This image shows a general multicloud topology that includes Oracle Cloud Infrastructure (OCI) and Microsoft Azure and that supports multiple workload topologies.

The OCI region provides resources such as Oracle Autonomous Database to the entire region by using the Oracle Services Network. The region includes a tenant with 1 virtual cloud network (VCN) and two subnets: a database subnet and a private DNS subnet with a private DNS listening endpoint. The VCN provides a domain name service (DNS) and a dynamic routing gateway (DRG) to route traffic for remote peering.

Oracle Interconnect for Microsoft Azure provides connectivity between OCI and Azure by using Oracle Cloud Infrastructure FastConnect to communicate with the DRG in OCI and Azure ExpressRoute to communicate with the virtual network gateway (VNG) in Azure.

The Microsoft Azure region provides a hub VNet and multiple spoke VNets, each with application subnets. VNet peering connects the hub and spoke VNets. The hub VNet includes a firewall and a DNS subnet with an outbound endpoint. The hub VNet includes a DNS forwarding rule set. The rule set is used between the outbound endpoint in Azure and the listening endpoint in OCI and between the hub and spoke VNets in Azure. Spoke VNets access the rule set hosted by the hub VNet by using a virtual network link.