The image shows an OCI Region with a single Availability Domain and three
Fault Domains.
The VCN has an Internet Gateway, NAT Gateway, Service Gateway, Code Repository, and OCI
Vault. The following subnets are located in the VCN:
- Public Subnet A has a dotted line box labeled Load Balancer that spans all three
fault domains. The Load Balancer is in Fault Domain 2.
- Private Subnet B contains External Secrets Operator, Secret Store, DB Password
Secret, and Container Engine for Kubernetes. There are two dotted line boxes in
the subnet labeled Application Deployment and Virtual Node Group:
- Application Deployment contains a Pod Security Group. There is an
Application Pod in each of the fault domains (Fault Domain 1, Fault
Domain 2, and Fault Domain 3).
- Virtual Node Group contains a Virtual Node in each of the fault domains.
- Private Subnet C contains MySQL Database Service in Fault Domain 1 and Fault
Domain 2. There is 2-way communication between the two MySQL Database Service
instances and the Application Pod in Fault Domain 3.
Information flows in to the NAT Gateway and the Internet Gateway to the Load Balancer.
The Load Balancer distributes information to the Application Pods. There is two-way
communication between the Application Pod in Fault Domain 3 and the OCI Vault.
Information flows into the Code Repository and Service Gateway to the Virtual Node Group.