This image shows an Oracle Cloud Infrastructure region with a single availability domain. The region provides identity access management (IAM) and audit services. The region contains a virtual cloud network (VCN) with 9 regional subnets and the following gateways:

• An internet gateway connects public subnets to the internet through a content delivery network (CDN).
• A dynamic routing gateway (DRG) for private connections from the customer's data center through IPSec VPN or FastConnect to the customer service center (CSC) subnet.
• A service gateway connects specific subnets to object storage and YUM repository services for the region.

The regional subnets are arranged as functional tiers:

• Public subnet A (10.0.100.0/24): A load balancer connects to the internet gateway through a web application firewall (WAF).

• Public subnet B (10.0.200.0/24): Contains virtual machines for a bastion host and a deployment orchestrator and connects to the internet gateway.

• Private subnet A (10.0.1.0/24): The storefront tier contains front-end clusters represented by virtual machines labeled A, B, and C connected to the load balancer in public subnet A and to the load balancer in private subnet B. It also connects to the service gateway.

• Private subnet B (10.0.2.0/24): The ATG API tier contains a private load balancer and ATG API clusters represented by virtual machines labeled A, B, and C connected to the private load balancer in the current tier and to the load balancer in private subnet C. It also connects to the service gateway.

• Private subnet C (10.0.3.0/24): The Endeca MDEX tier contains a private load balancer and MDEX clusters represented by virtual machines labeled A, B, and C connected to the private load balancer in the current tier. It also connects to the service gateway.

• Private subnet D (10.0.4.0/24): The customer service center (CSC) tier contains a private load balancer and CSC clusters represented by virtual machines labeled A and B. This tier also contains virtual machines for commerce platform preview and for CSC indexes. This tier also connects to the dynamic routing gateway and the service gateway.

• Private subnet E (10.0.5.0/24): The administration tier contains virtual machines for WebLogic Server administration, business control center (BCC), auxiliary services, and Endeca XM. It also connects to the service gateway.

• Private subnet F (10.0.6.0/24): The storage tier contains shared file storage for Oracle Commerce Platform/Endeca.

• Private subnet G (10.0.7.0/24): The database tier contains Oracle Autonomous Database for core/pub/catx/staging.