1z0-1124-25 Practice Questions

When configuring transitive routing through a network appliance in a hub-and-spoke VCN topology, which configuration is necessary to ensure that traffic from a spoke VCN to another spoke VCN passes through the network appliance?

Your security policy mandates that all communication between your compute instances in a private subnet and OCI Object Storage must be authenticated and authorized using IAM policies and not rely on public IP addresses. Which OCI networking feature is the most appropriate to satisfy this requirement?

Which of the following is a disadvantage of using a public internet-based VPN connection for migrating large datasets from another cloud provider to OCI?

You have deployed an application on OCI that uses a Regional Load Balancer with an HTTPS listener. You want to enforce end-to-end encryption and ensure that the connection between the load balancer and the backend servers is also encrypted. Which load balancer configuration step is MANDATORY to achieve this?

Your organization requires that all backups of critical application data stored in OCI Object Storage from an instance within a private subnet must remain within the Oracle Cloud Infrastructure network and not traverse the public internet. Which OCI networking component should you configure to enable this secure and private access to Object Storage?

Your company requires a dedicated, high-bandwidth, and low-latency connection between your on-premises data center and your OCI tenancy. You need to connect to OCI in a region where Oracle is not directly present with a FastConnect location. You also want to leverage a third-party network provider for this connectivity. Which FastConnect connectivity model would be the most suitablefor your requirements?

Your company is deploying a high-throughput, low-latency financial application on OCI. This application relies on raw TCP connections and requires connection persistence to maintain session state. You anticipate extremely high traffic volume and need a load balancer that can handle millions of concurrent connections with minimal overhead. You also want to use private endpoints. Which OCI load balancing option provides the most appropriate solution to meet these stringent performance and security requirements?

You are designing an OCI networking architecture for a multi-tier application using Infrastructure as Code (IaC). The architecture includes an OKE cluster for the front-end, a set of Compute instances for the back-end, and an Autonomous Database. You want to ensure that all traffic between these components is encrypted. You are using Transport Layer Security (TLS) for end-to-end encryption but are concerned about the overhead of encrypting all traffic within the VCN. Which approach provides the MOST balanced approach to security and performance, minimizing the overhead of encryption while still protecting sensitive data?

Your company is migrating its on-premises data center to OCI. A critical security requirement is to maintain centralized logging and auditing of all network traffic traversing the OCI Network Firewall. You need to ensure that every session that passes through the firewall is logged and can be analyzed for security events. Which OCI service should you configure in conjunction with the Network Firewall to achieve this centralized logging?

You are setting up a Site-to-Site VPN connection between your on-premises network and OCI. You have generated the IKE pre-shared key and configured the VPN connection in OCI. You now need to configure your on-premises Customer Premises Equipment (CPE). Which information from the OCI console is ESSENTIAL for configuring your on-premises CPE to establish the VPN connection?