This architecture shows a single Oracle Cloud Infrastructure region with 1 availability domain and 1 virtual cloud network (VCN). The region provides the following services:

• Oracle Analytics Cloud
• Oracle Cloud Infrastructure compartments
• Oracle Cloud Infrastructure Identity and Access Management
• Oracle Cloud Infrastructure Object Storage
• Policies

The VCN provides a public subnet and a private subnet, each with their own security list and route table. The VCN provides the following gateways:

• Internet gateway: Provides communications between public subnets and internet hosts or customer premises equipment.
• Dynamic routing gateway (DRG): Provides private connectivity between on-premises networks and VCNs by using Site-to-Site VPN or FastConnect.
• Network address translation (NAT) gateway: Enables private resources in a VCN to access hosts on the internet, without exposing those resources to incoming internet connections.
• Service gateway: VCNs communicate with services such as object storage over the Oracle network fabric without traversing the internet.

The public subnet includes instances of Oracle Cloud Infrastructure API Gateway and Oracle Cloud Infrastructure Bastion.

The private subnet includes network security groups and an instance of Oracle Autonomous Database with autoscaling and private endpoint.