Skip to main content

Subnets

 


A few days ago, in the previous post, we saw how to create a VCN. Today we are going to see how to create a subnet.

A subnet is nothing more or less than a division of the VCN. A subnet can be contained in a single AD or be common to the entire region (recommended option).

To deploy a DB or a compute instance, it is necessary to have previously created a subnet, to place it there and to take an IP within its range. It is also important to note that within the same VCN, the IP ranges of the subnets cannot overlap.

A subnet can be public if you want to present the resources to the Internet or private if you do not. To access these resources, resources such as bastions, VPNs or Fastconnect must be used. In later posts we will go into more detail about all of these pieces in more detail.

As usual, we are going to look at different ways of creating a VCN in OCI:

  • Manually from OCI Console

Access a previously created VCN, in which we want to deploy the subnet.

In the subnet section, click on the "Create subnet" button.


Fill the required information:



  • With Terraform code
Use Infrastructure as Code to deploy it:

resource "oci_core_subnet" "test_subnet" {
    #Required
    cidr_block = var.subnet_cidr_block
    compartment_id = var.compartment_id
    vcn_id = oci_core_vcn.test_vcn.id

    #Optional
    availability_domain = var.subnet_availability_domain
    defined_tags = {"Operations.CostCenter"= "42"}
    dhcp_options_id = oci_core_dhcp_options.test_dhcp_options.id
    display_name = var.subnet_display_name
    dns_label = var.subnet_dns_label
    freeform_tags = {"Department"= "Finance"}
    ipv6cidr_block = var.subnet_ipv6cidr_block
    ipv6cidr_blocks = var.subnet_ipv6cidr_blocks
    prohibit_internet_ingress = var.subnet_prohibit_internet_ingress
    prohibit_public_ip_on_vnic = var.subnet_prohibit_public_ip_on_vnic
    route_table_id = oci_core_route_table.test_route_table.id
    security_list_ids = var.subnet_security_list_ids
}

Code obtained from the official Terraform documentation:

  • OCICLI
It is also to use the OCI API to create resources:

oci network subnet create --cidr-block [text] -c [text] --vcn-id [text]


To see all available options:



Popular posts from this blog

Infrastructure as Code

In some of the previous posts we have seen how to deploy some resources with Terraform. Terraform is an Infrastructure-as-Code (IaC) tool that allows to manage, version and maintain your infrastructure programmatically in OCI. But... What is Infrastructure as Code?   So, let's start with the concept of Infrastructure as Code (IaC). Infrastructure as Code, abbreviated as IaC, allows us to manage and provision infrastructure through code, rather than manual processes . This approach offers numerous advantages:   The first advantage is deployment automation . You won't need to manually prepare or manage operating systems, servers, storage, or any other components. Everything becomes automated.   Another benefit is the speed of implementation and deployment due to this automation.   It also reduces the risk of errors by utilizing templates for deployments and eliminating manual processes.   Lastly, using IaC ensures consistent environment crea...
Read more

Compartments in OCI

Hi and welcome to my blog. My intention with this blog is to explain in a simple and intuitive way how to work with OCI. And to begin with, let's start with one of the key elements of OCI, the compartment. Compartments are logical divisions used to organize the resources in OCI. To draw an analogy, you can think of them like folders in Windows or directories in Linux. Essentially, each element in your environment will be stored in a compartment, and you'll need to access that compartment in the OCI console to locate those elements. Following you can see the main characteristics of the compartments: For all of these reasons, compartments are a powerful feature to ensure security isolation and acccess control in your environment. It is also important to know that child compartments inherit their parents policies. To access to the compartment view in OCI, just navigate to Identity & Security / Compartments, and you will see all the compartments deployed in your environment. A ...
Read more