This image shows an on-premises university campus network and two Oracle Cloud
Infrastructure (OCI) regions: OCI Region - Phoenix and OCI Region - Ashburn. an active region in
Phoenix (OCI Region - Phoenix) and a standby region in Ashburn OCI Region - Ashburn
connected by remote peering.
The on-premises campus network includes a secure login portal that uses
site-to-site VPN for students, staff, and faculty traffic to connect to OCI Region -
Phoenix. There is an active VPN and a standby VPN. OCI Region - Phoenix uses Remote
Peering to connect to OCI Region - Ashburn.
The Phoenix region provides 3 availability domains (AD) and the following in
the Oracle Services Network:
- Oracle Database Backup
Cloud Service
- Oracle Cloud
Infrastructure Object Storage
- Oracle Cloud Infrastructure File
Storage
The Phoenix region provides 1 virtual cloud network (VCN) with Cloud Guard
and the following gateways:
- Dynamic routing gateway (DRG): Provides private connectivity between
on-premises networks and VCNs by using Site-to-Site VPN and Remote Peering to the
second OCI Region - Ashburn.
- Service gateway: VCNs communicate with services such as object storage
over the Oracle network fabric without traversing the internet.
The VCN provides 5 subnets, each with its own security list and route
table:
- Shared Services subnet: Provides Banner Central Authentication
Service (CAS) in AD1 and AD2 and two Bastion host instances for authorized
access.
- Edge subnet: Provides a Bastion host instance in AD1 and AD2 for
authorized access.
- App subnet 1: Provides compute instances across all three ADs with
specific services including:
- Job Server
- Banner Admin
- Banner Document Manager (Xtender)
- Banner Self Service (SSB) Student
- Banner Workflow
- Banner Forms
- Management subnet: Provides compute instances across all three ADs
for Banner Solution Manager.
- Database subnet: Provides Oracle Base Database Service across all three ADs for Banner database (DB). Communication flows from
App subnet 1 to the Database subnet.
The Ashburn region provides 1 virtual cloud network (VCN) with Cloud Guard
and the following gateways:
- Dynamic routing gateway (DRG): Provides Remote Peering connectivity
between OCI Region - Phoenix and OCI Region - Ashburn.
- Service gateway: Provides replication communication from App Subnet1 in
OCI Region - Phoenix to Volume Replicas in OCI Region - Ashburn.
