OCI Components
The infrastructure leverages various Oracle Cloud Infrastructure services to create a secure, scalable, and production-ready environment:
Core Infrastructure Components:
| Service | Component | Purpose |
|---|---|---|
| Networking | Virtual Cloud Network (VCN) | Primary network container with public/private subnets |
| Networking | Internet Gateway | Internet access for public resources |
| Networking | NAT Gateway | Outbound internet access for private resources |
| Networking | Service Gateway | Access to OCI services without internet routing |
| Networking | Route Tables | Network routing rules for subnets |
| Security | Network Security Groups (NSG) | Granular security rules for resources |
| Security | Security Lists | Subnet-level security rules |
| Security | OCI Bastion Service | Managed SSH access to private resources |
| Storage | Object Storage Bucket | Persistent storage for Log Collector data |
| Storage | Pre-authenticated Requests | Secure time-limited access to objects |
| Identity | Customer Secret Keys | S3-compatible API access for Object Storage |
| DNS | OCI DNS Zone | DNS zone for global failover steering policies |
| DNS | DNS Steering Policy | Automatic DNS-based failover between primary and secondary clusters |
| Health Checks | OCI Health Checks | Monitor primary and secondary cluster availability |
| Functions | OCI Functions | Serverless DR failover automation (scales humio-operator on failure) |
| Monitoring | OCI Alarms | Trigger failover function on health check failures |
| Notifications | OCI Notification Topics | Alarm-to-function integration for DR automation |
| Container Registry | OCIR | Container images for DR failover function |
OKE (Oracle Container Engine for Kubernetes) Components:
| Component | Type | Purpose |
|---|---|---|
| OKE Cluster | Managed Kubernetes | Control plane for container orchestration |
| Node Pools | Compute Instances | Worker nodes for running containerized workloads |
| System Node Pool | Dedicated Pool | Kubernetes system components (kube-system namespace) |
| LogScale Node Pools | Specialized Pools | LogScale application components (digest, ingest, UI) |
| Pod Networking | VCN-native | Container networking using OCI VCN CNI plugin |
| Load Balancers | OCI Load Balancer | External traffic ingress for services |
| Block Volumes | Persistent Storage | Persistent volume claims for stateful workloads |
| NVMe Storage | Local SSD | High-performance local storage for data nodes |