The image shows the virtual cloud network (VCN) topology used in this architecture. It depicts an OCI region containing a single network compartment. Within the compartment are three fault domains. Spanning these fault domains is a VCN, subdivided into three subnets:
  • A public subnet for external facing applications and load balancers.
  • A private subnet for the bastion service.
  • A private subnet for shared services.

Access to the VCN is though either a Dynamic Routing Gateway, an Internet Gateway, a NAT Gateway, or a Service gateway.