The image shows shows a cloud network architecture with connectivity between on-premises resources, multicloud environments, and OCI. The on-premises region hosts customer premises equipment.

A Multicloud region hosts AWS, Azure, and Google Cloud. Both the on-premises and multicloud environments connect to a DRG in the OCI region.

In the OCI region hosts three services: IAM, Search, and Object Storage, as well as a hub-and-spoke VCN architecture. The Hub VCN contains two public subnets and one private subnet. One public subnet includes a Bastion host, another contains a WAF and a Flexible Load Balancer. The private subnet contains a Firewall. The Hub VCN is connected to the internet through an internet gateway.

The Spoke VCN contains two private subnets. One private subnet hosts two virtual machines functioning as web servers, and the other hosts a database. Connections between the DRG and the Hub VCN manage east-west traffic, while the internet gateway manages north-south traffic.