Access OCI Compute Instance in Private Subnet with OCI Cloud Shell

By: Anas Darkal
Topic: Oracle | Posted: Jul 31, 2023 at 10:00 AM EST
Share on:

There are several options for securely accessing Oracle Cloud Infrastructure (OCI) compute instances located in a VCN’s private subnet. The efficient option is OCI’s Bastion service. Another secure and faster option is using Oracle OCI Cloud Shell. In this blog, we will cover the steps to use OCI Cloud Shell.

Prerequisites:

  • An Oracle Cloud free trial or paid account
  • OCI VCN with a private subnet
  • OCI compute instance located in a VCN’s private subnet with API RSA private key

The Oracle Cloud Shell is a web browser-based terminal in the OCI Console that provides access to a Linux shell, with a pre-authenticated OCI Command Line Interface (CLI). It includes a Network Private Access feature. This feature allows you to create an endpoint in the private subnet. This endpoint is governed by the rules in the private subnet’s Security Lists.

Restrictions:

  • This feature is supported only in the tenancy’s home region. However, with Regular Remote Peering connections you can extend the accessibility to other regions

 

Step #1: Launch Cloud Shell and configure the Private Network Access

1. Navigate to “Cloud Shell” under ‘Developer tools’ next to your Home Region.

shell

 

2. In the Cloud Shell menu, “Network: Public” > “Private Network Definition List”

shell2

 

3. Click “ Create Private Network Definition List” in the ” Private Network Definition” screen

shell3

 

4. In the “Create Private Network Definition” screen, provide a name, select VCN and private subnet where OCI compute instances are located, then click “Create

shell4

shell5

Now, OCI Cloud Shell is connected to a private subnet using a newly created private network definition

shell6

 

Step #2: Connect to OCI Compute Instance

1. In the Cloud Shell command line, change the directory to “.ssh”, create a file, and past the contents of compute instance’s API private key

shell7

 

2. SSH to compute instance using compute instance private IP

shell8

 

You are now connected to the Compute Instance in the Private Subnet.

Share on:

More from this Author

Oracle 23c Hybrid Read Only Mode for Pluggable Databases
By: Anas Darkal
Topic: Oracle | Posted: Apr 29, 2024

Oracle 23c: Hybrid Read-Only Mode for Pluggable Databases

Overview: Oracle 23c database introduces a new feature to open Pluggable database in a new mode called hybrid read-only Hybrid read-only mode enables ... Read More

Oracle 23c INTERVAL Data Type Aggregations
By: Anas Darkal
Topic: Oracle | Posted: Feb 19, 2024

MySQL: Updating the Configuration of a MySQL DB System on OCI

Overview: A MySQL configuration is a collection of variables that define the operation of a MySQL DB system. It is analogous to ... Read More

Back to Top