This image shows a single region with three availability domains and a virtual cloud network (VCN). The following services and features are provided for the region:

• Identity and access management
• Auditing
• Policies
• Container registry
• File storage

A virtual cloud network (VCN) includes two subnets:

• Public subnet: Includes a service gateway for communications with regional services and an internet gateway for traffic from external web clients. A bastion host validates incoming traffic and an application load balancer and admin load balancer distribute traffic to the private subnet.
• Private subnet: Includes a Kubernetes cluster that spans the three availability domains with a Oracle Cloud Infrastructure Container Engine for Kubernetes node pool.

  Nginx is used for internal load balancers for directing traffic to different application pods, such as Java and Python, and infrastructure pods, such as Kibana and Kong, running on Docker containers.

  Also in the node pool are pods for Datadog agents and Filebeats and for Elasticsearch, Memcache, and Redis running in their own containers.

  The customer data management layer uses PostGreSQL open source database deployed on a multi-node cluster running on Oracle Cloud Infrastructure Compute instances.