Oracle Container Engine for Kubernetes now supports service gateways. Setting up a service gateway enables worker nodes to access other resources in the same region without exposing data to the public internet. Furthermore, worker nodes no longer require an outbound connection to the public internet.

For example, you can set up a service gateway if you expect applications deployed on a cluster to pull images from Oracle Cloud Infrastructure Registry (or to use other Oracle Cloud Infrastructure resources) and you don't want the data to traverse the public internet.

Note that if you expect deployed applications to require access to public endpoints or services not supported by a service gateway (for example, to download updates or patches), configure additional network resources (such as a NAT gateway) to access the internet.

For more information, see Service Gateway Configuration.