It’s essential to consider the security implications before allowing direct access to cloud services and resources, particularly as the latter expands. Some individuals get around this problem by setting up a virtual machine within the virtual cloud network and linking it to all the cloud services. This cuts down on publicly accessible services while facilitating connections for developers and system administrators. This virtual machine (VM) is like a manual bastion or leap box.
Create a Bastion
Connect to Oracle’s cloud service. To access the main menu, choose the hamburger icon in the upper left corner.
On the menu select “Identity & Security > Bastion”.
Select the compartment and click the “Create bastion” button.
Enter the bastion name and select the VCN and subnet for the bastion. We need to enter a CIDR block allowlist. In this case I’ve used the subnet for my IP address from my internet service provider. Click the “Create bastion” button.
Click on the “Create session” button.
Our previously copied connection information should look something like this at this point.
The Object Storage service provides reliable, secure, and scalable object storage. Object storage is a storage architecture that stores and manages data as objects. Some typical use cases include data backup, file sharing, and storing unstructured data like logs and sensor-generated data.
Creating a Bucket
Open the navigation menu and click Storage. Under Object Storage, click Buckets.A list of the buckets in the compartment you’re viewing is displayed.
Select a compartment from the Compartment list on the left side of the page.A list of existing buckets is displayed.
Click Create Bucket.
Default Storage Tier: Select the default tier in which you want to store your data
Standard is the primary, default storage tier Use the Standard tier for storing frequently accessed data that requires fast and immediate access.
Archive is the default storage tier used for archive storage, Use the Archive tier for storing rarely accessed data that requires long retention periods. Access to data in the Archive tier is not immediate. Archived data must be restored before the data is accessible.
Object Events: Select Emit Object Events if you want to enable the bucket to emit events for object state changes. For more information about events.
Encryption: Buckets are encrypted with keys managed by Oracle by default, but you can optionally encrypt the data in this bucket using your own Vault encryption key. To use Vault for your encryption needs, select Encrypt Using Customer-Managed Keys
Uploading Files to a Bucket
To upload files to your bucket using the Console:
From the Object Storage Buckets screen, click the bucket name to view its details.
In the Object Name Prefix field, optionally specify a file name prefix for the files that you plan to upload.
If the Storage Tier field displays Standard, you can optionally change the storage tier to upload objects to.