This image shows a detailed view of the resource groups used in an implementation of Oracle E-Business Suite and Oracle Database@Azure in Microsoft Azure. Information about components within the resource groups is provided in the surrounding text.
The Azure region includes connectivity and workload subscriptions, a single availability zone, and a number of resource groups. A resource group is a logical container that holds related resources and that allows you to manage those resources as a single unit. The architecture includes the following resource groups:
- rg-hub resource group: Contains a secure virtual hub which includes Secure Hub, Virtual WAN, and Azure Firewall. This resource group handles traffic between the on-premises router over ExpressRoute and the other resource groups.
- rg-dmz resource group: Contains a DMZ VNet and subnet. The subnet includes secure file transfer protocol (SFTP) that interfaces with the network file system in the rg-anf resource group by using NFS 4.1.
- rg-anf resource group: Contains an Azure VNet and subnet for Azure NetApp Files deployment with access from the database over NFS 4.1 and from the resources in the rg-ebs resource group. This resource group uses VNet peering to access the rg-ebs and rg-odaa resource groups.
- rg-shared resource group: Contains a shared VNet and subnets for domain services, DNS inbound, and DNS outbound.
- rg-ebs resource group: Contains a Spoke VNet with 3 private subnets. Traffic to the internet is handled by egress rules.
- Load balancing (LB) private subnet: Contains an Active Directory instance to handle traffic between on-premises users over HTTPS and the Oracle E-Business Suite workload components.
- App private subnet: Contains a Web/Forms availability set with two instances governed by network security groups (NSG), and a Concurrent Manager availabilty set with two instances governed by NSGs. All components in this subnet are in Availability Zone 1.
- Backup Vault private subnet: Contains an instance of Recovery Service Vault which is in Availability Zone 1.
- rg-odaa resource group: Contains a second Spoke VNET with a 2 subnets, all the components of which are in Availability Zone 1. Traffic to the internet is handled by egress rules.
- Database (DB) private subnet: Contains an Oracle Database@Azure instance.
- Azure NetApp Files (ANF) subnet: Contains an instance of Azure NetApp Files connected to the database.
