Who is responsible for patching, upgrading, and maintaining the worker nodes in Oracle Cloud Infrastructure (OCI) Container Engine for Kubernetes (OKE)? (Choose the best answer.) Oracle Support It is automated The user Independent Software Vendors.
Your Oracle Cloud Infrastructure (OCI) Container Engine for Kubernetes (OKE) administrator has created an OKE cluster with one node pool in a public subnet. You have been asked to provide a log file from one of the nodes for troubleshooting purpose. Which step should you take to obtain the log file? Use the username opc and password to login. It is impossible because OKE is a managed Kubernetes service. SSH into the nodes using the private key. SSH into the node using the public key.
As a Cloud Native developer, you have written a web service for your company. However, your security team has suggested that your web service should address Distributed Denial-of-Service (DDoS) attack. You are time-constrained and you need to ensure that this is implemented as soon as possible. What should you do in this scenario? (Choose the best answer.) Use a third party service integration to Implement DDoS attack mitigation. Re-write your web service and implement rate limiting. Use the OCI Virtual Cloud Network (VCN) segregation to control DDoS. Use the OCI API Gateway service and configure rate limiting.
You are building a cloud native serverless travel application with multiple Oracle Functions in Java, Python, and Node.js. You need to build and deploy these functions to a single application named travel-app. Which command will help you complete this task successfully? fn function deploy app travel-app--all fn app deploy --app travel-app --all fn app --app travel-app deploy --ext java pyljs fn deploy --app travel-app --all.
(CHK_1>3) You have an e-commerce application that loads customers' transactional data into the Oracle Cloud Infrastructure (OCI) Streaming service. The data must now be extracted and transformed before sending it to a third-party REST endpoint. You have been directed to leverage the OCI Service Connector Hub to automate this process. Which configuration option would address this requirement? Configure a new service connector as follows: • Source: Streaming • Task: Functions • Target: Functions Configure a new service connector as follows: • Source: Streaming • Task: API Gateway • Target: Notifications Configure a new service connector as follows: • Source: Streaming • Task: None • Target: Notifications Configure a new service connector as follows: • Source: Streaming • Task: API Gateway • Target: Functions Configure a new service connector as follows: • Source: Streaming • Task: Functions • Target: API Gateway.
Which TWO are part of the Cloud Native Computing Foundation (CNCF) container runtime? (Choose two.) rkt-o runc getcd containerd.
Which command is used to get a Docker image from Oracle Cloud Infrastructure Registry (OCIR) to the clientmachine? docker pull .ocir.io//: docker pull /.ocir.io/: docker fetch .ocir.io//: docker fetch /.ocir.io/:.
Which TWO statements are true for serverless computing and serverless architectures? (Choose two.) Serverless function execution is fully managed by third party. Applications running on a FaaS (Functions as a Service) platform. Long running tasks are perfectly suited for serverless. Application DevOps team is responsible for scaling. Serverless function state should never be stored externally.
As a cloud-native developer, you are designing an application that depends on Oracle Cloud Infrastructure (OCI) Object Storage wherever the application is running. Therefore, provisioning of storage buckets should be part of your Kubernetes deployment process for the application. Which of the following should you leverage to meet this requirement? (Choose the best answer.) Oracle Functions OCI Service Broker for Kubernetes Open Service Broker API OCI Container Engine for Kubernetes.
A developer has created another version of a microservice and wants 10% of the traffic to flow towards it for testing purposes. The application is already configured using OCI (Oracle Cloud Infrastructure) Service Mesh. Which of the following steps is the right approach to achieve this goal? Create a new Kubernetes deployment for the new version of the microservice and set the trafficsplitting percentage to 10% in the Kubernetes service manifest. Use Kubernetes HPA (Horizontal Pod Autoscaler) to scale the new version of the microservice to handle 10% of the traffic automatically. Create a new entry in the routeRules field of the ingress gateway route table manifest to configure traffic splitting between the old and new versions of the microservice and set the percentage to 10%. Create a new entry in the routeRules field of the virtual service route table manifest to configure traffic splitting between the old and new versions of the microservice and set the percentage to 10%.
Kubernetes includes various elements such as compute, network, and storage. Compute is essentially CPU (units) and memory (bytes). Within an OKE cluster, what is considered to be the smallest unit of deployment with respect to compute? Container Service Pod Namespace Deployment resource.
To enforce mutual TLS (mTLS) authentication for clients of your microservices, your team has chosen to leverage the Oracle Cloud Infrastructure (OCI) API Gateway service to create new API Deployments that will direct requests to your microservices. Which is NOT valid regarding the mTLS options in OCI API Gateway? Custom CA or custom CA bundles can be added to your gateway's trust store ONLY if they already exist in the OCI Certificates service. Adding a custom certificate authority (CA) or custom CA bundle to your gateway's trust store for mTLS is optional unless you need to reject certificates that do not contain particular values (such as a domain name). The mTLS request policy can only be enabled at the API deployment specification level, which then applies globally to ALL routes in that deployment. Once the mTLS request policy is enabled, ALL requests with valid certificates are routed to the backend unless you have defined one or more particular values (such as a domain name).
Which is NOT a valid backend-type option available when configuring an Oracle Cloud Infrastructure (OCI) API Gateway Deployment? HTTP_BACKEND ORACLE_STREAMS_BACKEND ORACLE_FUNCTIONS_BACKEND.
Which of the following is defined as a configurable, low-latency infrastructure layer that controls the interaction between a network of microservices? (Choose the best answer.) Containers Kubernetes CI/CD Pipelines DevOps Service Mesh.
Which feature is typically NOT associated with Cloud Native? Immutable Infrastructure Declarative APIs Containers Application Servers Service Meshes.
|
