This image shows the architecture for using Oracle Cloud Infrastructure for OpenSearch to build in-application search functionality in cloud applications. It comprises an OCI region and an on-premises data center, connected by a site-to-site VPN.

The OCI region contains a single availability domain and an OCI for OpenSearch instance. The OCI region also contains monitoring, auditing, and identity services.

The single availability domain contains two fault domains within a VCN that extends into the region and spans a public subnet and a private subnet. Within the public subnet, there is a load balancer tier containing an active load balancer in fault domain 1 and a standby load balancer in fault domain 2. The public subnet also contains a load-balanced web server tier. There is an application server in each fault domain. The private subnet contains a single MySQL database server in fault domain 1. Each subnet is insulated within the VCN by a routing table and security list.

The on-premises data center comprises the customer premises equipment and a customer network, which contains an application and a MySQL database instance.

A user gains access to the OCI region through an Internet Gateway on the VCN and is directed to the active load balancer in the public subnet. This load balancer directs traffic to the available web application in that tier, which communicates with both the MySQL database server and the OCI for OpenSearch instance. Traffic between the OCI region and an on-premises data center is over a site-to-site VPN.