Glossary

A

AD-specific subnet

A subnet that is specific to a particular availability domain (AD). Historically all subnets were AD-specific. Compare with regional subnets, which Oracle recommends over AD-specific subnets.

alarm

The trigger rule and query to evaluate and related configuration, such as notification details to use when the trigger is breached. Alarms passively monitor your cloud resources using metrics in Monitoring.

API key

A credential for securing requests to the Oracle Cloud Infrastructure REST API.

application

(Application Migration) A combination of the artifacts and configuration deployed on one or more service instances running in the source environment. (Data Integration) A container for published Data Integration tasks to test or roll out to production.

attach

Link a volume and instance together. Allows an instance to connect and mount the volume as a hard drive.

Attribute

An attribute describes a data item with a name and data type. For example, a column in a table or a field in a file.

auth token

Oracle Cloud Infrastructure-generated token you use to authenticate with third-party APIs, such as a Swift client.

availability domain

One or more isolated, fault-tolerant Oracle data centers that host cloud resources such as instances, volumes, and subnets. A region contains one or more availability domains.

B

backend set

A logical entity defined by a list of backend servers, a load balancing policy, and a health check policy.

bare metal IaaS

A cloud infrastructure that allows you to utilize hosted physical hardware, as opposed to traditional software-based virtual machines, ensuring a high level of security and performance.

block storage volume

A virtual disk that provides persistent storage space for instances in the cloud.

bucket

A logical container for storing objects.

C

Category

A category is created in a glossary to group logically related business terms. You can create a category within a category to group your terms.

CHAP

Stands for Challenge-Handshake-Authentication-Protocol. It is a security protocol used by iSCSI for authentication between a volume and an instance.

Cloud Block Storage

A service that allows you to add block storage volumes to an instance in order to expand the available storage on that resource.

cloud network

A virtual version of a traditional network—including CIDRs, subnets, route tables, and gateways—on which your instance runs.

cluster network

A pool of high performance computing (HPC) instances that are connected with a high-bandwidth, ultra low-latency network.

compartment

A collection of related resources that can be accessed only by certain groups that have been given permission by an administrator in your organization.

Compute

A service that lets you provision and manage compute hosts, known as instances.

connect

Make an attached volume usable by an instance's guest OS.

CPE

The router at the edge of your on-premises network. The Networking service also has an object called a CPE, which is a virtual representation of your edge router. You create that object when setting up VPN Connect (an IPSec VPN) between Oracle and your on-premises network.

CPE Configuration Helper

A feature of the Oracle Console that generates information that a network engineer can use to configure the customer-premises equipment (CPE) at their end of a VPN connection.

cross-connect

Used with Oracle Cloud Infrastructure FastConnect, specifically if you're using a third-party provider or colocated with Oracle in a FastConnect location. A cross-connect is the physical cable connecting your existing network to Oracle in the FastConnect location.

cross-connect group

Used with Oracle Cloud Infrastructure FastConnect, specifically if you're using a third-party provider or colocated with Oracle in a FastConnect location. A cross-connect group is a link aggregation group (LAG) that contains at least one cross-connect.

customer-premises equipment

The router at the edge of your on-premises network. The Networking service also has an object called a CPE, which is a virtual representation of your edge router. You create that object when setting up VPN Connect (an IPSec VPN) between Oracle and your on-premises network.

D

Data Asset

(Data Catalog and Data Integration) Represents a data source, such as a database, an object store, a file or document store, a message queue, or an application.

Data Catalog Tags

Tags are free-form labels or keywords you create to be able to logically identify data objects. Tags help in metadata classification and discovery. You create tags for data assets, data entities, and attributes. Using tags, you can search for all data objects tagged with a specific tag name.

Data Entity

(Data Catalog and Data Integration) A data entity is a collection of data such as a database table or view, or a single logical file and normally has many attributes that describe its data.

data point

(Monitoring service) A timestamp-value pair for the specified metric. Example: 2018-05-10T22:19:00Z, 10.4

DB System

A dedicated bare metal instance running Oracle Linux, optimized for running one or more Oracle databases. A DB System is a Database Service resource.

DHCP options

Configuration information that is automatically provided to the instances when they boot up.

dimension

(Monitoring service) A qualifier provided in a metric definition. Example: Resource identifier (resourceId), provided in the definitions of oci_computeagent metrics.

display name

A friendly name or description that helps you easily identify the resource.

DRG

An optional virtual router that you can add to your VCN to provide a path for private network traffic between your VCN and on-premises network.

DRG attachment

When you attach a dynamic routing gateway (DRG) to a virtual cloud network (VCN), the result is a DRG attachment object. To detach the DRG, you delete that attachment object.

drift

(Resource Manager) Difference between the actual, real-world state of your infrastructure and the stack's last executed configuration.

dynamic group

A special type of IAM group that contains instances that match rules that you define (thus the membership can change dynamically as matching instances are terminated or launched). These instances act as "principal" actors and can make API calls to Oracle Cloud Infrastructure services according to IAM policies that you write for the dynamic group.

dynamic routing gateway

An optional virtual router that you can add to your VCN to provide a path for private network traffic between your VCN and on-premises network.

E

ephemeral public IP

A public IP address (and related properties) that is temporary and exists for the life of the instance it's assigned to. It can be assigned only to the primary private IP on a VNIC. Compare with reserved public IP.

Export

Controls how file systems are accessed by NFS clients when they connect to a mount target.

Export Options

A set of parameters that specify the level of access granted to NFS clients when they connect to a mount target.

F

FastConnect

FastConnect provides an easy way to create a dedicated, private connection between your data center or existing network and Oracle Cloud Infrastructure. FastConnect provides higher-bandwidth options, and a more reliable and consistent networking experience compared to internet-based connections.

FastConnect location

A specific data center where you can connect to Oracle Cloud Infrastructure by using FastConnect.

fault domain

A logical grouping of hardware and infrastructure within an availability domain to provide isolation of resources in case of hardware failure or unexpected software changes.

File System

An organized system of directories and folders where data is stored.

frequency

(Monitoring service) The time period between each posted raw data point for a given metric. (Raw data points are posted by the metric namespace to the Monitoring service.)

G

Glossary

A glossary is a collection of business concepts in your company. Glossary constitutes of categories and business terms.

group

A collection of users who all need a particular type of access to a set of resources or compartment.

guest operating system

An operating system installed on a cloud instance.

guest OS

An operating system installed on a cloud instance.

H

Harvest

Process that extracts technical metadata from your connected data sources into your Data Catalog repository.

health check

A test to confirm the availability of backend servers.

I

IaaS

A service that allows customers to rapidly scale up or down their computer infrastructure (computing, storage, or network).

IAM

The service for controlling authentication and authorization of users who need to use your cloud resources. Also called "IAM".

Identity and Access Management Service

The service for controlling authentication and authorization of users who need to use your cloud resources. Also called "IAM".

identity provider

A service that provides identifying credentials and authentication for federated users.

IdP

Short for "identity provider", which is a service that provides identifying credentials and authentication for federated users.

image

A template of a virtual hard drive that determines the operating system and other software for an instance.

incarnation

A separate version of a database. The incarnation of the database changes when you open it with the RESETLOGS option, but you can recover backups from a prior incarnation so long as the necessary redo is available.

Infrastructure-as-a-Service

A service that allows customers to rapidly scale up or down their computer infrastructure (computing, storage, or network).

instance

A bare metal or virtual machine (VM) compute host. The image used to launch the instance determines its operating system and other software. The shape specified during the launch process determines the number of CPUs and memory allocated to the instance.

instance wallet

An Autonomous Database instance wallet contains only credentials and keys for a single database instance.

internet gateway

An optional virtual router that you can add to your VCN. It provides a path for network traffic between your VCN and the internet.

interval

(Monitoring service) The time window used to convert the given set of raw data points. Example: 5 minutes

IPSec connection

The secure connection between a dynamic routing gateway (DRG) and customer-premises equipment (CPE), consisting of multiple IPSec tunnels. The IPSec connection is one of the components forming a site-to-site VPN between a virtual cloud network (VCN) and your on-premises network.

IPv6

An object that contains an IPv6 address and related properties. Currently IPv6 addressing is supported only in the US Government Cloud. Only instances in IPv6-enabled VCNs and IPv6-enabled subnets can have IPv6 addresses.

IQN

A unique ID assigned to an iSCSI device. Used when connecting a volume to an instance.

iSCSI

A TCP/IP based standard used for communication between a volume and attached instance.

iSCSI Qualified Name

A unique ID assigned to an iSCSI device. Used when connecting a volume to an instance.

K

key pair

A security mechanism consisting of a public key and a private key. Required (for example) for Secure Shell (SSH) access to an instance.

L

listener

An entity that checks for incoming traffic on the load balancer's public floating IP address.

local peering gateway

A component on a VCN for routing traffic to a locally peered VCN. "Local" peering means the two VCNs are in the same region. Compare with a remote peering connection.

local VCN peering

The process of connecting two VCNs in the same region so that their resources can communicate without routing the traffic over the internet or through your on-premises network.

LPG

A component on a VCN for routing traffic to a locally peered VCN. "Local" peering means the two VCNs are in the same region. Compare with a remote peering connection.

M

message

(Notifications and Monitoring services) An alert published to all subscriptions in the specified topic. Each message is delivered at least once per subscription.

metric

(Monitoring service) A measurement related to health, capacity, or performance of a given resource. Example: CpuUtilization

metric definition

(Monitoring service) A set of references, qualifiers, and other information provided by a metric namespace for a given metric.

metric namespace

(Monitoring service) Indicator of the resource, service, or application that emits the metric. Provided in the metric definition. Example: oci_computeagent

metric stream

(Monitoring service) An individual set of aggregated data for a metric. Typically specific to a resource.

migration

(Application Migration) The end-to-end workflow of moving an application from a source environment to Oracle Cloud Infrastructure.

Monitoring Query Language

(Monitoring service) The syntax used for metric and alarm queries.

Mount Point

A directory from which a client may access a remote File Storage Service file system.

Mount Target

An NFS endpoint that allows a file system to be accessed by clients.

MQL

(Monitoring service) Monitoring Query Language. The syntax used for metric and alarm queries. In the Console, MQL syntax of queries is displayed in Advanced Mode.

N

NAT gateway

An optional virtual router that you can add to your VCN to perform Network Address Translation (NAT). A NAT gateway gives cloud resources without public IP addresses access to the internet without exposing those resources to incoming internet connections.

network security group

One method for implementing security rules in a VCN. A network security group consists of a set of resources (VNICs or resources with VNICs) and security rules that apply to those resources. See also security rules and security lists.

network source

A group of IP addresses that can be used in policy to restrict access.

notification destination

(Monitoring service) Protocol and other details for sending messages when the alarm transitions to another state, such as from "OK" to "FIRING."

NSG

One method for implementing security rules in a VCN. A network security group consists of a set of resources (VNICs or resources with VNICs) and security rules that apply to those resources. See also security rules and security lists.

O

object

Any type of data, regardless of content type, is stored as an object. The object is composed of the object itself and metadata about the object. Each object is stored in a bucket.

OCID

An Oracle-assigned unique ID called an Oracle Cloud Identifier (OCID). This ID is included as part of the resource's information in both the Console and API.

one-time password

A single-use Console password that Oracle assigns to a new user, or to an existing user who requested a password reset.

Oracle Cloud Identifier

An Oracle-assigned unique ID called an Oracle Cloud Identifier (OCID). This ID is included as part of the resource's information in both the Console and API.

OTP

A single-use Console password that Oracle assigns to a new user, or to an existing user who requested a password reset.

P

policy

An IAM document that specifies who has what type of access to your resources. It is used in different ways: to mean an individual statement written in the policy language; to mean a collection of statements in a single, named "policy" document (which has an Oracle Cloud ID (OCID) assigned to it); and to mean the overall body of policies your organization uses to control access to resources.

policy statement

Policies can contain one or more individual statements. Each statement gives a group a certain type of access to certain resources in a particular compartment.

primary IP

The private IP that is automatically created and assigned to a VNIC during creation.

primary VNIC

The VNIC that is automatically created and attached to an instance during launch.

private IP

An object that contains a private IPv4 address and related properties such as a hostname for DNS. Each instance automatically comes with a primary private IP, and you can add secondary ones.

private peering

One of the ways to use FastConnect. Private peering lets you extend your existing infrastructure into a virtual cloud network (VCN) in Oracle Cloud Infrastructure (for example, to implement a hybrid cloud, or a lift and shift scenario). Communication across the connection is with IPv4 private addresses (typically RFC 1918).

private subnet

A subnet in which instances are not allowed to have public IP addresses

private virtual circuit

A FastConnect virtual circuit that supports private peering.

public IP

An object that contains a public IP address and related properties. You control whether each private IP on an instance has an assigned public IP. There are two types: reserved public IPs and ephemeral public IPs.

public peering

One of the way to use FastConnect. Public peering lets your on-premises network access public services in Oracle Cloud Infrastructure without using the internet. For example, Object Storage, the Oracle Cloud Infrastructure Console and APIs, or public load balancers in your VCN. Communication across the connection is with IPv4 public IP addresses. Without FastConnect, the traffic destined for public IP addresses would be routed over the internet. With FastConnect, that traffic goes over your private physical connection.

public subnet

A subnet in which instances are allowed to have public IP addresses. When you launch an instance in a public subnet, you specify whether the instance should have a public IP address.

public virtual circuit

A FastConnect virtual circuit that supports public peering.

Q

query

(Monitoring service) The expression to evaluate for returning aggregated data. A valid query includes a metric, statistic, and interval. In the Console, you can view a query in Basic Mode or Advanced Mode. The latter displays the Monitoring Query Language (MQL) syntax.

R

realm

A logical collection of regions. Realms are isolated from each other and do not share any data. Your tenancy exists in a single realm and can access the regions that belong to that realm.

region

A collection of availability domains located in a single geographic location.

regional subnet

A subnet that spans all availability domains (ADs) in the region. Oracle recommends using regional subnets because they are more flexible and make it easier to implement failover across ADs. Compare with AD-specific subnets.

regional wallet

An Autonomous Database regional wallet contains credentials and keys for all Autonomous Databases in a specified region.

remote peering connection

A component on a dynamic routing gateway (DRG) for routing traffic to a remotely peered VCN. "Remote" peering means the two VCNs are in different regions. Compare with a local peering gateway.

remote VCN peering

The process of connecting two VCNs in different regions so that their resources can communicate without routing their traffic over the internet or through your on-premises network.

reserved public IP

A public IP address (and related properties) that you create in your tenancy and assign to your instances in a given region as you like. It persists in your tenancy until you delete it. It can be assigned to any private IP on a given VNIC, not just the primary private IP. Compare with ephemeral private IP.

resolution

(Monitoring service) The period between time windows, or the regularity at which time windows shift. Example: 1 minute

resource

The cloud objects that your company's employees create and use when interacting with Oracle Cloud Infrastructure.

route table

Virtual route table for your VCN that provides mapping for the traffic from subnets via gateways to external destinations.

RPC

A component on a dynamic routing gateway (DRG) for routing traffic to a remotely peered VCN. "Remote" peering means the two VCNs are in different regions. Compare with a local peering gateway.

S

secondary IP address

An additional private IP you've added to a VNIC on an instance. Each VNIC automatically comes with a primary private IP that cannot be removed.

secondary VNIC

An additional VNIC you've added to an instance. Each instance automatically comes with a primary VNIC that cannot be removed.

security list

One method for implementing security rules in a VCN. A security list consists of security rules that apply to all resources in any subnet that uses the security list. See also security rules and network security groups.

security rule

Virtual firewall rules for your VCN. Each security rule specifies a type of ingress or egress traffic allowed in or out of a resource or VNIC. Also see network security groups and security lists.

service gateway

An optional virtual router that you can add to your VCN. The gateway enables on-premises hosts or VCN hosts to privately access Oracle services (such as Object Storage and Autonomous Database) without exposing the resources to the public internet.

shape

A template that determines the number of CPUs, amount of memory, and other resources that are allocated to an instance.

source

(Application Migration) The environment from which the application is being migrated.

statement

Policies can contain one or more individual statements. Each statement gives a group a certain type of access to certain resources in a particular compartment.

statistic

The aggregation function applied to the given set of raw data points. Example: SUM

subnet

Subdivision of your VCN used to separate your network into multiple smaller, distinct networks.

subscription

(Notifications service) An endpoint for a topic; typically a URL or email address. Published messages are sent to each subscription for a topic.

suppression

(Monitoring service) A configuration to avoid publishing messages during the specified time range. Useful for suspending alarm notifications during system maintenance.

Swift password

(Deprecated. Use an auth token to authenticate with your Swift client.) Swift is the OpenStack object store service. A Swift password enables you to use an existing Swift client with Oracle Cloud Infrastructure Object Storage.

T

task

A Data Integration resource that specifies a set of actions to perform on data.

task run

A run-time artifact that represents the execution of a Data Integration task.

tenancy

The root compartment that contains all of your organization's compartments and other Oracle Cloud Infrastructure cloud resources.

tenant

The name assigned to a particular company's or organization's overall environment. Users provide their tenant when signing in to the Console.

Term

Terms are the actual definitions of business concepts as agreed upon by different business stakeholders in your company. You use terms to organize your data entities and attributes.

topic

(Notifications service) A communication channel for sending messages to the subscriptions in the topic.

transit routing

A network setup in which your on-premises network uses a connected virtual cloud network (VCN) to reach Oracle resources or services beyond that VCN. You connect the on-premises network to the VCN with a FastConnect private virtual circuit or VPN Connect, and then configure the VCN routing so that traffic transits through the VCN to its destination beyond the VCN. You can use transit routing to access multiple VCNs from your on-premises network over a single FastConnect or VPN Connect. Or you can use it to give your on-premises network private access to Oracle services so that on-premises hosts use their private IP addresses and the traffic does not go over the internet.

trigger rule

(Monitoring service) The condition that must be met for the alarm to be in the firing state. A trigger rule can be based on a threshold or absence of a metric.

U

user

An individual employee or system that needs to manage or use your company's Oracle Cloud Infrastructure resources.

V

VCN

A virtual version of a traditional network—including CIDRs, subnets, route tables, and gateways—on which your instance runs.

virtual circuit

Used with Oracle Cloud Infrastructure FastConnect. An isolated network path that runs over one or more physical network connections to provide a single, logical connection between the edge of your existing network and Oracle Cloud Infrastructure.

virtual cloud network

A virtual version of a traditional network—including CIDRs, subnets, route tables, and gateways—on which your instance runs.

virtual machine

A software-based emulation of a full computer that runs within a physical host computer.

virtual network interface card

A VNIC enables an instance to connect to a VCN and determines how the instance connects with endpoints inside and outside the VCN. Each instance automatically comes with a primary VNIC, and you can add secondary ones. Other types of cloud resources also automatically get a VNIC upon creation (examples: load balancers, DB systems).

VM

A software-based emulation of a full computer that runs within a physical host computer.

VNIC

A VNIC enables an instance to connect to a VCN and determines how the instance connects with endpoints inside and outside the VCN. Each instance automatically comes with a primary VNIC, and you can add secondary ones. Other types of cloud resources also automatically get a VNIC upon creation (examples: load balancers, DB systems).

volume

A detachable block storage device that allows you to dynamically expand the storage capacity of an instance.

W

work request

An object that reports on the current state of an asynchronous service request.

workspace

The container for all Data Integration resources, such as projects, folders, data assets, tasks, data flows, and applications, associated with a data integration solution.