Oracle Cloud Infrastructure – Monthly Update July 2022

Use GraalVM Enterprise in DevOps Build Pipelines

DevOps build pipelines enable you to use GraalVM Enterprise to build high-performance Java applications.

In the Managed Build stage, you can install and use GraalVM Enterprise components such as Native Image and Java Development Kit (JDK) by adding a simple YUM package manager command in your build specification file.

GraalVM Enterprise is available on Oracle Cloud Infrastructure (OCI) at no additional cost.

Support for VCN-native pod networking

You can now provide pods with IP addresses from a VCN’s CIDR block using the OCI VCN-Native Pod Networking CNI plugin. The OCI VCN-Native Pod Networking CNI plugin enables other resources within the same subnet (or a different subnet) to communicate directly with pods in a Kubernetes cluster. Pod IP addresses are directly routable from within the VCN, from other VCNs connected (peered) to that VCN, from on-premise networks, and from the internet.

Since pods are directly routable, you can use ‘native’ VCN functionality to:

  • Control access to and from pods using security rules defined as part of network security groups or security lists. The security rules apply to all pods in all the worker nodes connected to the pod subnet specified for a node pool.
  • Observe the traffic to, from, and between pods using VCN flow logs for troubleshooting and compliance auditing purposes.
  • Route incoming requests to pods based on routing policies specified by routing rules and route tables.

For more information, see Using the OCI VCN-Native Pod Networking CNI plugin for pod networking.

MySQL Database Service: Point in Time Restore (PITR)

You can now restore a standalone MySQL DB system to a specific point in time by using the Point in Time Restore (PITR) feature.
With PITR enabled, the MySQL binary log is safely archived outside the DB system hosts, allowing you to achieve a Recovery Point Objective (RPO) of approximately five minutes.
You can enable PITR in new or existing DB systems online without impacting the database operations.
For more information, see Restoring From a DB System.

Cloud Guard adds Log Insight Detector

Cloud Guard has added two new components that allow users to extend Cloud Guard functionality into log objects:

  • Data Sources allow Cloud Guard to define new sources of information that can be used to drive detections. See Setting Up Data Sources.
  • Log Insight Detector uses data source queries against these special data sources, to identify problems against monitored log objects, then surfacing the problems on the Cloud Guard Problems page. See Setting Up Log Insight Detector.

New region in Queretaro, Mexico

The Mexico Central (Queretaro) region is now available. The region identifier is mx-queretaro-1. The region key is QRO. This region has one availability domain. For information about regions, see Regions and Availability Domains. For instructions on how to subscribe to the new region, see Managing Regions.

Advanced BIOS settings for bare metal compute instances

When you create a bare metal compute instance, you can now configure advanced BIOS settings that let you optimize performance and reduce licensing costs. The following options are available:

  • Disable cores
  • Customize NUMA settings
  • Disable simultaneous multithreading
  • Enable or disable access control service
  • Enable or disable virtualization instructions
  • Enable or disable the input-output memory management unit (IOMMU)

For more information, see BIOS Settings for Bare Metal Instances.

Extend the reboot migration deadline for Compute VM instances scheduled for infrastructure maintenance

You can now extend the maintenance due date for Compute VM instances that are scheduled for reboot migration due to planned infrastructure maintenance. For more information, see Extending the Deadline for Reboot Migration.

New features added to Network Visualizer

Network Visualizer now allows you to export topology maps and a PDF with relevant resource information. You can also now see more types of resources, including mount targets and Kubernetes clusters. See the documentation for details.

Introducing Flexible Compute Shapes for Model Deployments

You can now use flexible compute shapes for model deployments. 

For APIs, see CreateModelDeployment, and ModelDeploymentInstanceShapeConfigDetails.
For more information, take a look at Data Science.

Media Flow service is now available

Media Flow is a fully managed service for processing media (video) source content, accessible using the Console, REST APIs, or CLI.

You can configure content processing workflows that can be used to process video source content. The processing includes, transcoding, thumbnail generation, ABR packaging, and integration with OCI AI Services such as Speech (for automatic transcription), Language (for NLP-based analysis of the transcript), and Vision (for object detection and text extraction).

Oracle Database Service for Azure

Oracle Database Service for Azure (ODSA) allows you to easily integrate Oracle Cloud Infrastructure’s Database service into your Azure cloud environment. ODSA uses a service-based approach, and is an alternative to manually creating complex cross-cloud deployments for your application stacks. Use ODSA to deploy Exadata, Oracle Base Database, and Oracle Autonomous Database resources that connect to your Azure account using the Oracle Interconnect for Microsoft Azure, a private tunnel connection between supported OCI and Azure regions.

For more information, see About Oracle Database Service for Azure.

Oracle Critical Patch Update (CPU) July 2022 for Oracle Java SE

Java Management supports the 18.0.2,17.0.4,11.0.16,8u341 releases part of the Oracle Critical Patch Update (CPU) July 2022 for Oracle Java SE.

Stack Monitoring CDB and PDB Support

Stack Monitoring can now discover and monitor Oracle Multitenant Container Databases (CDBs) and Pluggable Databases (PDBs) running on on-premises hosts or on OCI Compute instances.

For more information, see Stack Monitoring (Resource Discovery).

Media Streams is now available

Media Streams is a fully managed service for delivering and streaming of media (video) source content, accessible using the Console, REST APIs, or CLI.

You can deliver digital video packaged in a format such as HTTP Live Streaming (HLS) to viewers. You can ingest pre-packaged HLS packages or can use Media Flow to transcode and package a source video into a format suitable for streaming. Media Streams can be configured to act as the origin service or video distribution through Akamai.

For more information, see Media Streams.

OCI Network Firewall Service is now availabile

Oracle Cloud Infrastructure Network Firewall is a next-generation managed network firewall and intrusion detection and prevention service for your Oracle Cloud Infrastructure virtual cloud network (VCN), powered by Palo Alto Networks®.

Network Firewall features include:

Oracle Cloud Infrastructure Network Firewall provides the following security features:

  • Stateful network filtering: Create stateful network filtering rules that allow or deny network traffic based on source IP (IPv4 and IPv6), destination IP (IPv4 and IPv6), port, and protocol.
  • Custom URL and FQDN filtering : Restrict ingress and egress traffic to a specified list of fully qualified domain names (FQDNs), including wild cards and custom URLs.
  • Intrusion Detection and Prevention (IDPS): Monitor your network for malicious activity. Log information, report, or block the activity.
  • SSL inspection: Decrypt and inspect TLS-encrypted traffic with ESNI support for security vulnerabilities. Encrypted Server Name Indication (ESNI) is a TLSv1.3 extension that encrypts the Server Name Indication (SNI) in the TLS handshake.
  • Inter-VCN traffic inspection: Route traffic between two VCNs through a network firewall.

For more information, see:

AWR Explorer for Operations Insights

You can now use AWR Explorer in Operations Insights to compare database performance data stored in AWR Hub. 

Using AWR Explorer in Operations Insights lets you:

  • View and analyze AWR data across different database systems
  • Easily identify performance trends without needing to toggle between hourly AWR reports
  • Visualize different aspects of Oracle Database performance data which can be helpful in detecting performance issues

CloudShell now offers GraalVM Enterprise JDK 17 and Native Image

Now you can easily use GraalVM Enterprise in Cloud Shell to build and test simple Java applications with Micronaut, Spring, and other microservices frameworks.

For more information, see Using GraalVM Enterprise in OCI Cloud Shell.

TCPS Support for Oracle Cloud Databases

You can now use the TCP/IP with Transport Layer Security (TCPS) protocol when enabling Database Management for Oracle Cloud Databases. For more information, see Enable Database Management for Oracle Cloud Databases

MySQL Database Service Support for MySQL Version 8.0.30

MySQL Database Service now supports MySQL 8.0.30. New MySQL DB systems are based on the latest MySQL Database version. MySQL Server upgrades for existing DB systems, such as from version 8.0.29 to 8.0.30, must be performed manually.

The new minor version includes improvements and bug fixes. For more information, see MySQL 8.0.30 Release Notes.

Exadata Cloud@Customer: Enhanced Control to Rollback or Retry Failed Guest VM Operating System Update

You need not mandatorily roll back if applying the Guest VM operating system update fails. A new option, in addition to the current rollback option, has been added to retry and apply the failed update. If you want to apply a different operating system image update on failure, then you will have to first roll back and then apply.

For more information, see: Using the Console to Rollback or Retry Failed Guest VM Operating System Update

BDS Updates to autoscaling and customer-managed encryption key features

Updates to BDS autoscaling and customer managed encryption key features:

  • Added schedule-based options for horizontal and vertical autoscaling on ODH clusters.
  • Use customer-managed encryption keys for BDS clusters.
  • Update existing clusters to use customer-managed encryption keys.

Exadata Cloud@Customer: Monthly ExaDB-C@C Infrastructure Security Maintenance

Security maintenance, performed alongside the quarterly maintenance, is executed once a month and includes fixes for vulnerabilities with CVSS scores greater than 7.

For more information, see: Overview of Monthly Security Maintenance

Introducing Runtime Configuration for Notebook Sessions

You can now set up your notebook sessions with your often used custom environment variables and Git repos to be ready for use when you open your notebook. See Using a Runtime Configuration.

For more information, see Data Science. Take a look at our Data Science blog.

More information please refer OCI Documentation.

Thank you for visiting this blog.

Disclaimer : The views expressed on this blog are my own and do not reflect the views of the companies I work, The opinions give by visitors on this site are there own opinions.

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.