Oracle 1z0-1072-23 Exam Questions

Question 6 of 59

A financial firm is designing an application architecture for its online trading platform that should have high availability and fault tolerance.
Their solutions architect configured the application to use an Oracle Cloud Infrastructure (OCI) Object Storage bucket located in the US West (us-phoenix-1) region to store large amounts of financial data. The stored financial data in the bucket should not be impacted even if there is an outage in one of the Availability Domains or a complete region.
What should the architect do to avoid any costly service disruption and ensure data durability?

Create a lifecycle policy to regularly send data from the Standard to Archive storage.

Create a replication policy to send data to a different bucket in another OCI region.

Copy the Object Storage bucket to a block volume.

Create a new Object Storage bucket in another region and configure lifecycle policy to move data every 5 days.

Correct Answer: B

To ensure high availability and fault tolerance for the financial data stored in the OCI Object Storage bucket, the best approach is to create a replication policy that sends the data to a different bucket in another OCI region. This ensures that even if there is an outage in one Availability Domain or the entire region, the data remains accessible and preserved in another geographically separate location. Other options like creating lifecycle policies or copying data to block volumes do not provide the same level of redundancy across regions.

Question 7 of 59

As a network architect you have been tasked with creating a fully redundant connection from your on-premises data center to your Virtual Cloud Network (VCN) in the us-ashburn-1 region.
Which TWO options will accomplish this requirement? (Choose two.)

Configure two FastConnect virtual circuits to the us-ashburn-1 region and terminate them in diverse hardware on-premises.

Configure one FastConnect virtual circuit to the us-ashburn-1 region and the second FastConnect virtual circuit to the us-phoenix-1 region.

Configure a Site-to-Site VPN from a single on-premises CPE.

Configure one FastConnect virtual circuit to the us-ashburn-1 region and a Site-to-Site VPN to the us-ashburn-1 region.

Correct Answer: A, D

To create a fully redundant connection from an on-premises data center to a Virtual Cloud Network (VCN) in the us-ashburn-1 region, one effective approach is to configure two FastConnect virtual circuits to the us-ashburn-1 region and ensure they terminate in diverse hardware on-premises. This ensures that even if one circuit or piece of hardware fails, the other will maintain the connection. Another viable option is to configure one FastConnect virtual circuit to the us-ashburn-1 region and supplement it with a Site-to-Site VPN to the same region. This setup leverages different technologies for redundancy, ensuring that even if one method of connection fails, the other remains operational. Combining these two methods provides robust redundancy for the connection.

Question 8 of 59

As your company's cloud architect, you have been invited by the CEO to join his staff meeting. They want your input on interconnecting Oracle Cloud Infrastructure (OCI) to another cloud provider in London, with some specific requirements:
They want resources in the other cloud provider to leverage OCI Autonomous Data Warehouse ML capabilities.
The connection between OCI and the other cloud provider should be provisioned as quickly as possible.
The connection should offer high bandwidth and predictable performance.
Which other cloud provider should you recommend to interconnect with OCI and meet the above requirements?

IBM Cloud

Microsoft Azure

Digital Ocean

Amazon Web Services

Google Cloud

OCI

Alibaba Cloud

Correct Answer: B

To meet the requirement of leveraging OCI Autonomous Data Warehouse ML capabilities with high bandwidth and predictable performance, and to establish the connection as quickly as possible, Microsoft Azure is the best choice. Oracle and Microsoft have a strong partnership, which includes seamless interoperability between Oracle Cloud Infrastructure (OCI) and Microsoft Azure through a service called Oracle Interconnect for Azure. This allows customers to run part of their workload on Azure and another part on OCI, with low latency and high throughput connectivity between the two environments. Therefore, Microsoft Azure is recommended for interconnecting with OCI to meet the stated requirements.

Question 9 of 59

A recently hired network administrator has been given the task of removing SSH permissions from all compute instances in the company's tenancy. She finds all Virtual Cloud Networks (VCNs) in the tenancy using Tenancy Explorer. She removes port 22 from the Security Lists in all VCNs. After she completes the task, the very first compute instance that she tests SSH against, allows her to still SSH into it. Why is that?

The VCN where that compute instance resides still has an Internet Gateway.

The VCN where that compute instance resides still has a route rule that allows port 22.

The VNIC of that compute instance is attached to a Network Security Group (NSG) that has a stateful ingress rule for all protocols on source CIDR 0.0.0.0/0.

The VNIC of that compute instance is attached to a Cluster Network that has a stateful ingress rule for all protocols on source CIDR 0.0.0.0/0.

Correct Answer: C

The VNIC of that compute instance is attached to a Network Security Group (NSG) that has a stateful ingress rule for all protocols on source CIDR 0.0.0.0/0. NSG rules can override the Security Lists, and if the NSG allows port 22, the compute instance will still be accessible via SSH despite changes made in the Security Lists.

Question 10 of 59

Which TWO statements are TRUE about Private IP addresses in Oracle Cloud Infrastructure (OCI)? (Choose two.)

By default, the primary VNIC of an instance in a subnet has one primary private IP address and one secondary private IP address.

Each VNIC can only have one private IP address.

A private IP can have an optional public IP assigned to it if it resides in a public subnet.

By default, the primary VNIC of an instance in a subnet has one primary private IP address.

Correct Answer: C, D

By default, the primary VNIC of an instance in a subnet has one primary private IP address. Additionally, a private IP can have an optional public IP assigned to it if it resides in a public subnet. These facts highlight the flexibility and configuration options available in Oracle Cloud Infrastructure.