Cisco®
Oracle
CompTIA
Checkpoint
ISC
EC-Council
EXIN
Fortinet
ITIL®
Juniper
Microsoft
VMware
Avaya
SAP
Google
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk®
All Vendors
  2. Home
  3. Exams
  4. Oracle
  5. 1Z0-997-22

Free Oracle 1Z0-997-22 Exam Questions (page: 3)

Page 3 of 37
PDF with 165 Questions

You have an Oracle database system in a virtual cloud network (VCN) that needs to be accessible on port 1521 from your on-premises network CIDR 172.17.0.0/24.
You have the following configuration currently.
Virtual cloud network (VCD) is associated with a Dynamic Routing Gateway (DRG), and DRG has an active IPSec connection with your on-premises data center.
Oracle database system is hosted in a private subnet
The private subnet route table has the following configuration The private subnet route table has following configuration.

However, you are still unable to connect to the Oracle Database system. Which action will resolve this issue?


  1. Add an EGRESS rule in network security group as following.

  2. Add a route rule in the private subnet route table as following.

  3. Add an EGRESS rule in private subnet scurity list as following.

  4. Add an EGRESS rule in private subnet security list as following.

Answer(s): C



You have provisioned a new VM.DenseIO2.24 compute instance with local NVMe drives. The compute instance is running production application. This is a write heavy application, with a significant Impact to the business it the application goes down.
What should you do to help maintain write performance and protect against NVMe devices failure.

  1. NVMe drive have built in capability to recover themself so no other actions are required
  2. Configure RAID 6 for NVMe devices.
  3. Configure RAID 1 for NVMe devices.
  4. Configure RAID 10 for NVMe devices.

Answer(s): D

Explanation:

VM.DeselO2.24 compute instance include locally attached NVMe devices. These devices provide extremely low latency, high performance block storage that is ideal for big data, OLTP, and any other workload that can benefit from high-performance block storage.
A protected RAID array is the most recommended way to protect against an NVMe device failure. There are three RAID levels that can be used for the majority of workloads:
RAID 1: An exact copy (or mirror) of a set of data on two or more disks; a classic RAID 1 mirrored pair contains two disks
RAID 10: Stripes data across multiple mirrored pairs. As long as one disk in each mirrored pair is functional, data can be retrieved
RAID 6: Block-level striping with two parity blocks distributed across all member disks If you need the best possible performance and can sacrifice some of your available space, then RAID 10 array is an option.



A civil engineering company is running an online portal In which engineers can upload there constructions photos, videos, and other digital files.
There is a new requirement for you to implement: the online portal must offload the digital content to an Object Storage bucket for a period of 72 hours. After the provided time limit has elapsed, the portal will hold all the digital content locally and wait for the next offload period.
Which option fulfills this requirement?

  1. Create a pre-authenticated URL for the entire Object Storage bucket to read and list the content with an expiration of 72 hours.
  2. Create a pre authenticated URL lot each object that Is uploaded to the Object Storage bucket with an expiration of 72 hours.
  3. Create a Dynamic Group with matching rule for the portal compute Instance and grant access to the Object Storage bucket for 72 hours.
  4. Create a pre authenticated URL for the entire Object Storage bucket to write content with an expiration of 72 hours.

Answer(s): D

Explanation:

Pre-authenticated requests provide a way to let users access a bucket or an object without having their own credentials, as long as the request creator has permission to access those objects.
For example, you can create a request that lets operations support user upload backups to a bucket without owning API keys. Or, you can create a request that lets a business partner update shared data in a bucket without owning API keys.
When creating a pre-authenticated request, you have the following options:
You can specify the name of a bucket that a pre-authenticated request user has write access to and can upload one or more objects to.
You can specify the name of an object that a pre-authenticated request user can read from, write to, or read from and write to.

Scope and Constraints
Understand the following scope and constraints regarding pre-authenticated requests: Users can't list bucket contents.
You can create an unlimited number of pre-authenticated requests. There is no time limit to the expiration date that you can set.
You can't edit a pre-authenticated request. If you want to change user access options in response to changing requirements, you must create a new pre-authenticated request.
The target and actions for a pre-authenticated request are based on the creator's permissions. The request is not, however, bound to the creator's account login credentials. If the creator's login credentials change, a pre-authenticated request is not affected.
You cannot delete a bucket that has a pre-authenticated request associated with that bucket or with an object in that bucket.



You are working as a solution architect for an online retail store to create a portal to allow the users to pay for their groceries using credit cards. Since the application is not fully compliant with the Payment Card Industry Data Security Standard (PCI DSS), your company is looking to use a third party payment service to process credit card payments. The third party service allows a maximum of Spelunk IP addresses 5 public IP addresses at a time However, your website is using Oracle Cloud Infrastructure (OCI) Instance Pool Auto Scaling policy to create up to create up to 15 Instances during peak traffic demand, which are launched In VCN private in VCN private subnets and attached to an OCI public Load Balancer. Upon user payment, the portal connects to the payment service over the Interne! to complete the transaction.

What solution can you implement to make sure that all compute Instances can connect to the third party system to process the payments aw peak traffic demand?

  1. Route credit card payment request from the compute instances through the NAT Gateway. On the third-party services, whitelist the public IP associated with the NAT Gateway.
  2. Create an OCI Command Line Interface (CLI) script to automatically reserve public IP address for the compute instances. On the third-party services, whitelist the Reserved public IP.
  3. Whitelist the Internet Gateway Public IP on the third party service and route all payment requests through the Internet Gateway.
  4. Route payment request from the compute instances through the OCI Load Balancer, which will then be routed to the third party service.

Answer(s): A


Reference:

https://docs.oracle.com/en-us/iaas/Content/Balance/Concepts/balanceoverview.htm



Viewing page 3 of 37



Post your Comments and Discuss Oracle 1Z0-997-22 exam prep with other Community members:

1Z0-997-22 Exam Discussions & Posts