After adding a public subnet in a VCN, to allow VM build executors access to the resources and services (such as a VM-based Database) running in the VCN's private subnet, configure the private subnet's security rules to allow incoming traffic from the public subnet used by VM executors.
- Sign in to Oracle Cloud Console.
- In the upper-left corner, click Navigation Menu
.
- Select Networking and select Virtual cloud networks.
- On the Virtual Cloud Networks page, click the VCN.
- On the VCN details page, click the Security tab.
- Under Security Lists, click the private subnet's security list.
- Click the Security rules tab and then click Add Ingress Rules.
If you want to modify an existing rule, click the Actions icon (three dots), and then select Edit.
- On the Add Ingress Rule page, in Source Type, select CIDR.
- In Source CIDR, enter the VM executor's public subnet's CIDR range.
- In Destination Port Range, enter the service's port
number.
- (Optional) In Description, add a description.
- Click Add Ingress Rules.
- If required, repeat steps 7-12 for each service's port.