Sign in to your tenancy in the Oracle Cloud Console.
Ensure that you’re in the region that matches the destination region that you’re going to configure. This example uses the Frankfurt region.
In the Quick Actions section of the home page, click Set up a network with a wizard.
Select VCN with Internet Connectivity. This option creates a private subnet and a public subnet, and generates a security list and a route table. If you want to customize your own settings, cancel the wizard, click Create VCN, and then create each of these resources.
This example uses 10.0.0.0/16 for the VCN’s CIDR block. The VCN doesn't have to overlap with the on-premises network.
Select a compartment. If one is preselected, ensure that you want your VCN to reside there. If not, select another one. This example uses a compartment named Connectivity.
For more information about creating a VCN, see VCNs and Subnets.
Click Create Virtual Cloud Network.
The VCN details page is displayed.
A DRG is a virtual router that provides a pathway for private traffic between your VCN and other networks.
On the Networking page of the Console, in the Networking pane on the left side, click Dynamic Routing Gateways.
Click Create Dynamic Routing Gateway.
In the Create Dynamic Routing Gateway dialog box, select the compartment where you want the DRG to reside, and give the DRG a name (in this example, DRG-FRA).
Click Create Dynamic Routing Gateway.
After the DRG is provisioned, select it.
Under Resources, click Virtual Cloud Networks.
Click Attach to Virtual Cloud Network.
In the Attach to Virtual Cloud Network dialog box, select the same compartment where your VCN resides, and then select the VCN (in this example, VCN). You can ignore the advanced options.
Click Attach to Virtual Cloud Network.
The VCN is now attached to the DRG.
The next step is to add a rule to the DRG on your route table. A VCN uses virtual route tables to send traffic out of the VCN.
Go back to the Networking page of the Console, and in the Networking pane on the left side, click Virtual Cloud Networks.
Click your VCN (in this example, VCN).
Under Resources, click Route Tables.
Click Default Route Table for VCN.
Click Add Route Rules.
In the Add Route Rules dialog box, provide the following information:
For Target Type, select Dynamic Routing Gateway.
For Destination CIDR Block, enter the on-premises network CIDR block. This example uses 192.168.0.0/16.
For Target Dynamic Routing Gateway, select the DRG that you created (in this example, DRG-FRA).
Click Add Route Rule.
The final step in Oracle Cloud Infrastructure is to configure the FastConnect circuit that the DRG will use to reach the on-premises network. For these steps, you need to know the Border Gateway Protocol (BGP) IP addresses and the private Autonomous System Number (ASN) of your on-premises router (in this example, 65100).
Go back to the Networking page of the Console, and in the Networking pane on the left side, click FastConnect.
Click Create FastConnect.
On the Connection Type page of the Create Connection dialog box, select Use Oracle Provider, and then select Colt: DCA.
On the Configuration page, provide the following information. The values provided here are specific to this example.
Name: Give the connection a name (in this example, OCI).
Compartment: Select the same compartment that you’ve been using throughout this exercise (in this example, Connectivity).
Virtual Circuit Type: Private Virtual Circuit
Dynamic Routing Gateway: DRG-FRA
Provisioned Bandwidth: 1 Gbps
Customer BGP IP Address: 172.16.4.1/30
Oracle BGP IP Address: 172.16.4.2/30
Customer BGP ASN: 65100
The connection is created from Oracle Cloud Infrastructure.
On the details page for the connection, copy the OCID. You need it to provision the virtual connection from Colt On Demand in the next section.
Log in to the Colt on Demand Portal.
Click Ports, and then click Add cloud port.
Select Oracle Cloud FastConnect. Enter a port name (in this example OCI), paste the OCID that you copied for the FastConnect circuit, and select the location where you want to connect. Then, click Continue.
Accept the charges and submit the order.
In the Colt on Demand Portal, click Ports, and then click Add port.
Enter the building address, and select the building on the map.
For data centers and large enterprise buildings, the default delivery is from the Colt shared area (CEA). For smaller enterprise buildings, select a specific floor/room (existing racks) or add a site.
Select your port and port commitment. On Demand supports 1-Gbps and 10-Gbps ports in all locations and 100-Gbps ports in key data centers. Ports are available under a 3- or 12-month commitment.
Select the cloud provider that you want to connect to and the cloud port (in this example, OCI).
Select the cloud location where the cloud connection terminates (in this example, Frankfurt).
Select a VLAN configuration.
Select a bandwidth. The maximum bandwidth is limited by the cloud port speed (for example, 500 Mbps).
Choose a contract commitment (one-hour flex or 3, 6, 12, 24, or 36 months).
Accept the charges to create the circuit connection.
The final step is configuring the connection to the on-premises network.
Access your router to configure the BGP properties and establish a peering relationship with Oracle Cloud Infrastructure DRG to exchange routes. This step can vary by vendor; this example uses a Cisco CSR. Refer to your vendor’s documentation for help with BGP.
Oracle's BGP ASN is 31898. Your ASN can be any private or public ASN that you own.
Configure the router IP address and BGP information:
In this example, 172.16.4.0/30 is used.
In this example, the private BGP ASN 65100 is used.
Following are some suggested steps for testing the connectivity.
Verify that BGP has been established.
Verify that BGP routes are being sent and received from Oracle Cloud Infrastructure.
Send ping and traceroute commands to the Oracle DRG.
Send ping and traceroute commands to Oracle bare metal hosts or VMs within Oracle Cloud Infrastructure.
Verify that you can ping an Oracle VM (10.0.2.2) from your router (192.168.1.1).
Verify that you can ping the Oracle DRG IP address (172.16.4.2) from your router.
In the Oracle Cloud Infrastructure Console, verify that the status of the FastConnect connection is UP.
This post provides a straightforward process for connecting Oracle Cloud Infrastructure to your on-premises network by using Colt On Demand.