oci_adm_knowledge_baseoci_adm_vulnerability_auditoci_ai_anomaly_detection_ai_private_endpointoci_ai_anomaly_detection_data_assetoci_ai_anomaly_detection_modeloci_ai_anomaly_detection_projectoci_analytics_instanceoci_apigateway_apioci_application_migration_migrationoci_application_migration_sourceoci_artifacts_container_imageoci_artifacts_container_image_signatureoci_artifacts_container_repositoryoci_artifacts_generic_artifactoci_artifacts_repositoryoci_autoscaling_auto_scaling_configurationoci_autoscaling_auto_scaling_policyoci_bastion_bastionoci_bastion_sessionoci_bds_bds_instanceoci_budget_alert_ruleoci_budget_budgetoci_certificates_authority_bundleoci_certificates_management_associationoci_certificates_management_ca_bundleoci_certificates_management_certificateoci_certificates_management_certificate_authorityoci_certificates_management_certificate_authority_versionoci_certificates_management_certificate_versionoci_cloud_guard_configurationoci_cloud_guard_detector_recipeoci_cloud_guard_managed_listoci_cloud_guard_responder_recipeoci_cloud_guard_targetoci_container_instances_containeroci_container_instances_container_instanceoci_containerengine_clusteroci_core_block_volume_replicaoci_core_boot_volumeoci_core_boot_volume_attachmentoci_core_boot_volume_backupoci_core_boot_volume_metric_read_opsoci_core_boot_volume_metric_read_ops_dailyoci_core_boot_volume_metric_read_ops_hourlyoci_core_boot_volume_metric_write_opsoci_core_boot_volume_metric_write_ops_dailyoci_core_boot_volume_metric_write_ops_hourlyoci_core_boot_volume_replicaoci_core_cluster_networkoci_core_dhcp_optionsoci_core_drgoci_core_imageoci_core_image_customoci_core_instanceoci_core_instance_configurationoci_core_instance_metric_cpu_utilizationoci_core_instance_metric_cpu_utilization_dailyoci_core_instance_metric_cpu_utilization_hourlyoci_core_internet_gatewayoci_core_load_balanceroci_core_local_peering_gatewayoci_core_nat_gatewayoci_core_network_load_balanceroci_core_network_security_groupoci_core_public_ipoci_core_public_ip_pooloci_core_route_tableoci_core_security_listoci_core_service_gatewayoci_core_subnetoci_core_vcnoci_core_vnic_attachmentoci_core_volumeoci_core_volume_attachmentoci_core_volume_backupoci_core_volume_backup_policyoci_core_volume_default_backup_policyoci_core_volume_groupoci_database_autonomous_databaseoci_database_autonomous_db_metric_cpu_utilizationoci_database_autonomous_db_metric_cpu_utilization_dailyoci_database_autonomous_db_metric_cpu_utilization_hourlyoci_database_autonomous_db_metric_storage_utilizationoci_database_autonomous_db_metric_storage_utilization_dailyoci_database_autonomous_db_metric_storage_utilization_hourlyoci_database_cloud_vm_clusteroci_database_dboci_database_db_homeoci_database_db_systemoci_database_pluggable_databaseoci_database_software_imageoci_devops_projectoci_devops_repositoryoci_dns_rrsetoci_dns_tsig_keyoci_dns_zoneoci_events_ruleoci_file_storage_file_systemoci_file_storage_mount_targetoci_file_storage_snapshotoci_functions_applicationoci_functions_functionoci_identity_api_keyoci_identity_auth_tokenoci_identity_authentication_policyoci_identity_availability_domainoci_identity_compartmentoci_identity_customer_secret_keyoci_identity_db_credentialoci_identity_domainoci_identity_dynamic_groupoci_identity_groupoci_identity_network_sourceoci_identity_policyoci_identity_tag_defaultoci_identity_tag_namespaceoci_identity_tenancyoci_identity_useroci_kms_keyoci_kms_key_versionoci_kms_vaultoci_logging_logoci_logging_log_groupoci_logging_searchoci_mysql_backupoci_mysql_channeloci_mysql_configurationoci_mysql_configuration_customoci_mysql_db_systemoci_mysql_db_system_metric_connectionsoci_mysql_db_system_metric_connections_dailyoci_mysql_db_system_metric_connections_hourlyoci_mysql_db_system_metric_cpu_utilizationoci_mysql_db_system_metric_cpu_utilization_dailyoci_mysql_db_system_metric_cpu_utilization_hourlyoci_mysql_db_system_metric_memory_utilizationoci_mysql_db_system_metric_memory_utilization_dailyoci_mysql_heat_wave_clusteroci_network_firewall_firewalloci_network_firewall_policyoci_nosql_tableoci_nosql_table_metric_read_throttle_countoci_nosql_table_metric_read_throttle_count_dailyoci_nosql_table_metric_read_throttle_count_hourlyoci_nosql_table_metric_storage_utilizationoci_nosql_table_metric_storage_utilization_dailyoci_nosql_table_metric_storage_utilization_hourlyoci_nosql_table_metric_write_throttle_countoci_nosql_table_metric_write_throttle_count_dailyoci_nosql_table_metric_write_throttle_count_hourlyoci_objectstorage_bucketoci_objectstorage_objectoci_ons_notification_topicoci_ons_subscriptionoci_queue_queueoci_regionoci_resource_searchoci_resourcemanager_stackoci_streaming_streamoci_vault_secret
Table: oci_core_subnet - Query OCI Core Subnets using SQL
A Subnet in OCI Core is a subdivision within a VCN (Virtual Cloud Network). It consists of a contiguous range of IP addresses that do not overlap with other subnets in the VCN. You can launch instances, databases, and other resources in a subnet.
Table Usage Guide
The oci_core_subnet table provides insights into subnets within Oracle Cloud Infrastructure's Core Services. As a network administrator, explore subnet-specific details through this table, including associated security lists, route tables, and the availability domain in which the subnet is located. Utilize it to uncover information about subnets, such as those with public IP addresses, the CIDR blocks they cover, and the route tables they use.
Examples
Basic info
Explore which subnets are currently active in your Oracle Cloud Infrastructure, along with their creation times and any associated tags. This can help manage resources and track their usage over time.
select display_name, id, lifecycle_state, time_created, tagsfrom oci_core_subnet;select display_name, id, lifecycle_state, time_created, tagsfrom oci_core_subnet;Get the OCIDs of the security list for each subnet
Determine the unique identifiers of security lists associated with each network subnet. This can be useful to assess the security configuration and understand how it is applied across different network segments.
select display_name, id, jsonb_array_elements_text(security_list_ids) as security_list_idfrom oci_core_subnet;select display_name, id, json_each.value as security_list_idfrom oci_core_subnet, json_each(security_list_ids);Count of subnets by VCN ID
Analyze the settings to understand the distribution of subnets across different Virtual Cloud Networks (VCNs). This is useful for managing resources and load balancing across multiple VCNs.
select vcn_id, count(id) as subnet_countfrom oci_core_subnetgroup by vcn_id;select vcn_id, count(id) as subnet_countfrom oci_core_subnetgroup by vcn_id;Get the number of available IP address in each subnet
Explore which subnets have the most available IP addresses to optimize network resource allocation and ensure efficient use of your network space. This is particularly useful in planning network expansion or monitoring network usage.
select id, cidr_block, power(2, 32 - masklen(cidr_block :: cidr)) -1 as raw_sizefrom oci_core_subnet;Error: SQLite does not support CIDR operations.Query examples
- compute_instances_for_vcn_vcn
- identity_availability_domains_for_vcn_subnet
- identity_availability_domains_for_vcn_vcn
- oci_vcn_no_subnet_count
- oci_vcn_subnet_by_compartment
- oci_vcn_subnet_by_region
- oci_vcn_subnet_by_tenancy
- oci_vcn_subnet_by_vcn
- oci_vcn_subnet_count
- regional_identity_availability_domains_for_vcn_subnet
- regional_identity_availability_domains_for_vcn_vcn
- vcn_attached_subnet_count
- vcn_dhcp_options_for_vcn_subnet
- vcn_gateway_sankey
- vcn_load_balancers_for_vcn_vcn
- vcn_network_load_balancers_for_vcn_vcn
- vcn_nsl_egress_rule_sankey
- vcn_nsl_ingress_rule_sankey
- vcn_route_tables_for_vcn_subnet
- vcn_security_lists_for_vcn_subnet
- vcn_subnet
- vcn_subnet_cidr_block
- vcn_subnet_input
- vcn_subnet_overview
- vcn_subnet_tag
- vcn_subnets_for_vcn_security_list
- vcn_subnets_for_vcn_vcn
- vcn_vcns_for_compute_instance
- vcn_vcns_for_database_autonomous_database
- vcn_vcns_for_mysql_db_system
- vcn_vcns_for_vcn_subnet
Control examples
Schema for oci_core_subnet
| Name | Type | Operators | Description |
|---|---|---|---|
| _ctx | jsonb | Steampipe context in JSON form, e.g. connection_name. | |
| availability_domain | text | The subnet's availability domain. | |
| cidr_block | cidr | The subnet's CIDR block. | |
| compartment_id | text | = | The OCID of the compartment in Tenant in which the resource is located. |
| defined_tags | jsonb | Defined tags for resource. Defined tags are set up in your tenancy by an administrator. Only users granted permission to work with the defined tags can apply them to resources. | |
| dhcp_options_id | text | The OCID of the set of DHCP options that the subnet uses. | |
| display_name | text | = | A user-friendly name. Does not have to be unique, and it's changeable. |
| dns_label | text | A DNS label for the subnet, used in conjunction with the VNIC's hostname and VCN's DNS label to form a fully qualified domain name (FQDN) for each VNIC within this subnet. | |
| freeform_tags | jsonb | Free-form tags for resource. This tags can be applied by any user with permissions on the resource. | |
| id | text | = | The subnet's Oracle ID (OCID). |
| ipv6_cidr_block | cidr | For an IPv6-enabled subnet, this is the IPv6 CIDR block for the subnet's private IP address space. | |
| ipv6_public_cidr_block | cidr | For an IPv6-enabled subnet, this is the IPv6 CIDR block for the subnet's public IP address space. | |
| ipv6_virtual_router_ip | inet | For an IPv6-enabled subnet, this is the IPv6 address of the virtual router. | |
| lifecycle_state | text | = | The subnet's current state. |
| prohibit_public_ip_on_vnic | boolean | Indicates whether VNICs within this subnet can have public IP addresses. | |
| region | text | The OCI region in which the resource is located. | |
| route_table_id | text | The OCID of the route table that the subnet uses. | |
| security_list_ids | jsonb | The OCIDs of the security list or lists that the subnet uses. | |
| subnet_domain_name | text | The subnet's domain name, which consists of the subnet's DNS label, the VCN's DNS label, and the `oraclevcn.com` domain. | |
| tags | jsonb | A map of tags for the resource. | |
| tenant_id | text | The OCID of the Tenant in which the resource is located. | |
| tenant_name | text | The name of the Tenant in which the resource is located. | |
| time_created | timestamp with time zone | The date and time the subnet was created. | |
| title | text | Title of the resource. | |
| vcn_id | text | = | The OCID of the VCN the subnet is in. |
| virtual_router_ip | inet | The IP address of the virtual router. | |
| virtual_router_mac | text | The MAC address of the virtual router. |
Export
This table is available as a standalone Exporter CLI. Steampipe exporters are stand-alone binaries that allow you to extract data using Steampipe plugins without a database.
You can download the tarball for your platform from the Releases page, but it is simplest to install them with the steampipe_export_installer.sh script:
/bin/sh -c "$(curl -fsSL https://steampipe.io/install/export.sh)" -- ociYou can pass the configuration to the command with the --config argument:
steampipe_export_oci --config '<your_config>' oci_core_subnet