Oracle Cloud Service Gateway provides a customer’s on-premises network with private access to Oracle Cloud services. Once connected to your VCN, Service Gateway allows secure, private connectivity to Oracle Cloud services like compute instances, cloud storage, containers, and databases.
Available at no charge, Oracle Service Gateway provides secure, private access to Oracle Cloud from a customer’s virtual cloud network (VCN), enabling access to 50+ Oracle Cloud services without exposing network traffic to the public internet. On-premises hosts use their private IP addresses and traffic is routed to Oracle Cloud via virtual private network (VPN) or FastConnect.
Just like within a traditional data center network, customer’s use the VCN and Service Gateway to create isolated subnets, route tables, and stateful firewalls aligned to Service Gateway endpoints. As a result, consumer-to-service private connections (C2S) are established without ever having to traverse the public internet.
Customers use the Oracle Cloud Infrastructure (OCI) Console to create a Service Gateway in minutes with as little as five clicks. Additional Service Gateway access methods include the Command Line Interface and OCI API.
The Service Gateway automatically adapts to accommodate new service usage and changes in network topology or IP addresses. Instead of using IP addresses to configure routes and security rules, Service Gateway uses Classless Inter Domain Routing (CaIDR) to route requests and traffic through private network nodes.
Prevent attacks with isolated network virtualization—a foundational element of Oracle Cloud Infrastructure’s security-first architecture. A custom-designed SmartNIC uses software-defined Networking to virtualize network traffic, removing control of the network from the host.
With Oracle Maximum Security Zones, Oracle is the first public cloud provider to activate security policy enforcement of best practices automatically from day one, so customers can prevent misconfiguration errors and deploy workloads securely.
For day-to-day operations, Oracle Cloud Guard continuously monitors configurations and activities to identify threats and automatically acts to remediate them across all Oracle Cloud global regions. Oracle is the only cloud service provider to offer a cloud security posture management dashboard at no additional cost, with numerous pre-built tools that automate response to reduce customer risk quickly and efficiently.
Oracle offers customers four additional gateways to accommodate specific networking requirements:
Use the Service Gateway to connect containers within Oracle Cloud Infrastructure Container Engine for Kubernetes (OKE), Object Storage, and Oracle Autonomous Database for distributed application data sharing.
Customers enable private access to discreet services within Oracle Cloud Infrastructure from their VCN or on-premises network using either a private endpoint or a service gateway. Private endpoints provide access to a single resource within the Oracle service of interest (for example, Oracle Autonomous Database and shared Oracle Exadata infrastructure) while the Service Gateway provides access to 50+ Oracle services. With either private access option, the traffic stays within the Oracle Cloud Infrastructure network and does not traverse the internet.
Oracle Cloud Infrastructure provides a wide selection of flexible and powerful services. The Service Gateway enables private access to multiple Oracle services in the Oracle Services Network, a conceptual network that is reserved for Oracle services and composed of a list of regional CIDR blocks.Read the complete post
Build, test, and deploy applications on Oracle Cloud—for free. Sign up once, get access to two free offers.
Improve performance and security while reducing costs for your performance-intensive and enterprise applications.
Explore cloud training resources with Oracle Cloud Infrastructure training videos, self-paced learning labs, and certifications.
Oracle Cloud Infrastructure combines the elasticity and utility of the public cloud with the control, security, performance, and predictability of on-premises computing environments.