The image shows Bolthouse Farms' users and data center connected to an Oracle Cloud Infrastructure (OCI) production region which is connected to a second, disaster recovery region.

Administrators authenticate to the system through a third-party identity provider, which is integrated with Oracle Cloud Infrastructure Identity and Access Management (IAM) to provide single sign-on (SSO). Users connect using FastConnect or site-to-site VPN. They are then are routed using a dynamic routing gateway (DRG) and authenticated to the system by using a third-party JD Edwards (JDE) single sign-on (SSO) server, which is integrated with on-premises active directory using LDAP. A load balancer handles incoming traffic.

Each region includes a single availability domain. The production region includes 3 virtual cloud networks (VCN) and the DR region includes 1 VCN. All subnets within the VCNs provide a security list and route table.

Bolthouse Farms' primary production environment runs in the Oracle Cloud region in US-Phoenix and its disaster recovery (DR) environment runs in the US-Ashburn region. It includes a single availability domain, two fault domains, and 3 VCNs.

• Gateways: All VCNs in the production region provide a dynamic routing gateway (DRG) to enable private connectivity with on-premises networks by using Site-to-Site VPN or FastConnect. Local peering gateways (LPGs) allow VCNs to communicate using private IP addresses. The primary VCN provides a service gateway to connect to regional object storage services for database backups.
• VCN 1 Primary:
  The Primary VCN provides 3 private subnets.

  • Private subnet 1:

    Includes a pool of JDE app servers in fault domain 1 and a pool of JDE app servers in fault domain 2.

  • Private subnet 2:

    Includes a pool of JDE mid-tier servers in fault domain 1 and a pool of JDE mid-tier servers in fault domain 2.

  • Private subnet 3:

    Includes a single-instance Oracle Database Cloud Service with 8 OCPUs that is synced with the DR region database using Data Guard over the DRG.

• VCN 2 Oracle Essbase:

  The VCN contains a single private subnet with instance of Oracle Essbase that interfaces with the Oracle Autonomous Data Warehouse VCN using Oracle GoldenGate.

• VCN 3 Oracle Autonomous Data Warehouse:

  The VCN contains a single private subnet with instances of Oracle Autonomous Data Warehouse and Oracle Analytics Cloud that interface with the primary VCN and the Oracle Essbase VCN using Oracle GoldenGate.

Bolthouse Farms' primary disaster recovery (DR) environment runs in the US-Ashburn region and contains 1 availability domain and 1 VCN (VCN 4) with a DRG. Private subnet 1 includes 1 standby instance of the JDE app server and 1 instance of the JDE mid-tier server connected to the production region by using rsync. The subnet also includes a single-instance Oracle Database Cloud Service with 8 OCPUs that is synced with the production region database using Data Guard over the DRG.