Please enable JavaScript.
Coggle requires JavaScript to display documents.
Oracle Cloud Infrastructure Architect Professional - Coggle Diagram
Oracle Cloud Infrastructure
Architect Professional
1 Plan & Design Solutions on OCI
Billing & Cost Management
Cost Analysis and Budgets
Cost Analysis
Filter by
Date
Tags
Compartments
Budgets
group "usage-budget" in tenancy
created in root compartment
Usage Reports
CSV File
24hours user information
Retained for one year
Service Limits and Quotas
Compartment Quotas
set
unset
zero
Cost manangement best practices
Service Limits and Quotas
Compute
Bring your Own Hypervisor
Custom Images
Instance Console Connection
Instance Metrics and Autoscaling
Instance Configurations and Pool
Quotas
Storage
Local Attached NVMe devices
Block Storage
File Storage
High Availability
Disaster Recovery
RPO
RTO
Disaster Recovery Options
Backup and Restore
Standby
Active/Active
DNS Traffic
Steering Policies
Attachments
Rules
Answers
Scenarios
Basic Failover
Cloud Migration
Load Balancing Across Multiple Servers Scale
Hybrid Environment
Worldwide Geolocation Treatment
Canary Testing
Zero-Rating Services
Database
Active Data Guard
GoldenGate
OCI Monitoring
2 Design, Implement, & Operate Databases in OCI
Database Capacity
Planning Overview
Database Sizing Concepts
Interpret Sizing Requirements
Validate the Cloud Migration
Database High Availability
Features
Standby and Data Guard Operation
Database Migration
Methods and Best Practices
Migration to Autonomous Database
Zero Downtime Migration
Database Command Line Interface (DBCLI)
Autonomous Database
Serverless & Dedicated
Database Dedicated
Deployment Considerations
Developer Tools and Productivity
Management & Monitoring Options
3 Migrate On-Primises Workloads to OCI
Planning your Data Migration to OCI
Inventory and Asses
On-premises IT Resource
Database
Regulatory Compliance
Storage
Networking
Application
Multi-phased
Data Migration
Business Critical
Deployment Environment Type
Disaster Recovery
Data Migration
Offline Transport - Data Transfer Service
Data Transfer Disk
SATA
Requirements
100TB
10 Disks
AES-256
NIST 800-88
Erased Disks
Data Transfer Utility
USB
Data Transfer Appliance
150TB
AES-256
NIST 800-88
Erased Disks
Data Transfer Utility
DTS
Command Line Interface
Online Transport - Storage Gateway
VPN
FastConnect
Storage Gateway
Use Case
Cloud Tiering
Nearline contenct repositories
Backups
3 copies of data
2 different storage types
1 copy of data offsite
Archive
Disaster Recovery
Data Migration
Installed as a Linux Docker
Exposes an NFS mount point
Tunning and Pinning
Cache local
Performance
Upload 450-500
Donwload 700-750
Limits o Storage Gateway
4 Implement and Operate solutions in OCI
OCI Streaming
Oracle Kubernetes Engine (OKE) Overview
OKE Cluster Demo
Accessing OKE Cluster using kubectl
Oracle Registry Service (OCIR)
Overview
Managing Repos in OCIR
Pulling images from OCIR
Image Retention Policies
Events
Overview and Key Features
Core concepts
Use cases, Reference Architectures and Demo
Oracle Functions
Overview and Core Concepts
Core Concepts
Use cases, Reference Architectures and Demo
Service Requests and SLAs
5 Design for Hybrid Cloud Architecture
Virtual Cloud Network
Local and Remote Peering
Local Peering Gateway (LPG)
Intra-region
Cross-Tenancy Peering
Route Table
Security List
Same Tenancy Peering
IAM Polcies
Remote Peering
Cross-region
Remote Peering Connection (RPC)
It is a component of DRG
Differente Regions but same Tenancy
IAM Policices
Route Table
Security List
Transit Routing Scenarios
Access to multiple VCNs
Through a private IP
Through Service Gateways
Deploy Virtual Firewall on OCI
Fortigate with a Two Tier
vSRX
COmpute intance in VCN
Palo Alto
North-South Traffic
Inter-VCN Traffic
East-West
Load Balancer
Session Persistence, Virtual Hostname and Path Routing
Session Persistence
Must ve in HTTP mode
Cookie driven session persistence
Request Routing
Virtual Hostname
To a Listener
HTTP/HTTPS Only
Not TCP listeners
Advantages
Single Associated IP Address
Single Bandwidth/shape
Shared backend set definition
3 Matching
exact matching (app.example.com)
longest wildcard starting with asterisk (*.example.com)
longest wildcard ending with asterisk (app.example.*)
Path Routing
EXACT_MATCH
^<path_string>$
FORCE_LOGENST_PREFIX_MATCH
<path_string>*
PREFIX_MATCH
^<path_string>*
SUFFIX_MATCH
*<path_string>$
SSL Handling and Troubleshooting
SSL Handling
Termination
Tunneling
End-to-End
Troubleshooting
Common Issues
Health check misconfigured
Listener misconfigured
wrong port
wrong protocol
wrong policy
Security list misconfigured
Route table misconfigured
Metrics
AVAILABILITYDOMAIN
BACKENDSERVER
LBCOMPONENT
LBHOSTID
LISTENERNAME
REGION
RESOURCEID
Recaptulation
Scale and HA
Public and Private (public IP)
Plublic Load Balancer, Regional Service, 2 Availability Domains
Protocosl: TCP, HTTP/1.0, HTTP/1.1, HTTP/2, WebSocket
SSL
Termination
En-toEnd
Tunneling
Session persistence and content based routing
100Mbps, 400Mbps e 8Gbps
TCP (layer 4) and HTTP (layer7)
FastConnect
Overview
1Gbps
10Gbps
No charge inbound/outbound
BGP
Use Cases
Private peering
Pricate IP Prefixes
Limit 2000
Public peering
Public IP prefixes
Limit 200
Connectivity Models
Concepts
Metro Area
FastConnect location
Oracle Provider
Third-party provider
Colocation
Cross-connect
Cross-connect group
LAG
up to 8
Same router
Virtual Circuit
Direct to Oracle
Data Center Colocation
Dedicated Circuit from a 3rd Party
VPN Connect
Overview
Planning
Bandwidth/Throughput
Latency
Redundancy
Secure and Private dedicated connection
Scale up bandwitch
Concepts
CPE
IPSec connection
DRG
Routing
Static
BGP
Demo
DNS Zone Management
What is DNS
DNS Overview and Demo
Create and mange
Import/upload zone files
Filter and sort views of zones and records
Secondary DNS support
APIs and SDKs
DNS Traffic Management Sterring Policies
Overview
Failover
Cloud Migration
Load Balancing For Scale
Hybrid Environments
Worldwide Geolocation Steering
IP/Based Steering
Canary Testing
Zero/Rating Service
ASN
Failover Policy Demo
Geolocation Policy Demo
6 Design for Security and Compliance
Security Overview
Shared Security Responsibility Model
Customer Isolation
Data Encryption
Security Control (Authentication)
Security Control (Authorization)
Security Control (Resource Access)
Visibility
Secure Hybrid Cloud - 1
Secure Hybrid Cloud - 2
Verifiably Secure Infrastructure
WAF
Concepts and Use Cases
Architecture Review
IAM
Overview, Instance Principals and Dynamic Groups
Multi-Factor Authentication and Advanced Policies
Identity Federation
Reference IAM model and Compartments
Introduction to Data Safe