This image shows an on-premises university campus network connected to 2 Oracle Cloud
Infrastructure (OCI) regions: an active region in Ashburn and a disaster recovery (DR) region in Phoenix connected by remote peering. The
on-premises network includes a load balancer for faculty and student traffic and uses site-to-site VPN to connect to each
region.
Each region provides 3 availability domains (AD) and the following services:
- Oracle Cloud Observability and Management Platform:
- Oracle Cloud
Infrastructure Alarms
- Oracle Cloud
Infrastructure Application Performance Monitoring Cloud Service
- Oracle Cloud Infrastructure Audit
- Oracle Cloud
Infrastructure Database Management
- Oracle Cloud
Infrastructure Logging
- Oracle Cloud Infrastructure
Monitoring
- Oracle Cloud
Infrastructure VCN Flow Logs
- Oracle Cloud
Infrastructure Bastion
- Oracle Cloud Infrastructure File
Storage
- Oracle Cloud
Infrastructure Object Storage
- Oracle Cloud
Infrastructure Vulnerability Scanning Service
- Oracle Key Management Cloud
Service
Each region provides 1 VCN protected by Oracle Cloud Guard and maximum security zones and with the following gateways:
- Dynamic routing gateway (DRG): Provides private connectivity between on-premises networks and VCNs by using Site-to-Site
VPN or FastConnect. A DRG can also route traffic between VCNs for remote peering.
- Service gateway: VCNs communicate with services such as object storage over the Oracle network fabric without traversing the
internet.
Active region VCN: Provides subnets, each with its own security list and route table. Application data is replicated to the associated production
subnet in the disaster recovery region:
- Student load balancer production public subnet: Provides an active load balancer in AD1 and a standby load balancer in AD2.
- Student app production private subnet: Provides compute instances with Banner 9 SSB and Degree Works in AD1 and AD2.
- Admin load balancer production private subnet: Provides an active load balancer in AD1 and a standby load balancer in AD2.
- Admin app production private subnet: Provides compute instances distributed across availability domains:
- AD1: Banner Admin and Job Submission instances
- AD2: Banner Admin and Ethos API instances
- AD3: Banner Admin and Banner Events Publisher instances
- Database production private subnet: Provides production instances of Oracle Base Database Service for Banner in AD1 and for Degree Works in AD3.
- Student app non-production private subnet: Provides compute instances with Banner 9 SSB and Degree Works in AD3.
- Admin app non-production private subnet: Provides compute instances with Banner Admin and Ethos API instances in AD2 and
Banner Admin and Banner Events Publisher instances in AD3.
- Database non-production private subnet: Provides non-production instances of Oracle Base Database Service for Banner in AD1 and for Degree Works in AD3.
Disaster recovery region VCN: Provides 5 subnets, each with its own security list and route table:
- Student load balancer production public subnet: Provides a topology similar to the student load balancer subnet in the active
region.
- Student app production private subnet: Provides a topology similar to the student app subnet in the active region.
- Admin load balancer production private subnet: Provides a topology similar to the admin load balancer subnet in the active
region.
- Admin app production private subnet: Provides a topology similar to the admin app subnet in the active region.
- Database private subnet: Provides production instances of Oracle Base Database Service across availability domains:
- AD1: Banner and JobStub
- AD2: Foundation Banner and data warehouse instances
- AD3: Degree Works
