• Home
  • Blogs
  • Latest [Sep 08, 2022] 1z0-997-21 Exam with Accurate Oracle Cloud Infrastructure 2021 Architect Professional PDF Questions [Q24-Q47]

Latest [Sep 08, 2022] 1z0-997-21 Exam with Accurate Oracle Cloud Infrastructure 2021 Architect Professional PDF Questions [Q24-Q47]

Share

Latest [Sep 08, 2022] 1z0-997-21 Exam with Accurate Oracle Cloud Infrastructure 2021 Architect Professional PDF Questions

Take a Leap Forward in Your Career by Earning Oracle 145 Questions


Oracle 1z0-997-21 Exam Syllabus Topics:

TopicDetails
Topic 1
  • Design and implement hybrid network architectures to meet high availability, bandwidth and latency requirements
  • Implement and operate solutions in OCI
Topic 2
  • Design, implement and operate solutions for security and governance
  • Implement solutions to meet business and technical requirements
Topic 3
  • Evaluate multi-cloud solution architectures
  • Conduct Monitoring, observability and alerting in OCI
Topic 4
  • Design for Security and Compliance
  • Evaluate and implement databases
  • Operate and troubleshoot databases
Topic 5
  • Create architecture patterns including N-tier applications, microservices, and serverless architectures
  • Implement and troubleshoot database migrations
Topic 6
  • Manage infrastructure using OCI CLI, APIs and SDKs
  • Plan and design solutions in Oracle Cloud Infrastructure (OCI)
Topic 7
  • Design, implement and operate solutions to meet compliance requirements
  • Plan and design solutions to meet business and technical requirements

 

NEW QUESTION 24
Your Oracle database is deployed on-premises and has produced 100 TB database backup locally. You have a disaster recovery plan that requires you to create redundant database backups in Oracle Cloud Infrastructure (OCI).
Once the initial backup is completed, the backup must be available for retrieval in less than 30 minutes to support the Recovery Time Objective (RTO) of your solution.
Which is the most cost effective option to meet these requirements?

  • A. Setup an IPsec VPNConnect between on-premises data center and OCI. Then to use OCI CLI command to upload database backups to OCI Object Storage Archive tier as the final destination.
  • B. Use OCI Storage Gateway to transfer the backup files to OCI Object Storage Archive tier as the final destination.
  • C. Setup a FastConnect connection between on-premises data center and OCI. Then to use OCI CLI command to upload database backups to OCI Object Storage Standard tier as the final destination.
  • D. Use OCI Storage Gateway to transfer the backup files to OCI Object Storage Standard tier as the final destination.

Answer: D

 

NEW QUESTION 25
You are currently working for a public health care company based in the United Stats. Their existing patient records runs in an on-premises data center and the customer is sending tape backups offsite as part of their recovery planning.
You have developed an alternative archival solution using Oracle Cloud Infrastructure (OCI) that will save the company a significant amount of mom on a yearly basis. The solution involves storing data in an OCI Object Storage bucket After reviewing your solution with the customer global Compliance (GRC) team they have highlighted the following security requirements:
* All data less than 1 year old must be accessible within 2 hour.
* All data must be retained for at least 10 years and be accessible within 48 hours
* AH data must be encrypted at rest
* No data may be transmitted across the public Internet
Which two options meet the requirements outlined by the customer GRC team?

  • A. Create an OCI Object Storage Standard tier bucket. Configure a lifecycle policy to delete any object that is older than 7 years
  • B. Provision a FastConnect link to the closest OCI region and configure a public peering virtual circuit
  • C. Create a VPN connection between your on premises data center and OCI. Create a Virtual Cloud Network (VCN) along with an OCI Service Gateway for OCI Object Storage.
  • D. Create an OCI Object Storage Standard tier bucket Configure a lifecycle policy to archive any object that Is older than 365 days
  • E. Provision a FastConnect link to the closest OCI region and configure a private peering virtual circuit.

Answer: B,D

Explanation:
The Oracle Services Network is a conceptual network in Oracle Cloud Infrastructure that is reserved for Oracle services. These services have public IP addresses that you typically reach over the internet. However, you can access the Oracle Services Network without the traffic going over the internet. There are different ways, depending on which of your hosts need the access:
Hosts in your on-premises network:
- Private access through a VCN with FastConnect private peering or VPN Connect: The on-premises hosts use private IP addresses and reach the Oracle Services Network by way of the VCN and the VCN's service gateway.
- Public access with FastConnect public peering: The on-premises hosts use public IP addresses.
regarding which Fastconnect Public peering: To access public services in Oracle Cloud Infrastructure without using the internet. For example, Object Storage, the Oracle Cloud Infrastructure Console and APIs, or public load balancers in your VCN. Communication across the connection is with IPv4 public IP addresses. Without FastConnect, the traffic destined for public IP addresses would be routed over the internet. With FastConnect, that traffic goes over your private physical connection.
so Answer 4 will be the best answer that meets the customer requirement A service gateway lets your virtual cloud network (VCN) privately access specific Oracle services without exposing the data to the public internet. No internet gateway or NAT is required to reach those specific services. The resources in the VCN can be in a private subnet and use only private IP addresses. The traffic from the VCN to the Oracle service travels over the Oracle network fabric and never traverses the internet.
Object Lifecycle Management lets you automatically manage the archiving and deletion of objects. By using Object Lifecycle Management to manage your Object Storage and Archive Storage data, you can reduce your storage costs and the amount of time you spend managing data.

 

NEW QUESTION 26
You are running a legacy application in a compute instance on Oracle Cloud Infrastructure (OCI). To provide enough space for it to store internal data, a block volume is attached to the instance in paravirtualized mode.
Your application is not resilient to crash-consistent backup.
What should you do to backup the block volume in a secure and cost effective way? (Choose the best answer.)

  • A. Save your application data, detach the block volume and create a backup.
  • B. Create a volume group, add the boot volume and then run the volume group backup.
  • C. Save your application data, detach the block volume and create a clone.
  • D. Create a backup, detach the block volume and save your application data.

Answer: A

 

NEW QUESTION 27
You are working as a cloud consultant for a major media company. In the US and your client requested to consolidate all of their log streams, access logs, application logs, and security logs into a single system.
The client wants to analyze all of their logs In real-time based on heuristics and the result should be validated as well. This validation process requires going back to data samples extracted from the last 8 hours.
What approach should you take for this scenario?

  • A. Stream all the logs and cloud events of Events service to Oracle Streaming Service. Build a client process that will apply heuristics on the logs and store them in an Object Storage.
  • B. Create a bare-metal instance big enough to host a syslog enabled server to process the logs and store logs on the locally attached NVMe SSDs for rapid retrieval of logs when needed.
  • C. Set up an OCI Audit service and ingest all the API arils from Audit service pragmatically to a client side application to apply heuristics and save the result in an OCI Object storage.
  • D. Create an auto scaling pool of syslog-enabled servers using compute instances which will store the logs In Object storage, then use map reduce jobs to extract logs from Object storage, and apply heuristics on the logs.

Answer: A

Explanation:
The Oracle Cloud Infrastructure Streaming service provides a fully managed, scalable, and durable storage solution for ingesting continuous, high-volume streams of data that you can consume and process in real time. Streaming can be used for messaging, ingesting high-volume data such as application logs, operational telemetry, web click-stream data, or other use cases in which data is produced and processed continually and sequentially in a publish-subscribe messaging model.
Streaming Usage Scenarios
Here are some of the many possible uses for Streaming:
Metric and log ingestion: Use the Streaming service as an alternative for traditional file-scraping approaches to help make critical operational data more quickly available for indexing, analysis, and visualization.
Messaging: Use Streaming to decouple components of large systems. Streaming provides a pull/bufferbased communication model with sufficient capacity to flatten load spikes and the ability to feed multiple consumers with the same data independently. Key-scoped ordering and guaranteed durability provide reliable primitives to implement various messaging patterns, while high throughput potential allows for such a system to scale well.
Web/Mobile activity data ingestion: Use Streaming for capturing activity from websites or mobile apps (such as page views, searches, or other actions users may take). This information can be used for realtime monitoring and analytics, as well as in data warehousing systems for offline processing and reporting.
Infrastructure and apps event processing: Use Streaming as a unified entry point for cloud components to report their life cycle events for audit, accounting, and related activities.

 

NEW QUESTION 28
You are a solutions architect for a global health care company which has numerous data centers around the globe. Due to the ever growing data that your company is storing, you were Instructed to set up a durable, cost effective solution to archive you data from your existing on-premises tape based backup Infrastructure to Oracle Cloud Infrastructure (OCI).
What is the most-effective mechanism to Implement this requirement?

  • A. Setup fastConnect to connect your on premises network to your OCI VCN and use rsync tool to copy your data to OCI Object Storage Archive tier.
  • B. Setup an on premises OCI Storage Gateway which will back up your data to OCI Object Storage Archive tier.
  • C. Setup an on premises OCI Storage Gateway which will back up your data to OCI object Storage Standard tier. Use Object Storage life cycle policy management to move any data older than 30 days from Standard to Archive tier.
  • D. Use the File Storage Service in OCI and copy the data from your existing tape based backup to the shared file system
  • E. Setup an on-promises OCI Storage Gateway which will back up your data to OCI Object Storage Standard

Answer: B

Explanation:
Oracle Cloud Infrastructure offers two distinct storage tiers for you to store your unstructured data. Use the Object Storage Standard tier for data to which you need fast, immediate, and frequent access. Use the Archive Storage service's Archive tier for data that you access infrequently, but which must be preserved for long periods of time. Both storage tiers use the same manageable resources (for example, objects and buckets). The difference is that when you upload a file to Archive Storage, the object is immediately archived. Before you can access an archived object, you must first restore the object to the Standard tier.
you can use Storage Gateway to move files to Oracle Cloud Infrastructure Archive Storage as a cost effective backup solution. You can move individual files and compressed or uncompressed ZIP or TAR archives. Storing secondary copies of data is an ideal use case for Storage Gateway.

 

NEW QUESTION 29
A customer is in a process of shifting their web based Sales application from their own data center located in US West to OCI India West (Mumbai) region. They want to do it in a controlled manner and initially only 1% of the traffic will be steered to the servers in OCI. After verification of everything is working as expected, the company is gradually planning to increase the ratio until they are comfortable with fully migrating all traffic to OCI.
Which of the following solution can be used in this situation?

  • A. OCI DNS and Traffic Management with Geolocation Steering policy
  • B. OCI DNS and Traffic Management with Load Balancer Steering policy
  • C. OCI DNS and Traffic Management with Failover Steering policy
  • D. OCI DNS and OCI Load Balancer Service

Answer: A

Explanation:
STEERING POLICIES is A framework to define the traffic management behavior for your zones. Steering policies contain rules that help to intelligently serve DNS answers.
FAILOVER
Failover policies allow you to prioritize the order in which you want answers served in a policy (for example, Primary and Secondary). Oracle Cloud Infrastructure Health Checks are leveraged to determine the health of answers in the policy. If the Primary Answer is determined to be unhealthy, DNS traffic will automatically be steered to the Secondary Answer.
LOAD_BALANCE
Load Balancer policies allow distribution of traffic across multiple endpoints. Endpoints can be assigned equal weights to distribute traffic evenly across the endpoints or custom weights may be assigned for ratio load balancing. Oracle Cloud Infrastructure Health Checks are leveraged to determine the health of the endpoint. DNS traffic will be automatically distributed to the other endpoints, if an endpoint is determined to be unhealthy.
ROUTE_BY_GEO
Geolocation-based steering policies distribute DNS traffic to different endpoints based on the location of the end user. Customers can define geographic regions composed of originating continent, countries or states/provinces (North America) and define a separate endpoint or set of endpoints for each region.
ROUTE_BY_ASN
ASN-based steering policies enable you to steer DNS traffic based on Autonomous System Numbers (ASN).
DNS queries originating from a specific ASN or set of ASNs can be steered to a specified endpoint.
ROUTE_BY_IP
IP Prefix-based steering policies enable customers to steer DNS traffic based on the IP Prefix of the originating query.

 

NEW QUESTION 30
You are working as a cloud engineer for an IoT startup company which is developing a health monitoring pet collar for dogs and cats. The company collects biometric Information of the pet every second and then sends it to Oracle Cloud Infrastructure (OCI) Your task is to come up with an architecture which will accept and process the monitoring data as well as provide complete trends and health reports to the pet owners. The portal should be highly available, durable, and scalable with an additional feature for showing real time biometric data analytics.
which architecture will help you meet this requirement?

  • A. Use OCI Streaming Service to collect the incoming biometric data. Use an open source Hadoop cluster to analyze the data horn streaming service. Store the results to OCI Autonomous Data warehouse (ADW) to handle complex analytics.
  • B. Create an OCI Object Storage bucket to collect the incoming biometric data from the smart pet collar Fetch the data horn OC\ Object storage to OCI Autonomous Data Warehouse (ADW) every day and run analytics Jobs with it
  • C. Launch an open source Hadoop cluster to collect the Incoming biometrics data Use an Open source Fluentd cluster to analyze the- data me results to OCI Autonomous Transaction Processing (ADW)to handle complex analytics
  • D. Use OCI Streaming Service to collect the incoming biometric data. Use Oracle Functions to process the date and show the results on a real-time dashboard and store the results lo OCI Object Storage Store the data In OCI Autonomous Data warehouse (ADW) to handle analytics.

Answer: D

 

NEW QUESTION 31
After performing maintenance on an Oracle Linux compute instance the system is returned to a running state You attempt to connect using SSH but are unable to do so. You decide to create an instance console connection to troubleshoot the issue.
Which three tasks would enable you to connect to the console connection and begin troubleshooting?

  • A. Use SSH to connect to the public: IP address of the compute Instance and provide the console connection OCID as the username.
  • B. Stop the compute Instance using the Oracle cloud Infrastructure (OCI) Command Line interface (CLI).
  • C. Use SSH to connect to the service endpoint of the console connection service
  • D. Upload an API signing key for console connection authentication.
  • E. Reboot the compute instance using the Oracle Cloud Infrastructure (OCI) Management Console
  • F. edit the Linux boot menu to enable access to console.

Answer: C,E,F

Explanation:
The Oracle Cloud Infrastructure Compute service provides console connections that enable you to remotely troubleshoot malfunctioning instances, such as:
An imported or customized image that does not complete a successful boot.
A previously working instance that stops responding.
the steps to connect to console and troubleshoot the OS Issue
1- Before you can connect to the serial console you need to create the instance console connection.
Open the navigation menu. Under Core Infrastructure, go to Compute and click Instances.
Click the instance that you're interested in.
Under Resources, click Console Connections.
Click Create Console Connection.
Upload the public key (.pub) portion for the SSH key. You can browse to a public key file on your computer or paste your public key into the text box.
Click Create Console Connection.
When the console connection has been created and is available, the status changes to ACTIVE.
2- Connecting to the Serial Console
you can connect to the serial console by using a Secure Shell (SSH) connection to the service endpoint of the console connection service Open the navigation menu. Under Core Infrastructure, go to Compute and click Instances.
Click the instance that you're interested in.
Under Resources, click Console Connections.
Click the Actions icon (three dots), and then click Copy Serial Console Connection for Linux/Mac.
Paste the connection string copied from the previous step to a terminal window on a Mac OS X or Linux system, and then press Enter to connect to the console.
If you are not using the default SSH key or ssh-agent, you can modify the serial console connection string to include the identity file flag, -i , to specify the SSH key to use. You must specify this for both the SSH connection and the SSH ProxyCommand, as shown in the following line:
ssh -i /<path>/<ssh_key> -o ProxyCommand='ssh -i /<path>/<ssh_key> -W %h:%p -p 443...
Press Enter again to activate the console.
3- Troubleshooting Instances from Instance Console Connections
To boot into maintenance mode
Reboot the instance from the Console.
When the reboot process starts, switch back to the terminal window, and you see Console messages start to appear in the window. As soon as you see the GRUB boot menu appear, use the up/down arrow key to stop the automatic boot process, enabling you to use the boot menu.
In the boot menu, highlight the top item in the menu, and type e to edit the boot entry.
In edit mode, use the down arrow key to scroll down through the entries until you reach the line that starts with either linuxefi for instances running Oracle Autonomous Linux 7.x or Oracle Linux 7.x, or kernel for instances running Oracle Linux 6.x.
At the end of that line, add the following:
init=/bin/bash
Reboot the instance from the terminal window by entering the keyboard shortcut CTRL+X.

 

NEW QUESTION 32
By copying block volume backups to another region at regular intervals, it makes it easier for you to rebuild applications and data in the destination region if a region-wide disaster occurs in the source region.
Which IAM Policy statement allows the VolumeAdmins group to copy volume backups between regions '

  • A. Allow group VolumeAdmins to use volumes in tenancy
  • B. Allow group VolumeAdmins to inspect volumes in tenancy
  • C. Allow group VolumeAdmins to copy volume' backups in tenancy
  • D. Allow group VolumeAdmins to manage volume-family In tenancy

Answer: D

Explanation:
The backups feature of the Oracle Cloud Infrastructure Block Volume service lets you make a point-intime snapshot of the data on a block volume.These backups can then be restored to new volumes either immediately after a backup or at a later time that you choose.
You can copy block volume backups between regions using the Console, command line interface (CLI), SDKs, or REST APIs.
To copy volume backups between regions, you must have permission to read and copy volume backups in the source region, and permission to create volume backups in the destination region.
to do all things with block storage volumes, volume backups, and volume groups in all compartments with the exception of copying volume backups across regions.
Allow group VolumeAdmins to manage volume-family in tenancy
The aggregate resource type volume-family does not include the VOLUME_BACKUP_COPY permission, so to enable copying volume backups across regions you need to ensure that you include the third statement in that policy, which is:
Allow group VolumeAdmins to use volume-backups in tenancy where request.permission='VOLUME _BACKUP_COPY'

 

NEW QUESTION 33
You are working as a solution architect for an online retail store to create a portal to allow the users to pay for their groceries using credit cards. Since the application is not fully compliant with the Payment Card Industry Data Security Standard (PCI DSS), your company is looking to use a third party payment service to process credit card payments.
The third party service allows a maximum of Spelunk IP addresses 5 public IP addresses at a time However, your website is using Oracle Cloud Infrastructure (OCI) Instance Pool Auto Scaling policy to create up to create up to 15 Instances during peak traffic demand, which are launched In VCN private in VCN private subnets and attached to an OCI public Load Balancer. Upon user payment, the portal connects to the payment service over the Interne! to complete the transaction What solution can you implement to make sure that all compute Instances can connect to the third party system to process the payments aw peak traffic demand?

  • A. Create an OCI Command Line Interface (CLI) script to automatically reserve public IP address for the compute instances. On the third-party services, whitelist the Reserved public IP.
  • B. Whitelist the Internet Gateway Public IP on the third party service and route all payment requests through the Internet Gateway.
  • C. Route credit card payment request from the compute instances through the NAT Gateway. On the third-party services, whitelist the public IP associated with the NAT Gateway.
  • D. Route payment request from the compute instances through the OCI Load Balancer, which will then be routed to the third party service.

Answer: C

 

NEW QUESTION 34
You want to automate the processing of new Image files to generate thumbnails. the expected rate is 10 new files every hour.
Which of the following is the most cost effective option to meet this requirement in Oracle Cloud Infrastructure (OCI)?

  • A. Upload files to an OCI Object storage bucket. Every time a file is uploaded, an event is emitted. Write a rule to filter these events with an action to trigger a function in Oracle Functions. The function processes the image in the file and stores the thumbnails back in an Object storage bucket.
  • B. Upload files to an OCI Object storage bucket. Every time a file is uploaded, trigger an event with an action to provision a compute instance with a cloud-init script to access the file, process it and store it back in an Object storage bucket. Terminate the instance using Autoscaling policy after the processing is finished.
  • C. Build a web application to ingest the files and save them to a NoSQL Database. Configure OCI Events service to trigger a notification using Oracle Notification Service (ONS). ONS invokes a custom application to process the image files to generate thumbnails. Store thumbnails in a NoSQL Database table.
  • D. Upload all files to an Oracle Streaming Service (OSS) stream. Set up a cron job to invoke a function in Oracle Functions to fetch data from the stream. Invoke another function to process the image files and generate thumbnails. Store thumbnails in another OSS stream.

Answer: A

Explanation:
You can invoke a function that you've deployed to Oracle Functions by triggered by an event in the Events service when update the Object storage to fetch the data then the function can process the File and store back to Object storage

 

NEW QUESTION 35
A customer has a Virtual Machine instance running in their Oracle Cloud Infrastructure tenancy. They realized that they wrongly picked a smaller shape for their compute instance. They are reaching out to you to help them fix the issue.
Which of the below options is best recommended to suggest to the customer?

  • A. OCI doesn't allow such an operation.
  • B. Delete the running instance and spin up a new instance with the desired shape.
  • C. Change the shape of the virtual machine instance using the Change Shape feature available in the console.
  • D. Change the shape of instance without reboot, but stop all the applications running on instance beforehand to prevent data corruption.

Answer: C

Explanation:
Explanation
You can change the shape of a virtual machine (VM) instance without having to rebuild your instances or redeploy your applications. This lets you scale up your Compute resources for increased performance, or scale down to reduce cost.
When you change the shape of an instance, you select a different processor, number of cores, amount of memory, network bandwidth, and maximum number of VNICs for the instance. The instance's public and private IP addresses, volume attachments, and VNIC attachments remain the same.

 

NEW QUESTION 36
Your company needs to migrate a business critical application from your data center to Oracle Cloud Infrastructure (OCI). The application runs on Oracle Database and both the application and database servers run on Oracle Linux version 7. The application server is WebLogic server running on multiple 4-core servers and the database is deployed as an Oracle Database Enterprise Edition RAC database on 2 servers (4-cores each).
Which method of database migration should you choose so that the application has minimal impact? (Choose the best answer.)

  • A. Deploy Virtual Machine RAC DB system on OCI and use the ZDM tool for the database migration.
  • B. Deploy Virtual Machine RAC DB system on OCI and use the Oracle Database Backup module with RMAN to migrate the data from customer on-premises to OCI.
  • C. Deploy Autonomous Transaction Processing Database on OCI and use the MV2ADB tool for the database migration.
  • D. Deploy Exadata Cloud Service Base rack and use Oracle Data Pump tool to migrate the data from customer on-premises to OCI.

Answer: A

Explanation:
https://docs.oracle.com/en/database/oracle/zero-downtime-migration/19.2/zdmug/introduction-to-zero-downtime-migration.html#GUID-FF4CA22F-CC83-4118-AF26-6E7BE224717F

 

NEW QUESTION 37
You have been asked to implement a bespoke financial application in Oracle Cloud Infrastructure using virtual machine instances controlled by Autoscaling across multiple Availability Domains. The application stores transaction logs, intermediate transaction data, and audit data and needs to store this on a persistent, durable data store accessible from all of the application servers. The application requires the file system to be mounted in the /audit folder on the Linux file system. The system needs to tolerate the failure of two or more Fault Domains and still maintain data integrity. The solution should be as low maintenance as possible.
What storage architecture should you suggest?

  • A. Store the data on Oracle Object Storage mounted at the /audit mount point on all the Linux instances using the default mount options.
  • B. Implement a single instance and install an NFS server, configure and create an NFS share, and mount this as /audit on the application instances.
  • C. Use File Storage Service(FSS). Configure FSS to operate from all Availability Domains the application servers operate in and mount the file system in the /audit folder.
  • D. Use locally attached NVMe instances and configure RAID 0 replication between servers.

Answer: C

 

NEW QUESTION 38
An Oracle Cloud Infrastructure (OCI) Public Load Balancer's SSL certificate is expiring soon. You noticed the Load Balancer is configured with SSL Termination only. When the certificate expires, data traffic can be interrupted and security compromised.
What steps do you need to take to prevent this situation?

  • A. Add the new SSL certificate to the Load Balancer, update backend servers to work with a new certificate and edit listeners so they can use the new certificate bundle.
  • B. Add the new SSL certificate to the Load Balancer, update listeners and backend sets so they can use the new certificate bundle.
  • C. Add the new SSL certificate to the Load Balancer and update listeners to use the new certificate bundle.
  • D. Add the new SSL certificate to the Load Balancer and update backend servers to use the new certificate bundle.
  • E. Add the new SSL certificate to the Load Balancer and implement end to end SSL so it can encrypt the traffic from clients all the way to the backend servers.

Answer: A

Explanation:
https://docs.cloud.oracle.com/en-us/iaas/Content/Balance/Tasks/managingcertificates.htm

 

NEW QUESTION 39
A global retailer is setting up the cloud architecture to be deployed in Oracle Cloud infrastructure (OCI) which will have thousands of users from two major geographical regions: North America and Asia Pacific. The requirements of the services are:
* Service needs to be available 27/7 to avoid any business disruption
* North American customers should be served by application running In North American regions
* Asia Pacific customers should be served by applications running In Asia Pacific regions
* Must be resilient enough to handle the outage of an entire OCI region

  • A. OCl DNS, Traffic Management with Failover steering policy
  • B. OCl DNS, Traffic Management with Geolocation steering policy
  • C. OCl DNS, Traffic Management with Geolocation steering policy. Health Checks
  • D. OCl DNS,' Traffic Management with Load Balancer steering policy, Health Checks

Answer: C

Explanation:
GEOLOCATION STEERING
Geolocation steering policies distribute DNS traffic to different endpoints based on the location of the end user. Customers can define geographic regions composed of originating continent, countries or states/provinces (North America) and define a separate endpoint or set of endpoints for each region. Combine with Oracle Health Checks to fail over from one region to another

 

NEW QUESTION 40
A fast growing E-commerce company has deployed their online shopping application on Oracle Cloud Infrastructure. The application was deployed on compute instances with Autoscaling configuration for application servers fronted by a load balancer and OCI Autonomous Transaction Processing (ATP) in the backend. In order to promote their e-commerce platform 50% discount was announced on all the products for a limited period. During the day 1 of promotional period it was observed that the application is running slow and company's hotline is flooded with complaints.
What could be two possible reasons for this situation?

  • A. Autoscaling has already scaled to the maximum number of instances specified in the configuration and there is no room for scaling further.
  • B. The health check on some of the backend servers has failed and the load balancer has taken those servers temporarily out of rotation.
  • C. As part of Autoscaling, the load balancer shape has dynamically changed to a larger shape to handle more incoming traffic and the system was slow for a short time during this change.
  • D. The health check on some of the backend servers has failed and the load balancer was rebooting these servers.

Answer: A,B

 

NEW QUESTION 41
A company is running High Performance Computing workloads on Oracle Cloud Infrastructure and are using OCI bare metal compute shape. They have decided to create a custom image of the bare metal instance's boot disk and use it to launch other instances.
Which of the following is a NOT a true statement?

  • A. Custom images do not include the data from any attached block volumes.
  • B. Before you create a custom image of an instance, you must disconnect all iSCSI attachments and remove all iscsid node configurations from the instance.
  • C. Editing custom Windows images is not supported due to hardware differences between shapes.
  • D. You can create additional custom images of an instance while the instance is engaged in the image creation process.

Answer: D

 

NEW QUESTION 42
You are a solution architect working with a startup that has decided to move their workload to Oracle Cloud Infrastructure. Since their workload is small, upon architecting, you decide its sufficient to use 8 compute instances to run their workload. The company wants to use a common storage for their instances. So, you propose the idea of attaching a block volume to multiple instances to provide a common storage.
Which of the below option is NOT true for such a solution?

  • A. Once you attach a block volume to an instance as read-only, it can only be attached to other instances as read-only.
  • B. You can delete a block volume from one instance without detaching it from all other instances there by keeping other instance's storage intact.
  • C. Block volumes attached as read-only are configured as shareable by default.
  • D. If the block volume is already attached to an instance as read/write non-shareable you can't attach it to another instance until you detach it from the first instance.

Answer: B

 

NEW QUESTION 43
Which of the following is NOT a good use case for using the functionality available in the Oracle Cloud Infrastructure (OCI) Events service?

  • A. Publish a notification when long lived tasks complete, such as OCI Autonomous Database backup completion.
  • B. Publish all events in a specific compartment to Oracle Streaming service for later analysis.
  • C. Capture Monitoring Alarms and invoke Autoscaling of compute instances.
  • D. Triggers Function using Oracle Functions when new files are uploaded in an OCI Object Storage bucket.
  • E. Trigger a notification when a function completes its execution.

Answer: C

 

NEW QUESTION 44
You are building a highly available and fault tolerant web application deployment for your company. Similar application delayed by competitors experienced web site attack including DDoS which resulted in web server failing.
You have decided to use Oracle Web Application Firewall (WAF) to implement an architecture which will provide protection against such attacks and ensure additional configuration will you need to implement to make sure WAF is protecting my web application 24*7.
Which additional configuration will you need to Implement to make sure WAF Is protecting my web application 24*7?

  • A. Configure new rules based on now vulnerabilities and mitigations
  • B. Configure multiple origin servers
  • C. Configure auto scaling policy and it to WAF instance.
  • D. Configure Control Rules to send traffic to multiple web servers

Answer: B

Explanation:
Origin Management
An origin is an endpoint (typically an IP address) of the application protected by the WAF. An origin can be an Oracle Cloud Infrastructure load balancer public IP address. A load balancer IP address can be used for high availability to an origin. Multiple origins can be defined, but only a single origin can be active for a WAF. You can set HTTP headers for outbound traffic from the WAF to the origin server. These name value pairs are then available to the application.
Oracle Cloud Infrastructure Web Application Firewall (WAF) is a cloud-based, Payment Card Industry (PCI) compliant, global security service that protects applications from malicious and unwanted internet traffic.
WAF can protect any internet facing endpoint, providing consistent rule enforcement across a customer's applications. WAF provides you with the ability to create and manage rules for internet threats including Cross-Site Scripting (XSS), SQL Injection and other OWASP-defined vulnerabilities. Unwanted bots can be mitigated while tactically allowed desirable bots to enter. Access rules can limit based on geography or the signature of the request.
Distributed Denial of Service (DDoS)
A DDoS attack is an often intentional attack that consumes an entity's resources, usually using a large number of distributed sources. DDoS can be categorized into either Layer 7 or Layer 3/4 (L3/4) A layer 7 DDoS attack is a DDoS attack that sends HTTP/S traffic to consume resources and hamper a website's ability to delivery content or to harm the owner of the site. The Web Application Firewall (WAF) service can protect layer 7 HTTP-based resources from layer 7 DDoS and other web application attack vectors.

 

NEW QUESTION 45
An automobile company wants to deploy their CRM application for Oracle Database on Oracle Cloud Infrastructure (OC1) DB Systems for one of major clients. In compliance with the Business Continuity Program of the client, they need to provide a Recovery Point objective (RPO) of 24 hours and a Recovery time objective (RTO) of 24 hours and Recovery Time Objective (RTO) of 1 hour.
The CRM application should be available oven in me event that an entire on Region is down.
Which approach Is the most suitable and cost effective configuration for this scenario?

  • A. Deploy a 2 node Virtual Machine (VM) Oracle RAC database in one region and replicate the database to a 2 node VM Oracle RAC database in another region using a manual setup and configuration of Oracle Data Guard.
  • B. Deploy an Autonomous Transaction Processing (Serverless) database in one region and replicate it to an Autonomous Transaction Processing (Serverless) database in another region Oracle GoldenGate.
  • C. Deploy a 1 node VM Oracle database in one region and replicate the database to a 1 node VM Oracle database in another region using a manual setup and configuration of Oracle Data Guard.
  • D. Deploy a 1 node VM Oracle database in one region. Manual Configure a Recovery Manager (RMAN) database backup schedule to take hourly database backups. Asynchronously copy the database backups to object storage in another OCI region, If the primary OCI region is unavailable launch a new 1 new VM Database in the other OCI region restore the production database from the backup.

Answer: C

Explanation:
You can configure the Autonomous Database instance as a target database for Oracle GoldenGate. But You can't set up Oracle Autonomous Database as a source database for Oracle GoldenGate.
Recovery Point objective (RPO) of 24 hours and Recovery Time Objective (RTO) of 1 hour
- To provision new VM and restore the production database from the backup on object storage, will exceed the RTO 1 hour
- You can create the standby DB system in a different availability domain from the primary DB system for availability and disaster recovery purposes. With Data Guard and switchover/failover can meet RTO
1 hour.
- RAC Database is not required in this solution. Standalone will be most suitable and cost effective

 

NEW QUESTION 46
A retail company runs their online shopping platform entirely on Oracle cloud Infrastructure (OCI). This is a 3-tier web application that Includes a Mbps Load Balancer. Virtual Machine Instances for web and an Oracle DB Systems Virtual Machine Due to unprecedented growth, they noticed an Increase in the Incoming traffic to their website and all users start getting 503 (Service Unavailable) errors.
What is the potential problem in this scenario?

  • A. All the web servers are too busy and not able to answer any request from users.
  • B. The Traffic Management Policy is not set to load Balancer the traffic to the web servers.
  • C. The Load Balancer health check status Indicates critical situation for half of the backend webservers
  • D. The Database Is down hence users can not access the web site
  • E. You did not configure a Service Gateway to allow connection between web servers and load Balance

Answer: A

Explanation:
A 503 Service Unavailable Error is an HTTP response status code indicating that a server is temporarily unable to handle the request. This may be due to the server being overloaded or down for maintenance.

 

NEW QUESTION 47
......

Authentic Best resources for 1z0-997-21 Online Practice Exam: https://ucertify.examprepaway.com/Oracle/braindumps.1z0-997-21.ete.file.html

Related Blogs

more
Oracle 1z0-997-21 Certification Practice Exam