1Z0-1072-21 Online Practice Questions and Answers

You are a network architect and have designed the network infrastructure of a three-tier application on

Oracle Cloud Infrastructure (OCI). In the architecture, back-end DB servers are in a private subnet. One of

your DB administrators requests to have access to OCI object storage service.

How can you meet this requirement?

A. Add a new route rule to the private subnet route table to route default traffic to the internet gateway.

B. Attach a public IP address to the instances in the private subnet, and then add a new route rule to the private subnet route table to route default traffic to the internet gateway.

C. Create a dynamic routing gateway (DRG) and attach it to your virtual cloud network (VCN). Add a

default route rule to the private subnets route table and set the target as DRG.

D. Create a service gateway, add a new route rule to the private subnet route table that uses object storage as target type.

Which three must be configured for a load balancer to accept incoming traffic? (Choose two.)

A. a listener

B. a back-end server

C. a back end set

D. a security list that is open on a listener port

E. a certificate

Which two are required to create an IPSec VPN connection? (Choose two.)

A. security list

B. static route CIDR

C. name

D. compute instance

You are the Solutions Architect of a large company and are tasked with migrating all your services to Oracle Cloud Infrastructure. As part of this, you first design a Virtual Cloud Network (VCN) with a public subnet and a private subnet. Then in order to provide Internet connectivity to the instances in your private subnet, you create an Oracle Linux instance in your public subnet and configure NAT on it. However, even after adding all related security list rules and routes in the Route Table, your private subnet instances still cannot connect to the Internet. Which action should you perform to enable Internet connectivity?

A. Disable "Source and Destination Check" on the VNIC of your Linux instance.

B. There is no way that a private subnet can connect to the Internet.

C. Create a Dynamic Routing Gateway (DRG) and route your private IP traffic to the DRG.

D. Restart the NAT instance.

Which two statements are true about policies?

A. You can use read, write, manage, and inspect as verbs for defining a policy.

B. A policy is a document that specifies who can access which Oracle Cloud Infrastructure resources that your company has, and how.

C. Users need not do anything but still have to be added to a group with appropriate policies defined.

D. You can deny access to a group via policies.

You have provisioned an Autonomous Data Warehouse (ADW) database with 16 enabled OCPUs and need to configure the consumer group for your application. Which two are true when deciding the number of sessions for each application? (Choose two.)

A. The MEDIUM and LOW consumer group can run up to 16 concurrent SQL statements if HIGH consumer group has 0 SQL statements

B. The HIGH consumer group can run up to 16 concurrent SQL statements as long as MEDIUM and LOW consumer groups have 0 SQL statements

C. The MEDIUM consumer group can run 20 concurrent SQL statements when HIGH consumer group has 0 SQL statements

D. The HIGH consumer group can run up to 16 concurrent SQL statements in addition to 32 concurrent SQL statements in MEDIUM and LOW consumer group each

E. The HIGH consumer group can run 3 concurrent SQL statements when MEDIUM consumer group has 0 SQL statements

Which two statements are true about restoring a block volume from a manual or policy-based block volume backup? (Choose two.)

A. It can be restored as new volumes with different sizes from the backups

B. It can be restored as a new volume to any AD across different regions

C. It must be restored as a new volume to the same availability domain (AD) on which the original block volume backup resides

D. It can be restored as a new volume to any AD in the same region

You are designing a two-tier web application in Oracle Cloud Infrastructure (OCI). Your clients want to

access the web servers from anywhere, but want to prevent access to the database servers from the

Internet.

Which is the recommended way to design the network architecture?

A. Create public subnets for web servers and private subnets for database servers in your virtual cloud network (VCN), and associate separate internet gateways for each subnet.

B. Create public subnets for web servers and associate a dynamic routing gateway with that subnet, and a private subnet for database servers with no association to dynamic gateway.

C. Create public subnets for web servers and private subnets for database servers in your VCN, and associate separate security lists and route tables for each subnet.

D. Create a single public subnet for your web servers and database servers, and associate only your web servers to internet gateway.

Which statement is true about Data Guard Implementation in DB systems?

A. Both DB systems must be in the same compartment, and they must be the same shape

B. You can define the backup window and set custom backup retention period for the automatic database backup schedule.

C. You cannot manage Oracle database initialization parameters at a global level.

D. You cannot manage the database as sys/sysdba.

You created a public subnet and an internet gateway in your virtual cloud network (VCN) of Oracle Cloud Infrastructure. The public subnet has an associated route table and security list. However, after creating several compute instances In the public subnet, none can reach the Internet. Which two are possible reasons for the connectivity Issue?

A. A NAT gateway is needed to enable the communication flow to internet.

B. There Is no stateful egress rule In the security list associated with the public subnet.

C. There Is no dynamic routing gateway (DRG) associated with the VCN.

D. The route table has no default route for routing traffic to the internet gateway.

E. There is no stateful ingress rule in the security list associated with the public subnet.