You could perform a validation check to determine if a DB system is properly configured to access the OCI Services Network. The validation check for Identity and Access Management connectivity and Object Storage Service connectivity is described below.

The following topics are covered:

• Validation Check for Identity and Access Management Connectivity
• Validation Check for Object Storage Service (OSS) Connectivity

Validation Check for Identity and Access Management Connectivity

1. SSH to the DB system.
2. Log in as opc user.

3. Run the following command:

   curl https://identity.<region>.oci.oraclecloud.com

   where, the <region> corresponds to the OCI region the DB System is deployed on.

   For more information on the OCI regions, see Regions and Availability Domains.

   For example, if the DB System is deployed in the Ashburn region you need to use us-ashburn-1 for <region>, the curl command will be:

   curl https://identity.us-ashburn-1.oci.oraclecloud.com

4. If your Virtual Cloud Network (VCN) is properly configured for accessing the OCI Services Network, you will get an immediate response as given below.

   {
       "code" : "NotAuthorizedOrNotFound",
       "message" : "Authorization failed or requested resource not found."
   }

5. The SSH session will hang and will eventually timeout if your network is not configured for accessing the OCI Services.
6. Depending on your VCN setup, you will need to follow the steps outlined in the action section below to configure access to the OCI Services Network.

Validation Check for Object Storage Service (OSS) Connectivity

1. SSH to the DB system.
2. Log in as opc user.

3. Run the following command:

   curl https://objectstorage.<region>.oraclecloud.com

   where, the <region> corresponds to the OCI region the DB System is deployed on.

   For example, if the DB System is deployed in the Ashburn region you need to use us-ashburn-1 for <region>, the curl command will be:

   curl https://objectstorage.us-ashburn-1.oraclecloud.com

4. If your VCNis properly configured for accessing the OCI Services Network, you will get an immediate response as given below.

   {
       "code" : "NotAuthorizedOrNotFound",
       "message" : "Authorization failed or requested resource not found."
   }

5. The SSH session will hang and will eventually timeout if your network is not configured for accessing the OCI Services.
6. Depending on your VCN setup, you will need to follow the steps outlined in the action section below to configure access to the OCI Services Network.

Perform the following instructions to resolve network connectivity failures.

The following topics are covered:

• DB Systems Deployed On a Private Subnet
• DB Systems Deployed On a Public Subnet

DB Systems Deployed On a Private Subnet

Perform the following step if you have deployed your DB system on a private subnet.

1. Configure a Service Gateway for use by the DB System to reach the OCI Service Network. For detailed steps, see VCN and Subnets.

After you configure your VCN to reach the OCI Services Network, perform the validation check to ensure that you have established connectivity to the OCI Services Network from your DB System.

DB Systems Deployed On a Public Subnet

Perform the following step if you have deployed your DB system on a public subnet.

1. Configure a Internet Gateway for use by the DB System to reach the OCI Service Network. For detailed steps, see VCN and Subnets

After you configure your VCN to reach the OCI Services Network, perform the validation check to ensure that you have established connectivity to the OCI Services Network from your DB System.

For more information on managing a service gateway, see Managing a Service Gateway in the Console.

If you are unable to resolve failures, open a Support Request with My Oracle Support. Contact Oracle Support.