Oracle 1z0-997-22 Exam Questions

Question 6 of 58

A cloud engineer needs to enable routing between two Virtual Cloud Networks (VCN) from his tenancy. The VCNs are in the same region but in different compartments. After reviewing the IPv4 CIDR prefixes of the two VCNs, he notices that there are no overlapping CIDR blocks.
Which THREE are valid Oracle Cloud Infrastructure (OCI) options for connecting and routing between the two VCNs? (Choose three.)

Create two DRGs in the tenancy. Attach one VCN to one of the DRGs; attach the other VCN to the second DRG. In each one of the DRGs, create a Virtual Circuit Attachment. Select FastConnect Partner as the FastConnect type. Select any vendor from the list and complete the circuit at the partner site. Once the FastConnect IPv4 BGP field is in the UP state in each one of the Virtual Circuits, add a route rule in each one of the VCNs' route table to the other VCN using the DRG as the next hop.

Create two DRGs in the tenancy. Attach one VCN to one of the DRGs; attach the other VCN to the second DRG. In each one of the DRGs, create a Remote Peering Connection (RPC). Establish a connection from one RPC to the other. In each one of the VCNs' route table, add a route rule to the other VCN using the DRG as the next hop.

Create a DRG in the tenancy; add one of the VCN as a VCN attachment. In the other VCN, create a Local Peering Gateway (LPG). Peer the DRG to the LPG. In the VCN attached to the DRG, add a route rule in the route table that points to the DRG as the next hop. In the other VCN, add a route rule in the route table that points to the LPG as the next hop.

Add an LPG to each one of the VCNs. In one of the LPG, establish a Peering Connection to the other LPG. In each one of the VCN route table, add a route rule to the other VCN using the LPG as the next hop.

Create a DRG in the tenancy; add one of the VCNs as a VCN attachment. In the other VCN, create a Local Peering Gateway (LPG). Peer the DRG to the LPG. In the VCN attached to the DRG, enable BGP routing for the route to propagate to the VCN. In the other VCN add a route rule in the route table that points to the LPG as the next hop.

Create a Dynamic Routing Gateway (DRG) in the tenancy, add the two VCNs as VCN attachments and add routes in each one of the VCN route tables with the DRG as the next hop for the CIDR prefix of the other VCN.

Correct Answer: B, D, F

To enable routing between two Virtual Cloud Networks (VCNs) in the same region but different compartments, the following are valid Oracle Cloud Infrastructure (OCI) options: Create two Dynamic Routing Gateways (DRGs), attach one VCN to each DRG, and establish Remote Peering Connections (RPC) between the DRGs, then add appropriate routes in the VCNs' route tables. Another method is adding a Local Peering Gateway (LPG) to each VCN, establishing a peering connection between the LPGs, and configuring the routes accordingly in the VCNs' route tables. A third option is to create a single Dynamic Routing Gateway (DRG), attach both VCNs to the DRG, and add routes in the VCN route tables using the DRG as the next hop for the CIDR prefixes of the other VCN. These solutions ensure proper routing and connectivity between the VCNs without requiring FastConnect.

Question 7 of 58

You are a cloud architect at a financial organization. The development team is tasked with creating a cloud native application to be hosted on Oracle Cloud Infrastructure (OCI). The development team has followed a microservices-based approach and created containerized images of the cloud-native application and pushed them to OCI Registry (OCIR).
How can you deploy a load balanced application to your OCI Container Engine for Kubernetes (OKE) cluster using these images?

Create a load balancer using the OCI load balancer service, add the load balancer service IP in the manifest file, add the location of the docker image to the manifest file, and deploy the manifest file.

Create a named secret, add the secret to the manifest file, add the location of the docker image to the manifest file, add the service of type LoadBalancer in the manifest file, and deploy the manifest file.

Create an auth token, add the auth token to the manifest file, add the location of the docker image to the manifest file, add the service of type LoadBalancer in the manifest file, and deploy the manifest file.

Add the location of the docker image to the manifest file, deploy the manifest file. All applications are load-balanced by default in OKE

Correct Answer: B

To deploy a load balanced application to your OCI Container Engine for Kubernetes (OKE) cluster using the containerized images, you need to follow a few key steps. First, you must create a named secret, which allows the Kubernetes cluster to pull the images securely from the OCI Registry (OCIR). Then, you add this secret to the manifest file alongside the location of the docker image. Additionally, you need to include a service of type LoadBalancer in the manifest file to ensure the application is accessible externally via a load balancer. Finally, deploy the manifest file. This process ensures secure and balanced deployment of the containerized application on OKE.

Question 8 of 58

Your organization needs to migrate legacy monolithic applications into cloud-native containerized RESTful microservices. The development team is testing the use of packaged procedures with containers in a fully serverless environment. Before migrating the existing code to production, the team decides to perform a lift and shift of the monolithic application and code the new features that are essential for serverless microservices.
You want to carry out a steady migration to the Oracle Cloud Infrastructure (OCI) platform, making the new microservice functionalities available while maintaining the monolithic application for all the other activities. You also want to integrate the legacy monolithic application with the new microservices to have a single interface with simplified management for auditing and monitoring while meeting operational and compliance requirements.
How can you meet this requirement?

Push the container image to OCIR, build a serverless function using the OCI Functions serviceBYOD (Bring-Your-Own-Dockerfile) feature, build an API deployment specification with serverless functions as the back-end, and use an OCI API gateway to provide front-end access to that function.

Push the container image to the OCI code repository, create an instance template with a Docker container running the image, and create an instance pool with autoscaling configuration. Use the OCI load balancer to provide an API endpoint to connect with the microservice.

Push the container image to the OCI code repository, build a serverless function using the OCI Functions service BYOD feature, build an API deployment specification with serverless functions as the back-end, and use an OCI API gateway to provide front-end access to that function.

Push the container image to OCIR, create an instance template with a Docker container running the image, and create an instance pool with autoscaling configuration. Use the OCI load balancer to provide an API endpoint to connect with the microservice.

Correct Answer: A

To migrate legacy monolithic applications into cloud-native containerized RESTful microservices on Oracle Cloud Infrastructure (OCI), the most appropriate approach is to utilize serverless technologies and API gateways. Pushing the container image to Oracle Cloud Infrastructure Registry (OCIR) ensures that the containerized application is stored in a central, managed registry. Building a serverless function with OCI Functions using the Bring-Your-Own-Dockerfile (BYOD) feature allows you to deploy the new microservices in a fully serverless environment. Creating an API deployment specification with these serverless functions as the back-end and using an OCI API gateway to provide front-end access ensures you have a single interface for managing and monitoring both the monolithic and microservices components. This approach meets the requirements for ease of integration, simplified management, auditing, and monitoring, while also ensuring compliance.

Question 9 of 58

Which three scenarios are suitable for the use of Oracle Cloud Infrastructure (OCI) Autonomous Transaction Processing - Serverless (ATP-S) deployment? (Choose three.)

A well-established, online auction marketplace is running an application where there is database usage 24x7, but also has peaks of activity that are hard to predict. When the peaks happen, the total activities may reach 3 times the normal activity level.

A midsize company is considering migrating its legacy on-premises MongoDB database to Oracle Cloud Infrastructure (OCI). The database has significantly higher workloads on weekends than weekdays.

A manufacturing company is running Oracle E-Business Suite application on-premises. They are looking to move this application to OCI and they want to use a managed database offering for their database tier.

A developer working on an internal project needs to use a database during work hours but doesn't need it during nights or weekends. The project budget requires her to keep costs low.

A small startup is deploying a new application for eCommerce and it requires a database to store customers' transactions. The team is unsure of what the load will look like since it is a new application.

Correct Answer: A, D, E

Oracle Cloud Infrastructure (OCI) Autonomous Transaction Processing - Serverless (ATP-S) deployment is well-suited for scenarios where there is variable and unpredictable workload, need for a managed database service, and cost efficiency. In scenario A, the online auction marketplace experiences unpredictable peaks, which ATP-S can handle dynamically. In scenario D, the developer needs the database only during work hours, allowing costs to be kept low as ATP-S can scale up and down automatically. In scenario E, the startup's uncertain workload can benefit from ATP-S as it provides the flexibility to handle varying loads without a significant upfront investment in database infrastructure.

Question 10 of 58

You designed and deployed your Autonomous Data Warehouse (ADW) so that it is accessible from your on-premise data center and servers running on both private and public networks in Oracle Cloud Infrastructure (OCI).
Exam 1z0-997-22: Question 10 - Image 1

As you are testing the connectivity to your ADW database from the different access paths, you notice that the server running on the private network is unable to connect to ADW.
Which two steps do you need to take to enable connectivity from the server on the private network to ADW? (Choose two.)

Add an entry in the Security List of the ADW allowing ingress traffic for CIDR block 10.2.2.0/24

Add an entry in the route table (associated with the private subnet) with destination of 0.0.0.0/0; target type of Internet Gateway, add a stateful egress rule to the security list (associated with the private subnet) with destination of 0.0.0.0/0 and for all IP protocols.

Add an entry in the access control list of ADW for IP address 129.146.160.11

Add an entry in the access control list of ADW for CIDR block 10.2.2.0/24.

Add an entry in the route table (associated with the private subnet) with destination of 0.0.0.0/0; target type of NAT Gateway, add a stateful egress rule to the security list (associated with the private subnet) with destination of 0.0.0.0/0 and for all IP protocols.

Correct Answer: A, E

To enable connectivity from the private network to the ADW, you need to ensure two things: First, the ADW's security list must allow ingress traffic from the private network's CIDR block (10.2.2.0/24). Second, since the private subnet does not have direct Internet access, you need to route the traffic via a NAT Gateway, adding an entry in the route table associated with the private subnet with a destination of 0.0.0.0/0 and a target type of NAT Gateway. Additionally, a stateful egress rule must be added to the security list associated with the private subnet to allow all IP protocols to the destination 0.0.0.0/0.