Contents

Oracle Cloud Infrastructure

Architecture

  • Regions
  • Availability Domains
  • Fault Domains

Admin tenancy/Compartment

  • Create dedicated compartments to isolate resources.
  • Không dùng admin tenancy cho day-to-day operations. Nên tạo từng loại Users (Services admin) và các Groups (Network-admin, Storage-admin).
  • Nên dùng Multi-factor authentication.

Identity and Access Management

  • Fine-granted Access Control
  • AuthN - Who are you?
  • AuthZ - What permissions do you have?
  • Auditing - What did you do?
  • Users (Instance principle)
  • Groups
  • Policies
  • Compartments
  • Resources
  • Tag-based Access Control
  • Dynamic Group

Networking

  • Virtual Cloud Network
  • Security
  • Load Balancer
  • Public IP addresses
  • Private IP addresses
  • Bring Your Own IP Address (BYOIP)
  • Local and Remote Peering
  • Transit Routing
  • DRG Enhancements
  • VCN Connectivity
  • VPN Connect (IPSec)
  • FastConnect
  • Domain Name System
  • Public DNS Zones
  • Private DNS Zones
  • Traffic Management (steering)
  • Load Balancer Concepts
  • Public and Private Load Balancer
  • Load Balancer Policies, Health Checks
  • Network Visualizer
  • Inter-region Latency Dashboard

Compute

  • Compute Intro
  • Image Options - Import/Export, BYOI, Custom Image
  • Instance Configurations, Pools, Autoscaling
  • Instance Basics
  • OS Management Service
  • Cloud Shell
  • Preemptible Instances
  • Burstable Instances
  • VM Migration
  • Capacity Reservations
  • Dedicated VM Hosts
  • Run Command

Storage

  • Persistent vs non-persistent.

  • What type of data? Databases, Videos, Audio, Photos, Text.

  • Performance? Capacity, Input Output per second (IOPS), Throughput.

  • Durability? # of copies of data.

  • Connectivity: Local storage, Network Storage, How to access data.

  • Protocol: Block, file, HTTP.

  • OCI Storage Services

  • Local NVMe: instance với storage nằm chung với nhau.

  • Block Volume: instance độc lập với storage.

  • Object Storage: photos, videos, logs. Put/Get object.

  • File Storage: shared storage.

  • Archive Storage

  • Data migration

Database Services

  • DB Cloud Service là một PaaS offering mà cung cấp cho bạn một fully functional và deployed Oracle Database platform trên:
    • Bare Metal
    • Virtual Machine
    • Exadata là một Oracle’s flagship engineered systems platform explicitly được thiết kế dành cho hosting clustered highly available và high-performance Oracle DBs.
  • Autonomous Concepts
  • Autonomous Database Administration
  • Provision an Autonomous Database
  • Connecting to the Autonomous Database
  • ADB Backups and Recovery
  • Securing Autonomous Database
  • Monitoring Autonomous Database
  • ADB Cloning
  • Database Options
  • Database Systems
  • MySQL
  • NoSQL

Security

Shared Security Model:

  • On-premises environment: thì sở hữu toàn bộ stack và có trách nhiệm security end to end.

    • Data
    • Devices
    • Accounts & Identities
    • Applications
    • Network Controls
    • Operating System
    • Virtualization
    • Physical Hosts
    • Physical Network
    • Physical DataCenter
  • Khi chuyển sang Cloud thì một phần sẽ được quản lí bởi Oracle:

    • Virtualization
    • Physical Hosts
    • Physical Network
    • Physical DataCenter
  • Security Services

  • Cloud Guard

  • Security Zones And Security Advisor

  • Vulnerability Scanning

  • Vault

  • Web App Firewall

  • Bastion

App Dev

  • Infrastructure as Code
  • Container-based deployments
  • Access to services

Core Developer Services:

  • Resource Manager (managed Terraform)
  • Functions (serverless)
  • Container Engine for Kubernetes (OKE)
  • Registry (OCIR)
  • API Gateway

Observability and Management

  • Integrated Platform: combines những services và makes them work seamlessly.

  • Multi Cloud, on-premises:

  • Cross-tier View: dù là Go app, Java WebLogic thì cũng có thể dùng chung.

  • Open Standards:

  • Monitoring

  • Logging

  • Logging Analytics

Analytics and AI

  • Data Integration
  • Data Flow
  • Data Catalog
  • Data Science

Hybrid Cloud

OCI Public Region dùng cho deployment size Large.

  • Exadata Cloud@Customer
  • Roving Edge
  • Dedicated Regions
  • Oracle Cloud VMware Solution

Governance and Administration

  • Pricing
  • Cost Management
  • Tagging

SLA and Support

  • Service Level Agreement (SLA)
  • Support

References

🔗 Backlinks