Multicloud Architecture Diagram for Services running in Azure
This architecture diagram example represents a multi-cloud integration between Oracle Cloud Infrastructure (OCI) and Microsoft Azure, showing how services in both clouds interact to provide seamless connectivity and functionality. Such diagrams are typically used in hybrid cloud environments to illustrate the interaction between different services, subnets, and network components, especially for enterprises looking to combine strengths from multiple cloud providers.
Where and When to Use This Diagram
- This type of diagram is used in hybrid cloud scenarios or multi-cloud architectures where different cloud platforms (e.g., Azure and OCI) are interconnected to serve enterprise workloads, offering high availability, performance, and security.
- Enterprises often create such diagrams when they need to manage services across different cloud providers, ensuring efficient communication and networking between them.
- Use Case: This kind of diagram is helpful when deploying mission-critical applications that rely on both cloud providers, like integrating Oracle databases from OCI with application workloads hosted on Azure VMs.
Principles for Efficiently Drawing Cloud Architecture Diagrams
- Clarity: Ensure that each component is labeled clearly and accurately to indicate its function in the architecture.
- Flow: Use arrows and connectors to illustrate the flow of data or traffic between different components.
- Groupings: Group related elements, such as subnets, within a Virtual Network (VNet) or a Virtual Cloud Network (VCN) to visually indicate their relationships.
- Security Layers: Emphasize critical security components like firewalls, DNS, and secure network connections.
- Modularity: Break down the architecture into smaller, manageable segments such as subnets or regions to ensure scalability.
- Customizable Elements: Make the diagram adaptable so that components like subnets, security policies, or connectivity services can be replaced or modified as necessary.
Diagram Flow
OCI Region (Oracle Cloud Infrastructure):
- The diagram starts with the Oracle Autonomous Database within the OCI Region. It is securely managed through the Oracle Services Network.
- Inside the Virtual Cloud Network (VCN), you find resources such as:
- Database Subnet: Hosting services like Database and Exadata.
- Private DNS Subnet: This subnet provides private DNS services with a listening endpoint for resolving domain names within the network.
- The Dynamic Routing Gateway (DRG) acts as the key connector between OCI and external cloud networks, facilitating communication with Azure via OCI FastConnect.
Interconnect Between OCI and Azure:
The Oracle Interconnect for Azure establishes the connection between Oracle Cloud and Microsoft Azure, leveraging OCI FastConnect on the OCI side and Azure ExpressRoute on the Azure side. These private connections provide secure, low-latency communication between the two cloud platforms.
Microsoft Azure (Hub VNet and Spoke VNets):
- On the Azure side, the Hub Virtual Network (Hub VNet) handles central communication with resources across the cloud environment. Key components include:
- Firewall: A central security layer ensuring only authorized traffic flows between OCI and Azure.
- DNS Subnet: Within this subnet, a DNS Private Resolver is used to manage DNS traffic, ensuring domain name resolution between the clouds.
- Outbound Endpoint: This allows DNS traffic to exit the network and reach external resources.
- Spoke VNets: These virtual networks host the application workloads (represented as VMs) on the App Subnets. VNet Peering is used to connect the spoke VNets to the hub network, allowing smooth communication between application workloads and other services.
Network Flow:
Traffic from application workloads hosted on Azure VMs flows through the Hub VNet, is routed securely via Azure ExpressRoute and OCI FastConnect, and reaches the Oracle Cloud to interact with the Autonomous Database or Exadata services. DNS services ensure that all domain requests are resolved properly between the two clouds through private DNS endpoints and DNS forwarding rulesets.
Start creating your architecture diagram with MockFlow
This multi-cloud architecture diagram is essential for enterprises integrating services from Oracle Cloud Infrastructure (OCI) and Microsoft Azure, providing a clear overview of networking, DNS management, and secure connectivity between the two platforms. By using such a diagram, you can ensure that all cloud services are interoperable, scalable, and secure. You can take this diagram as a base and customize it according to your specific architecture, adding additional cloud providers, security layers, or network optimizations as needed.
This diagram was created using MockFlow's architecture diagram tool, which allows you to easily design, customize, and adapt your own cloud architecture diagrams. The example presented here is fully editable and customizable, making it perfect for refining and modifying to suit your organization's specific requirements.