Overview

Architecture

The following diagram shows the Oracle Database@AWS architecture.

The key components of this architecture are the following:

• AWS Region: An AWS Region is a geographical area that has a cluster of data centers known as Availability Zones. Each region is isolated from other regions to ensure data sovereignty, fault tolerance, and low-latency performance for workloads deployed in that geographical area.
• AWS Availability Zone: An AWS Availability Zone (AZ) is a distinct, isolated location within an AWS Region, consisting of of one or more data centers with redundant power, networking, and connectivity. AZs provide a highly available and fault-tolerant environment for your applications and services.

• Amazon Virtual Private Cloud and Subnet: An Amazon virtual private cloud (VPC) lets you launch AWS resources into a virtual network you've defined. This virtual network resembles a traditional network that you operate in your own data center, with the benefits of using the scalable infrastructure of AWS. After you create an VPC, you can add subnets.

  A subnet is a range of IP addresses in your Amazon VPC. You can create AWS resources, such as Amazon EC2 instances, in specific subnets.

• OCI Region (Parent Site): An OCI region is a geographic area that has one or more data centers known as availability domains. In the Oracle multicloud model, an OCI region connected to a paired AWS region is called a Parent Site. While OCI has regions worldwide, Oracle Database@AWS is available only in the regions discussed in Regional Availability.

  Each OCI region operates independently of other regions, providing fault tolerance and disaster recovery capabilities. Each region consists of one or more availability domains. An OCI availability domain (AD) is one or more data centers within an OCI region. In regions that have multiple ADs, the ADs are physically isolated from each other. They don't share infrastructure, power, cooling, or internal networking, so a failure in one AD is unlikely to affect other ADs in the same region.

• OCI Child Site: An OCI child site is a data center that extends an OCI availability domain (AD) to an Availability Zone (AZ) in an AWS region. With the OCI child site model, the Exadata infrastructure used for Oracle Database@AWS physically resides in an AWS data center (an AZ within an AWS region), but is logically mapped to an OCI region and its network components.
• ODB Network: The ODB network is a private and isolated network that hosts Oracle Exadata VM Clusters and Autonomous VM Clusters within a specified AWS Availability Zone (AZ). The ODB network consists of a CIDR range of IP addresses. The ODB network maps directly to the network that exists within the OCI child site and enables communication between AWS and OCI. In Oracle's multicloud architecture, the ODB network provides network connectivity for the OCI components that are part of the Oracle Database@AWS service.
• ODB Peering: ODB peering is a user-created network connection that allows traffic to be routed privately between an Amazon VPC and an ODB network. In Oracle multicloud architecture, traffic between your applications in the VPC and the Oracle Database in the ODB network is routed privately through ODB peering without traversing the public internet.
• Oracle Exadata Infrastructure: Oracle Exadata infrastructure is a high-performance, integrated hardware and software platform designed for running Oracle Databases. Exadata is a pre-configured and pre-tested full-stack platform, meaning all the necessary hardware and software components are integrated and optimized to work together seamlessly. Exadata features a scale-out architecture with database servers and intelligent storage servers that can be independently scaled to meet changing workload demands. Exadata storage servers go beyond traditional storage by having their own CPUs and specialized software that enable them to perform database operations such as SQL query processing close to the data. Exadata uses a high-bandwidth, low-latency network fabric (such as RDMA over Converged Ethernet or RoCE) to connect database servers and storage servers, ensuring rapid data access and transfer rates. In Oracle multicloud architecture, Exadata infrastructure is the underlying hardware for both Oracle Exadata Database Service and Oracle Autonomous Database.
• Oracle Exadata Database Service: Oracle Exadata Database Service on Dedicated Infrastructure lets you to leverage the power of Exadata in the cloud. The service delivers proven Oracle Database capabilities on purpose-built, optimized Oracle Exadata infrastructure in the public cloud. Built-in cloud automation, elastic resource scaling, security, and fast performance for all Oracle Database workloads helps you simplify management and reduce costs.
• Oracle Autonomous Database: Oracle Autonomous Database on Dedicated Exadata Infrastructure is a cloud database service that offers an automated and fully managed database environment running on dedicated Oracle Exadata infrastructure. This dedicated environment provides isolated resources, including compute, storage, and networking, ensuring greater control over service levels, operational policies, and customizations, while also providing high levels of security and predictable performance. Oracle Autonomous Database automates complex database tasks such as provisioning, configuring, securing, tuning, and scaling, reducing the risk of human error and administrative burden.
• Amazon S3: Amazon Simple Storage Service (Amazon S3) is a highly scalable, durable, and secure object storage service offered by Amazon Web Services (AWS). S3 stores and retrieves virtually any amount of data from anywhere on the web. S3 is based on object storage technology, which means data is stored as individual units called objects. Objects in S3 are organized within containers called buckets. In Oracle multicloud architecture, Amazon S3 is used as the default backup destination for Oracle-managed backups.
• OCI Virtual Cloud Network (VCN) and Subnet: A Virtual Cloud Network (VCN) is a customizable, private network that you set up in an OCI tenancy within a specified Oracle Region. It provides a secure and scalable network environment where you can deploy and manage your OCI resources, such as compute instances, databases, and storage. A VCN acts as a virtualized version of a traditional network, including key components like subnets, route tables, and gateways. VCNs let you to isolate and segment your cloud resources within logically separated networks, enhancing security and manageability. VCNs are divided into subnets, which are smaller subdivisions that allow you to segment resources and control traffic at a finer level. Subnets can be either public (allowing public IP addresses and internet access) or private (restricting direct internet access). In Oracle multicloud architecture, when an ODB network with client and backup subnets is created in an AWS region, a corresponding OCI VCN with subnets is automatically created in your OCI tenancy in the paired OCI region.
• Network security group (NSG): In OCI, a Network Security Group (NSG) is a feature that acts as a virtual firewall for a set of cloud resources that share the same security posture. NSGs apply security rules to a specific group of Virtual Network Interface Cards (VNICs) within a Virtual Cloud Network (VCN), rather than applying rules to an entire subnet. In Oracle multicloud architecture, an NSG is used to control network traffic to Oracle Databases.
• OCI Vault: OCI Vault is a managed cloud service provided by OCI for securely storing and managing encryption keys and secrets. OCI Vault integrates with Oracle Database@AWS in multicloud setup, enabling secure data-at-rest encryption. OCI Vault offers a rich set of REST APIs to manage vaults and keys. In Oracle multicloud architecture, OCI Vault is offered to securely store the Customer Managed Keys (CMK).
• Oracle Database Autonomous Recovery Service (ARS): Oracle Database Autonomous Recovery Service (ARS) at OCI is a fully managed cloud backup solution designed to protect Oracle Databases. ARS is a key service within OCI for ensuring data protection and availability. The service aims to minimize data loss by providing real-time transaction protection, providing recovery to within less than a second of an outage or attack. This significantly reduces the recovery point objective (RPO) compared to traditional backup methods. In Oracle multicloud architecture, ARS at OCI is offered as one of the automatic backup destinations for Oracle Exadata Database Service.
• OCI Object Storage: OCI Object Storage is a service offered by Oracle Cloud Infrastructure for storing and managing large volumes of unstructured data. Object Storage is a scalable, durable, and cost-effective solution for various data types, including images, video, backups, and archives. OCI Object Storage offers virtually unlimited storage capacity, allowing you to scale as your data grows without worrying about capacity limitations. In Oracle multicloud architecture, OCI Object Storage is offered as one of the automatic backup destinations.