This image shows an Oracle Cloud Infrastructure (OCI) region with 1 availability domain, 3 fault domains, and 2 virtual cloud network (VCN).

The region provides the following services:

• Oracle Cloud Infrastructure Audit
• Oracle Cloud Infrastructure Block Volumes
• Oracle Cloud Infrastructure File Storage
• Oracle Cloud Infrastructure Identity and Access Management
• Oracle Cloud Infrastructure Logging
• Oracle Cloud Infrastructure Object Storage
• Policies

The VCN provides the following gateways:

• Dynamic routing gateway (DRG): Provides private connectivity between on-premises networks and VCNs by using Site-to-Site VPN or FastConnect.
• Internet gateway: Provides communications between public subnets and internet hosts. This architecture also includes Oracle Cloud Infrastructure Web Application Firewall for traffic that comes in through the internet gateway.
• Service gateway: VCNs communicate with services such as object storage over the Oracle network fabric without traversing the internet.

The VCN provides 5 subnets, each with its own security list and route table. The DMZ public subnet includes Oracle Cloud Infrastructure Bastion in fault domain 1, a public load balancer in fault domain 3, and a standby load balancer in fault domain 2.

The Oracle Cloud VMware Solution software defined data center (SDDC) spans the following subnets:

• VLAN App private subnet: NSX Edge provides routing to virtual machines (VMs) 1-n distributed across fault domains. The VMs provide compute (vSphere), network (NSX-T), and storage (vSAN) services.
• Compute cluster private subnet: Provides ESXi bare metal servers 1-n.

Oracle Exadata Database Service on Dedicated Infrastructure spans the following subnets:

• Database (Client) private subnet: Provides expandable database servers to manage the VM cluster database which connect to expandable storage servers, such as RoCE Network, Fabric to storage database servers, and other servers.
• Database (Backup) private subnet: Provides for database backups.