This image shows two regions, each with one availability domain. File and object storage is provided in each region. The regions are connected using remote peering. Data Guard connects the production and disaster recovery Exadata database systems in each region.
One region provides a production environment with a hub and a production virtual cloud network (VCN). The other region provides similarly configured hub and production VCNs for disaster recovery. The disaster recovery region also provides QA and non-production VCNs that are similar to the production VCN.
The customer data center is connected to the hub VCN in both regions using FastConnect. Azure is also connected to the production hub VCN using FastConnect.
The production region provides two VCNs:
- Hub VCN: Provides a single subnet, a local peering gateway for secure communications between VCNs in the region, and a dynamic routing gateway (DRG) for private communications between the customer data center and the VCN and subnets using FastConnect and for secure communications between VCNs in different regions.
- Production VCN: Provides private subnets A-D and the following gateways:
- NAT gateway: Enables private resources in a VCN to access hosts on the internet, without exposing those resources to incoming internet connections.
- Local peering gateway: VCNs communicate using private IP addresses, without the traffic traversing the internet or routing through your on-premises network.
- Service gateway: VCNs communicate with services such as object storage over the Oracle network fabric without traversing the internet.
The production VCN includes a load balancer to manager traffic to production web and application servers. The VCN also provides block storage and an Exadata Cloud Service database.
The disaster recovery region provides four VCNs:
- Hub VCN: Provides a configuration similar to the hub VCN in the production region except without a connection to the Azure cloud instance.
- Production (disaster recovery) VCN: Provides a configuration similar to the production VCN in the production region with the same types of gateways, subnets, and services.
- Non-production VCN: Provides a configuration similar to the production VCN in the production region except that the Exadata Cloud Service instance is not supported by Data Guard.
- QA VCN: Provides a configuration similar to the production VCN in the production region except without an Exadata Cloud Service instance.