Question No. 1

A telecom company has an application running in Oracle Cloud Infrastructure (OCI) Germany Central (eu-frankfurt-1) region. They want to configure Disaster Recovery (DR) site in the OCI UK South (uk-london-1) region. Which is the most cost effective option to help set up application and persistence layers in the DR site?

AApplication layer: configure events service rule in eu-frankfurt-1 region to filter Health Checks event failure and route traffic to uk-london-1 region in the event of a disaster.
Persistence layer: set up policy to schedule cross-region automated backups of block volumes between eu-frankfurt-1 and uk-london-1 regions.

BApplication layer: configure Traffic Management steering policy with Load Balancing policy between servers in eu-frankfurt-1 and uk-london-1 regions.
Persistence layer: set up policy to schedule cross-region automated backups of block volumes between eu-frankfurt-1 and uk-london-1 regions.

CApplication layer: Set us a public laod balancerin the eu-frankfurt-1 region. Create a backend set with instances running in bothuk-frankfurt-1 and uk-london-1 regions.
Persistence layer: Set up OCI Object Storage replication from eu-frankfurt-1 region to uk-london-1 region.

DApplication layer: configure Traffic Management steering policy with Failover policy between servers in eu-frankfurt-1 and uk-london-1 regions.
Persistence layer: set up policy to schedule cross-region automated backups of file systems in File Storage service between eu-frankfurt-1 and uk-london-1 regions.

Show Answer

Correct Answer: B

Question No. 2

You are creating a compute instance using Oracle Cloud Infrastructure (OCI) Console. You decide to use Oracle provided image for the compute instance launch. Which option is TRUE when using Oracle provided images?

AOn Windows images, custom user data scripts are executed using cloud-init to perform various tasks such as
enabling GPU support.

BOracle provided images do not support the ability to supply a custom metadata during instance launch.

CFor a Linux based image, access to host over the internet is permitted only via SSH protocol and all other
remote access is disabled.

DIf you choose a non-Windows image, the only way to download and update packages is by running apt or yum commands.

Show Answer

Correct Answer: C

https://blogs.oracle.com/developers/post/working-with-oracle-cloud-infrastructure-custom-compute-images

https://docs.oracle.com/en-us/iaas/Content/Compute/Tasks/managingcustomimages.htm

Question No. 3

You are using the Oracle Cloud Infrastructure (OCI) OS Management service to manage updates and patches for the Oracle Linux 8 environments on your compute instances in OCI. You have verified that the OS Management Service Agent (osms-agent) is installed and running properly in the instances.

One of the compute instances is not getting the updates from OS Management Service. You use the following command to validatethatyourinstance cannot reach the OS Management Ingestion service by running curl https://ingestion.osms.

.oci.oraclecloud.com/

Which Is NOT a possible reason for this issue?

AThe instance Is in a private subnet with a NAT gateway.

BThe instance is in a private subnet with a privateendpointwith security rules configured to access the OS
Managementingestion service

CThe instance is in a private subnet with a service gatewaythat uses the All <region> Services in Oracle Services
Network CIDR label.

DThe Instance is in a publicsubnet with an Internet gateway.

Show Answer

Correct Answer: B

Question No. 4

You developed a microservices based application that runs on Oracle Cloud Infrastructure (OCI) Container Engine for Kubernetes (OKE). Your security team wants to use SSL termination for this application. What should you do to create a secure SSL termination for this application using fewest steps?

ACreate a self-signed certificate and it's corresponding key. Create a Kubernetes secret using the certificate and the key. Then add these an notations to the Kubernetes service:
annotations:
service.beta.kubernetes.io/oci-load-balancer-ssl-ports: '443'
service.beta.kubernetes.io/oci-load-balancer-security-list-management-mode:'Frontend'

BGenerate a self-signed certificate using Let's Encrypt. Use that certificate on OCI Load Balancer. Create the Kubernetes service usingthis load balancer.

CAdd these annotationsto the Kubernetes service:
annotations:
service.beta.kubernetes.io/oci-load-balancer-ssl-ports: '443'
service.beta.kubernetes.io/oci-load-balancer-ssl-secret-key: ssl-secret-key

DCreate a self-signed certificate and it's corresponding key. Create a Kubernetes secret using then add these annotationsto the Kubernetes service.
Service.beta.kubernete.io/oci-load-balancer-ssl-ports: '443'
Service.beta.kubernete.io/oci-load-balancer-tls-secret:SSL-CERTIFICATE-SECRET

Show Answer

Correct Answer: D

Question No. 5

You developed a microservices based application that runs on Oracle Cloud Infrastructure (OCI) Container Engine for

Kubernetes (OKE). It has multiple endpoints that needs to be exposed to the public internet.

What Is the most cost-effective way to expose multiple application endpoints without adding complexity to the application?

AUse clusterlP service type in Kubernetesfor each of yourservice endpointand use a load balancerto expose the endpoints.

BUse separate load balancerinstancefor each service but use the 100 Mbps loadbalanceroption.

CDeploy an Ingress controllerand use it to expose each endpointwith its own routing endpoint.

DUse NodePort service type in Kubernetesfor each of yourservice endpointand use node's public IP address to acccess the applications.

Show Answer

Correct Answer: C

Free Oracle 1Z0-997-22 Exam Actual Questions

The questions for 1Z0-997-22 were last updated On Sep 18, 2024