This image shows the reference architecture and interaction between OCI Government Cloud and DREN On-Premises Data Center via DREN IAP Equinix Ashburn.

• The OCI Government Cloud has two an IL4/5 tenancies secured using Cloud Guard and IAM and a VCN inside a Compartment for each tenancy with the following components:
  • Public Subnet with two compute instances, security list, and route table.
  • Private Subnet with one compute instance, security list, and route table.
• DREN IAP Equinix Ashburn has the following components:
  • TAP connecting to OCI Government Cloud via two 10 GB trunks through FastConnect connected to a DRG.
  • TAP connecting to Gigamon with the following: Symantec Security Anaytics, Full Packet Capture, Fidelis Analytics, and Fluency Metaflow Fusion.
  • An Ethernet switch connecting through the DREN Layer 2 network to the two component enclave firewalls (using VLAN and VLAN (pseudowire)) inside the DREN IP Network.
• The DREN On-Premises Data Center has the following components:
  • IAPs connecting to two Component Enclaves using an Outer Router (OR).
  • IAPs connecting to Oracle Cloud using public peering.
  • A sensor connecting OR to Cyber Security Service Provider (CSSP).