The image shows internet users using a browser to access an OCI region. Traffic goes through an Oracle Cloud Infrastructure Container Engine for Kubernetes load balancer.

The OCI region contains three availability domains. There is a virtual cloud network (VCN) with a dynamic routing gateway, internet gateway, and network address translation gateway spaning all three domains. Oracle Container Engine for Kubernetes also spans all three domains, along with an Oracle Container Engine for Kubernetes subnet. Inside Oracle Container Engine for Kubernetes there are two pools:

• Pool 1 contains a Node Autoscaler, KEDA Jobscaler, and Queue Length Node.
• Pool 2 contains three Scan nodes.

Below the Oracle Container Engine for Kubernetes subnet is an edge subnet which spans all three availability domains, and contains the Oracle Container Engine for Kubernetes load balancer. Traffic flows from the internet into this load balancer, into pool 1.

When internet users upload files to object storage, the files are scanned by the scan nodes in pool 2. Object storage notifies Oracle Cloud Infrastructure Events, which notifies Oracle Functions to send data to Oracle Cloud Infrastructure Monitoring, Logging, and Queue.

Scanned files move from pool 2 to Alert Object Storage (if infected), or Oracle Cloud Infrastructure Object Storage (if clean).