If you need to accelerate a certain domain name (such as abc.com) via Alibaba Cloud Content Delivery Network (CDN), you must add it to "CDN Domain Name List" in the CDN service. After added successfully, you will get a CNAME address A Next, you need to modify domain name resolution and direct the domain name (such as abc.com) to CNAME address
The DNS service provider used by the domain name (such as abc.com) does not need to support intelligent resolution, because the CNAME address allocated to the domain name will point to an IP address that is intelligently managed by Alibaba Cloud CDN system. Therefore, option C is not a correct description of modifying domain name resolution. Reference: What is Alibaba Cloud CDN? - CDN - Alibaba Cloud Documentation Center and Alibaba Cloud CDN
Which of the following Alibaba Cloud products can provide Anti-DDoS service? (Choose two.)
Alibaba Cloud provides two main products for Anti-DDoS protection: Anti-DDoS Origin Service, which protects against attacks at the origin server level, and Anti-DDoS Pro Service, which offers advanced DDoS mitigation for applications hosted on Alibaba Cloud. Security Center and Cloud Firewall offer different security functionalities but do not provide direct Anti-DDoS services.
Object Storage Service (OSS) supports access logging. A bucket owner can activate access logging for their buckets in the OSS management console. When access logging is activated for bucket A, OSS automatically accesses the request logs for this bucket (in hours) and generates and writes an object to the user-specified bucket B according to certain naming rules. Which of the following
statements is true for OSS logging?
OSS logging is a feature that allows you to record the access requests to your OSS buckets. You can enable and configure logging for a bucket in the OSS console or by using the OSS API. When logging is enabled for a bucket A, OSS automatically generates access log objects every hour and stores them in a specified bucket B. The log objects follow a predefined naming convention that includes the source bucket name, the date, the hour, and a unique string.
The documentation also states that buckets A and B can be separate buckets or the same bucket, but they must belong to the same user1. This means that you cannot store the access logs of one user's bucket in another user's bucket. Therefore, the correct answer is A.
1: Logging - Object Storage Service - Alibaba Cloud Documentation Center
When using Alibaba Cloud SLB to forward layer 7 (HTTP) service requests. SLB will replace the IP address in the HTTP header file to forward requests.
Therefore the source IP address that can be seen on the backend ECS instance is the IP address of SLB instead of the clients real IP address.
When using Alibaba Cloud SLB to forward layer 7 (HTTP) service requests, SLB will replace the IP address in the HTTP header file to forward requests. Therefore, the source IP address that can be seen on the backend ECS instance is the IP address of SLB instead of the client's real IP address. However, SLB also provides a feature called X-Forwarded-For (XFF) that can help you obtain the real IP address of the client. XFF is a standard HTTP header field that records the original IP address of the client and the proxy servers that the request passes through. You can enable XFF on the SLB console or by using the API, and then configure your backend ECS instance to parse the XFF header field and get the real IP address of the client. Reference: 1 - SLB overview - Alibaba Cloud Document Center - Layer 7 listeners - X-Forwarded-For
When using Alibaba Cloud SLB, users can enable the Health Check function. Layer-4 SLBs (TCP protocol) determine the availability of ECS instances through _________________.
For Layer-4 SLB using TCP, the health check determines ECS instance availability based on the successful completion of a TCP 3-way handshake. This ensures that the backend server is reachable and can accept connections, which is critical for reliable TCP-based load balancing.
