CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Alibaba
  5. ACP-CLOUD1

Free ACP-CLOUD1 Exam Braindumps (page: 11)

Page 11 of 45
PDF with 176 Questions

Before data communication is setup, the security groups match the security group rules one by one to query whether to allow access requests Assume that the user has created two security group rules 1 and 2 The protocol type, port range, authorization type, and authorization object of the two security group rules are the same. The difference is that Rule 1 is a denial policy, rule 2 is an allowed policy, so the following statement is correct_______ (Number of correct answers 2)

  1. If rule 1 and rule 2 have the same priority, the rule of the denial policy takes effect first, and the rule of the allowed policy does not take effect
  2. If rule 1 and rule 2 have the same priority, the rule of the allowed policy takes effect first, and the rule that of the denial policy does not take effect.
  3. If rule 1 and rule 2 have different priorities, the rule with a small priority number takes effect
  4. If rule 1 and rule 2 have different priorities, the rule with a large priority number takes effect.

Answer(s): A,C

Explanation:

Before data communication is set up, the security groups match the security group rules one by one to query whether to allow access requests. If the protocol type, port range, authorization type, and authorization object of two security group rules are the same, the following rules apply:

If the two rules have the same priority, the rule of the denial policy takes effect first, and the rule of the allowed policy does not take effect. This is because the security group rules follow the principle of minimum permission, which means that the most restrictive rule is applied when there is a conflict.

If the two rules have different priorities, the rule with a smaller priority number takes effect. This is because the security group rules follow the principle of priority, which means that the rule with a higher priority (lower number) is applied when there is a conflict.


Reference:

ECS Security Groups - Alibaba Fundamentals - Cloud Academy, Security group rules - Elastic Compute Service - Alibaba Cloud Documentation Center



Company A constructed a sales management platform using three Elastic Compute Service (ECS) instances. One of the instances runs MySQL, and is used as the database server. The other two instances are used as Web servers After some time, the number of employees in Company A dramatically increases, leading to higher sales volumes At the same time, the platform response speed is gradually decreasing too.

According to the report from CloudMonitor, the average CPU utilization rate of the two Web servers exceeds 70%, and database load reaches 75% Company A can select Alibaba Cloud_________ services.to cope with the issue and optimize the performance. (Number of correct answers: 2)

  1. Import database data into Object Storage Service (OSS) to share the storage pressure on the platform
  2. Incorporate Server Load Balancer (SLB) and add additional ECS instances to relieve the load on existing ECS instances
  3. Use Content Delivery Network (CDN) to enhance content loading speed
  4. Replace the self-built MySQL database with ApsaraDB for RDS to obtain better database performance, and utilize RDS read-only instances to handle read-only requests

Answer(s): B,D

Explanation:

Option B is correct because using Server Load Balancer (SLB) and adding additional ECS instances can help to distribute the traffic among multiple servers and improve the availability and scalability of the platform. SLB can also provide health checks and fault tolerance for the ECS instances1

Option D is correct because replacing the self-built MySQL database with ApsaraDB for RDS can provide better database performance, security, and reliability. ApsaraDB for RDS is a fully managed cloud database service that supports MySQL, SQL Server, PostgreSQL, and other engines. It can automatically handle tasks such as backup, recovery, monitoring, and patching. Using RDS read-only instances can also handle read-only requests and reduce the load on the primary database2

Option A is incorrect because importing database data into Object Storage Service (OSS) will not share the storage pressure on the platform. OSS is a cloud storage service that provides high durability, availability, and scalability for storing unstructured data such as images, videos, and documents. It is not suitable for storing structured data such as database tables. Moreover, importing data into OSS will incur additional costs and latency3

Option C is incorrect because using Content Delivery Network (CDN) will not enhance the content loading speed of the platform. CDN is a distributed network that delivers content to users based on their geographic locations, the origin of the content, and the content delivery server. It is mainly used to accelerate the delivery of static content such as images, videos, and scripts. It is not effective for dynamic content such as database queries and transactions4


Reference:

1: Server Load Balancer - Alibaba Cloud

2: ApsaraDB for RDS - Alibaba Cloud

3: Object Storage Service - Alibaba Cloud

4: Content Delivery Network - Alibaba Cloud



Which of the following scenarios can be done using Alibaba Cloud Express Connection? (Number of correct answers: 2)

  1. Intranet communication between VPCs and Smart Access Gateway in customers different branch offices
  2. Intranet communication between a VPC and servers in an external IDC
  3. Intranet communication between two VPCs in different accounts and different CIDR Blocks
  4. Intranet communication between two VPCs under the same account in the same region

Answer(s): A,B

Explanation:

Alibaba Cloud Express Connect is a service that enables high-bandwidth, reliable, secure, and private connections between different networks, such as VPC networks across regions, Alibaba Cloud accounts, and on-premise data centers. It supports different connection methods, such as physical connections, virtual border routers, and Express Cloud Connect.

Scenario A: Intranet communication between VPCs and Smart Access Gateway in customers different branch offices. This scenario can be achieved by using Express Cloud Connect, which is based on the hardware capacities of Smart Access Gateway and provides SD-WAN capabilities. Express Cloud Connect allows you to connect your branch offices to Alibaba Cloud through a dedicated partner backbone network, and access VPC networks in all regions.

Scenario B: Intranet communication between a VPC and servers in an external IDC. This scenario can be achieved by using physical connections, which are dedicated network connections between on- premise data centers and VPC networks. You can lease a line from your ISP or work with an Alibaba Cloud partner to establish a physical connection to Alibaba Cloud. This way, you can access VPC networks in all regions with high bandwidth and low latency.

Scenario C: Intranet communication between two VPCs in different accounts and different CIDR Blocks. This scenario can be achieved by using peering connections, which are logical connections that enable communication between VPC networks. Peering connections support cross-region and cross-account scenarios, and allow you to connect VPC networks with different CIDR blocks. However, peering connections are not part of Alibaba Cloud Express Connect, but a separate service called Cloud Enterprise Network.

Scenario D: Intranet communication between two VPCs under the same account in the same region. This scenario can also be achieved by using peering connections, which are logical connections that enable communication between VPC networks. Peering connections support intra-region and same-account scenarios, and allow you to connect VPC networks with different CIDR blocks. However, peering connections are not part of Alibaba Cloud Express Connect, but a separate service called Cloud Enterprise Network.


Reference:

1: Express Connect - Alibaba Cloud
2: Introduction to Cloud Enterprise Network - Alibaba Cloud Document Center



You would like to deploy your applications on Alibaba Cloud to meet requirements including cost reduction, improving service availability, fast deployment- and redundant backup Alibaba Cloud_________products can help meet these requirements (Number of correct answers 3)

  1. Elastic Compute Service (ECS) image achieve efficient and convenient deployment.
  2. Utilizing Content Delivery Network (CDN) can meet the demands for redundant backup.
  3. Utilizing Server Load Balancer (SLB) and ECS instances can improve data reliability.
  4. Elastic Compute Service (ECS) snapshot satisfies the needs of rapid recovery of applications and data.
  5. Reasonable selection of Regions/Zones meets the location needs of application deployment as well as the demands for redundantly backup critical business applications and data.

Answer(s): A,C,E

Explanation:

A) Elastic Compute Service (ECS) image achieve efficient and convenient deployment. This is correct because ECS images are pre-configured operating system environments that can be used to create and launch ECS instances quickly and easily. ECS images can reduce the cost and time of deploying applications on Alibaba Cloud.

B) Utilizing Content Delivery Network (CDN) can meet the demands for redundant backup. This is incorrect because CDN is not a backup service, but a service that accelerates the delivery of content to end users by caching it at edge nodes. CDN can improve the performance and availability of applications, but it does not provide data redundancy or backup.

C) Utilizing Server Load Balancer (SLB) and ECS instances can improve data reliability. This is correct because SLB is a service that distributes traffic among multiple ECS instances based on predefined rules. SLB can improve the availability and reliability of applications by eliminating single points of failure and ensuring that requests are routed to healthy instances.

D) Elastic Compute Service (ECS) snapshot satisfies the needs of rapid recovery of applications and data. This is incorrect because ECS snapshot is a feature that allows users to create point-in-time backups of ECS disks. ECS snapshots can be used to restore data or create new disks, but they do not satisfy the needs of rapid recovery of applications and data. Snapshots are stored in Object Storage Service (OSS), which is a low-cost and durable storage service, but it has higher latency and lower performance than disks.
E) Reasonable selection of Regions/Zones meets the location needs of application deployment as well as the demands for redundantly backup critical business applications and data. This is correct because regions and zones are the physical locations of Alibaba Cloud data centers. Regions are geographically isolated from each other, and zones are physically independent within the same region. Users can choose the regions and zones that best suit their application deployment needs, such as proximity to customers, compliance with local regulations, and availability of services. Users can also use multiple regions and zones to achieve redundancy and backup for their critical business applications and data.


Reference:

1: ECS Images 2: CDN Overview 3: SLB Overview 4: ECS Snapshots 5: Regions and Zones



Page 11 of 45



Post your Comments and Discuss Alibaba ACP-CLOUD1 exam with other Community members:

Mr.Linh commented on June 16, 2024
Thank for exam
Anonymous
upvote

DANIEL SHEWAREGA BEYEN commented on March 22, 2024
Gteat cloud engines
Anonymous
upvote

anomymous commented on March 20, 2024
userfull material
INDONESIA
upvote

Emmanuel commented on February 18, 2024
the previous exam and the updated one are both exactly the same, how does it work that you guys say updated yet its the same copy?????????? and what is reffreed to the 132 questions when you can only access 70, what exactly is goijg on here? i would like my refund, as i have downloaded the same exam twice
Anonymous
upvote

Ko Htet commented on October 17, 2023
thanks for your support.
Anonymous
upvote

Tai commented on August 28, 2023
wonderful material
SOUTH AFRICA
upvote

Ko Htet commented on October 17, 2023
thanks for your support.
Anonymous
upvote

zzz_sleep commented on September 26, 2023
nice question
Anonymous
upvote

Tai commented on August 28, 2023
Wonderful material
SOUTH AFRICA
upvote

Nasir khan commented on August 21, 2023
Some answers are not correct.
Anonymous
upvote