Q1. Which OCI service facilitates the creation of a private connection between two VCNs located in different tenancies, without traversing the public internet?
A.Internet Gateway
B. Service Gateway
C. Remote Peering Connection (RPC)
D. Dynamic Routing Gateway (DRG) with Local Peering Gateway (LPG)
Correct Answer: C
Q2. You are configuring a VCN with multiple subnets for a customer. The security team requires that all instances have IPv6 addresses. You configure the VCN with an IPv6 ULA CIDR block of fc00:1:1::/48 and create two private subnets. After launching instances in the two private subnets, you notice that they only have IPv4 addresses assigned. You have not manually configured any IPv6 addresses on the instances themselves. What steps are necessary to ensure the instances automatically receive IPv6 addresses?
A.No further steps are needed. Instances will automatically receive IPv6 addresses within the configured subnets upon launch.
B. Ensure that SLAAC (Stateless Address Autoconfiguration) is enabled on the operating system of the instances within the two subnets.
C. IPv6 address assignment is only supported on instances launched in public subnets.
D. Make sure the 'Assign public IPv4 address' option is not selected during instance creation. This will force the instance to default to IPv6 allocation.
Correct Answer: B
Q3. When using Service Connector Hub to route VCN Flow Logs to Object Storage for long-term analysis, which Service Connector Hub task type is essential for ensuring the logs are correctly processed and stored?
A.Ingest Logs
B. Process Logs
C. Deliver Logs
D. Transform Logs
Correct Answer: C
Q4. When analyzing Flow Logs for a subnet, how can you filter logs to isolate traffic that was rejected due to a specific security list rule?
A.By filtering on the 'action' field with the value 'REJECT' and the 'securityListRule' field with the rule ID
B. By filtering on the 'status' field with the value 'DENIED' and the 'securityRule' field with the rule name
C. By filtering on the 'direction' field with the value 'EGRESS' and the 'port' field with the rule port
D. By filtering on the 'type' field with the value 'SECURITY' and the 'rule' field with the rule number
Correct Answer: A
Q5. You are tasked with migrating a critical, latency-sensitive application from Azure to OCI. Due to compliance requirements, all data must be encrypted in transit. Which connectivity option provides the BEST combination of security and performance for this migration?
A.Configure a Site-to-Site VPN between Azure's Virtual Network Gateway and OCI's Dynamic Routing Gateway (DRG), relying on the built-in IPSec encryption
B. Utilize Azure ExpressRoute and OCI FastConnect through a colocation provider, then implement application-level encryption using TLS
C. Leverage Azure Data Factory to transfer data to OCI Object Storage via HTTPS
D. Employ Azure VPN Gateway in conjunction with an OCI Load Balancer with SSL termination for the incoming connections from Azure
Correct Answer: B
$ 39
Reviews
There are no reviews yet.