The image shows an AWS Region with cross-VPC connectivity in the same region with AWS Transit Gateway hub and three spokes. Each spoke connects to a different VPC using AWS Transit Gateway Attachments: Spoke Application VPC, Spoke Firewall VPC, Transit VPC.

The AWS Region has three availability zones:

• Availability Zone 1 hosts Transit VPC and subnet with a route table. The Transit VPC uses ODB peering connectivity to connect with the ODB network which hosts Oracle Database@AWS.
• Two Application VPCs each with a route table in their own availability zones: Availability Zone 2 and Availability Zone 3.
• Each Application VPC hosts two applications.
• Availability Zone 3 extends to Spoke Firewall VPC and subnet with a route table which hosts the Firewall.