You deployed a web server in Oracle Cloud Infrastructure using an ephemeral public IP. After a few changes in your web server configuration, you rebooted the server and a new public IP was associated to your instance. What should you do to prevent this from happening again?
Correct Answer: C
A public IP address is an IPv4 address that is reachable from the internet. If a resource in your tenancy needs to be directly reachable from the internet, it must have a public IP address. Depending on the type of resource, there might be other requirements. There are two types of public IPs: Ephemeral: Think of it as temporary and existing for the lifetime of the instance. Reserved: Think of it as persistent and existing beyond the lifetime of the instance it's assigned to. You can unassign it and then reassign it to another instance whenever you like. Exception: reserved public IPs on public load balancers. To create a new reserved public IP in your pool Confirm you're viewing the region and compartment where you want to create the reserved public IP. Open the navigation menu. Under Core Infrastructure, go to Networking and click Public IPs. Click Create Reserved Public IP. Enter the following: Name: An optional friendly name for the reserved public IP. The name doesn't have to be unique, and you can change it later. Avoid entering confidential information. Compartment: Leave as is. Tags:Optionally, you can apply tags. If you have permissions to create a resource, you also have permissions to apply free-form tags to that resource. To apply a defined tag, you must have permissions to use the tag namespace. For more information about tagging, see Resource Tags. If you are not sure if you should apply tags, skip this option (you can apply tags later) or ask your administrator. Click Create Reserved Public IP. To assign a reserved public IP to a private IP Prerequisite: The private IP must not have an ephemeral or reserved public IP already assigned to it. If it does, first delete the ephemeral public IP, or unassign the reserved public IP. Confirm you're viewing the compartment that contains the instance with the private IP you're interested in. Open the navigation menu. Under Core Infrastructure, go to Compute and click Instances. Click the instance to view its details. Under Resources, click Attached VNICs. The primary VNIC and any secondary VNICs attached to the instance are displayed. Click the VNIC you're interested in. Under Resources, click IP Addresses. The VNIC's primary private IP and any secondary private IPs are displayed. For the private IP you're interested in, click the Actions icon (three dots), and then click Edit. In the Public IP Address section, for Public IP Type, select the radio button for Reserved Public IP. Enter the following: Compartment: The compartment that contains the reserved public IP you want to assign. Reserved Public IP: The reserved public IP you want to assign. You have three choices: Create a new reserved public IP. You may optionally provide a friendly name for it. The name doesn't have to be unique, and you can change it later. Avoid entering confidential information. Assign a reserved public IP that is currently unassigned. Move a reserved public IP from another private IP. Click Update.
Question 12
You need to create a high performance shared file system, and have been advised to use file storage service (FSS). You have logged into the Oracle Cloud Infrastructure console, created a file system, and followed the steps to mount the shared file system on your Linux instance. However, you are still unable to access the shared file system from your Linux instance. What is the likely reason for this?
Correct Answer: A
Explanation Virtual firewall rules for your VCN. Your VCN comes with a default security list, and you can add more. These security lists provide ingress and egress rules that specify the types of traffic allowed in and out of the instances. You can choose whether a given rule is stateful or stateless. Security list rules must be set up so that clients can connect to file system mount targets. For more information about how security lists work in Oracle Cloud Infrastructure, see Security Lists in the Networking documentation. For information about setting up specific security list rules required for mount target traffic, see Configuring VCN Security List Rules for File Storage. About Security explains how security lists interact with other types of security in your file system. https://docs.cloud.oracle.com/iaas/Content/File/Concepts/filestorageoverview.htm
Question 13
You are responsible for creating and maintaining an enterprise application that consists of multiple storage volumes across multiple instances. The storage volumes include boot volumes and block volumes for your data storage. You need to create backups of these storage volumes in the most time-efficient manner. How can you meet this requirement?
Correct Answer: D
Question 14
Which statement is true about Oracle Cloud Infrastructure (OCI) object storage support for server-side encryption?
Correct Answer: B
Explanation References: https://www.oracle.com/cloud/storage/object-storage-faq.html - Oracle Object Storage supports server-side encryption. All data stored in Oracle Object Storage is automatically encrypted - Encryption is automatically enabled for all data with no action required on the part of customers. - Oracle encrypt both the object data and the user-defined metadata associated with the object.
Question 15
Your customer is using an Oracle Cloud Infrastructure (OCI) compartment named Production that hosts several resources such as compute instances, DB Systems and File Systems. Each resource in the Production compartment is tagged. The customer's security team wants to restrict access to DB Systems to only the authorized group of DBAs. Which OCI Tagging capability can be used to meet this requirement?
