Your allowlist can contain up to 15 rules for File Server and up to 15 rules for HTTPS connections to the Oracle Integration instance. The allowlist restrictions that you create are in addition to the standard authorization mechanisms, such as user credentials, which are always in place.

1. Sign in to the Oracle Cloud Infrastructure Console.
2. Open the navigation menu and click Developer Services. Under Application Integration, click Integration.
3. In the Name column, click the instance to edit.
4. On the Integration Instance Details page, below Resources in the lower left, select Network Access.
5. Below the Network Access header, click Edit.
   One of the following dialogs is displayed:

   • If your organization has enabled File Server but hasn't created its allowlist yet, the Apply HTTP Settings to File Server dialog is displayed.
   • Otherwise, the Network Access dialog is displayed.
6. If the Apply HTTP Settings to File Server dialog is displayed, decide whether to apply your organization's HTTP allowlist rules to File Server. Applying your HTTP rules to File Server can save you some time when setting up your allowlist for File Server. Click Apply to carry the rules over to File Server, or click Ignore to skip this step.
   The Network Access dialog is displayed. If your list is empty, the first blank allowlist rule is added for you.
7. Complete the fields at the top of the dialog:
   • Restrict Network Access: Select this option to be able to add allow list rules and to apply the rules. When this option is selected, only users from networks that meet the configured settings are allowed to access the integration instance. When this option is not selected, there are no allowlist rules and there are no network restrictions to access your instance.

     Caution:

     If you deselect Restrict Network Access after configuring allowlist rules, all configured allowlist rules are deleted.
   • Enable Loopback: Select this option to allow the integration to call itself.
     Note
     
     If you enable loopback, any Oracle Integrationinstance in your region can call your instance.

     Loopback is required for certain calls. You must enable loopback for the following scenarios:

     • To invoke an Oracle Integration API from within an integration. Use a REST connection to call the API.
     • To call your integration from another Oracle Integration instance.

     To call your integration from within your Oracle Integration instance, you can enable loopback, but we recommend using the local invoke instead. If you use the local invoke for this scenario, you don't need to enable loopback. You also don't need a connection when using the local invoke. This setting doesn't apply to File Server.

8. Configure your allowlist rules.
   1. To add a rule, click Add Rule, located below the last rule in the list. You might need to scroll down to see the button.
   2. In the Protocol field, select an option.
      • HTTP: The rule applies to Oracle Integration.
      • File Server: The rule applies to File Server.
      • HTTP and File Server: The rule applies to Oracle Integration and File Server.
   3. In the Type field, select the type of rule to configure.
      • IP Address/CIDR Block: Configure access from an IP address or an IP address range.
      • Virtual Cloud Network: Configure access from a specific virtual cloud network. To display a list of networks in other compartments, click Change Compartment. In addition to a specific virtual cloud network, you can specify an IP address or IP address range within the virtual cloud network.
      • Virtual Cloud Network OCID (Not available for File Server allowlists): Provide access to an Oracle Cloud ID (OCID) of the virtual cloud network. For information about the OCID format see Resource Identifiers.
9. After adding all the desired rules to the allowlist, click Save Changes.
   The work request is submitted and the changes go into effect when the instance status changes to Active. In the instance details, under Integration Instance Information, you'll also notice Network Access: Restricted.