The image shows internet users using a browser to access an OCI region. Traffic goes through an OCI Kubernetes Engine load balancer.

The OCI region contains three availability domains. There is a virtual cloud network (VCN) with a dynamic routing gateway, internet gateway, and network address translation gateway spaning all three domains. OCI Kubernetes Engine also spans all three domains, along with an OCI Kubernetes Engine subnet. Inside OCI Kubernetes Engine there are two pools:

• Pool 1 contains a Node Autoscaler, KEDA Jobscaler, and Queue Length Node.
• Pool 2 contains three Scan nodes.

Below the OCI Kubernetes Engine subnet is an edge subnet which spans all three availability domains, and contains the OCI Kubernetes Engine load balancer. Traffic flows from the internet into this load balancer, into pool 1.

When internet users upload files to object storage, the files are scanned by the scan nodes in pool 2. Object storage notifies Oracle Cloud Infrastructure Events, which notifies Oracle Cloud Infrastructure Functions to send data to Oracle Cloud Infrastructure Monitoring, Logging, and Queue.

Scanned files move from pool 2 to Alert Object Storage (if infected), or Oracle Cloud Infrastructure Object Storage (if clean).