top of page

Part 6: Building a short end-to-end environment in OCI

In Part 5 - https://www.letsdosometech.com/post/part-5-building-a-short-end-to-end-environment-in-oci we have covered VCN flow logs, Load balancer logging & Object storage replication.

Areas covered so far -


- Building Compartments. ( Completed in Part 1 )

- Building VCN’s. ( Completed in Part 2 )

- Building Compute instances. ( Completed in Part 3 )

- Building Load Balancer. ( Completed in Part 3 )

- Building DB Systems. ( Completed in Part 3 )

- Create domain zones. ( Completed in Part 4 )

- Create WAF. ( Completed in Part 4 )

- Create VCN Flow logs. ( Completed in Part 5 )

- Create Load balancer Logging. ( Completed in Part 5 )

- Create object storage & replication policies. ( Completed in Part 5 )

- Create resources in secondary region.

- Create DRG’s in both regions.

- Remote peering connections.

- Validate connectivity between both regions.


In this part, we will be creating resources in secondary region and allow the traffic connectivity between the two regions for high availability. We would be creating DRG's to allow the connectivity between the VCN's in the two regions.


This process involves creation of DRG, VCN attachment for the DRG, creating RPC in both the region's VCN's and then establishing the connection between the RPC's. Let's start with creation of these 3 components in our primary region - Hyderabad.


Creating a DRG in Primary region:


Click on the hamburger menu, then Networking -> Customer Connectivity -> Dynamic Routing Gateway and create a DRG.




Once DRG is created, VCN needs to be attached to the DRG to control the traffic to the VCN.






Now that we have successfully created the DRG resources in Hyderabad region, let's start with creating the resources in Bombay region.


Creating VCN, DRG resources in Secondary region (Bombay):


Create VCN in Bombay:




Creation of DRG resources:








Post creation of Remote Peering Connection, connection needs to established between the RPC's of both the regions. Click on "Establish Connection" for performing the same and add the region and RPC details.




Post the connection establishment, we can see the Peering status has been changed to "Peered" on the Bombay DRG. Let's check the status of the HydDRG to see if it has changed to Peered too.


Now that the DRG resources are created in both the regions and they are peered, the last step would be to add the appropriate rules in both the DRG route tables to allow the traffic.


Click on the Automated DRG RT for VCN attachments and add the static rules. When adding the rules, and auto generated rule table will be displayed from which we can select the entries to be added.



Once added, add the same to the VCN Route tables and Security Lists.



The same changes needs to be performed on the Bombay DRG RT's & VCN SL's. Once complete, the traffic between the two regions is enabled. We can confirm that with a small test by connecting to the servers of the one region to the other as below -




Yayy!! so our connectivity between the regions is complete and working.


So folks, this is the end of our complete article of building a short end-to-end environment is OCI. Thanks for your time for looking into this article and drop me a note if you are looking for any specific article, will try to look into it.


All the parts of this article can be accessed through -



Comments


Drop Me a Line, Let Me Know What You Think

Thanks for submitting!

copyrights @letsdosometech.com

bottom of page