101-110 Flashcards
An organization will be deploying a web application in a public cloud with two web servers, two database servers, and a load balancer that is accessible over a single public IP. Taking into account the gateway for this subnet and the potential to add two more web servers, which of the following will meet the minimum IP requirement?
A. 192.168.1.0/26
B. 192.168.1.0/27
C. 192.168.1.0/28
D. 192.168.1.0/29
C. 192.168.1.0/28
All of a company’s servers are currently hosted in one cloud MSP. The company created a new cloud environment with a different MSP. A cloud engineer is now tasked with preparing for server migrations and establishing connectivity between clouds. Which of the following should the engineer perform FIRST?
A. Peer all the networks from each cloud environment.
B. Migrate the servers.
C. Create a VPN tunnel.
D. Configure network access control lists.
C. Create a VPN tunnel.
A web server has been deployed in a public IaaS provider and has been assigned the public IP address of 72.135.10.100. Users are now reporting that when they browse to the website, they receive a message indicating the service is unavailable. The cloud administrator logs into the server, runs a netstat command, and notices the following relevant output:
Which of the following actions should the cloud administrator take to resolve the issue?
A. Assign a new IP address of 192.168.100.10 to the web server.
B. Modify the firewall on 72.135.10.100 to allow only UDP.
C. Configure the WAF to filter requests from 17.3.130.3.
D. Update the gateway on the web server to use 72.135.10.1.
D. Update the gateway on the web server to use 72.135.10.1.
A cloud administrator has been using a custom VM deployment script. After three months of use, the script no longer joins the LDAP domain. The cloud administrator verifies the account has the correct permissions. Which of the following is the MOST likely cause of the failure?
A. Incorrect encryption ciphers
B. Broken trust relationship
C. Invalid certificates
D. Expired password
D. Expired password
A cloud administrator is managing an organization’s infrastructure in a public cloud. All servers are currently located in a single virtual network with a single firewall that all traffic must pass through. Per security requirements, production, QA, and development servers should not be able to communicate directly with each other.
Which of the following should an administrator perform to comply with the security requirement?
A.
✑ Create separate virtual networks for production, QA, and development servers.
✑ Move the servers to the appropriate virtual network.
✑ Apply a network security group to each virtual network that denies all traffic except for the firewall.
B.
✑ Create separate network security groups for production, QA, and development servers.
✑ Apply the network security groups on the appropriate production, QA, and development servers.
✑ Peer the networks together.
C.
✑ Create separate virtual networks for production, QA, and development servers.
✑ Move the servers to the appropriate virtual network.
✑ Peer the networks together.
D.
✑ Create separate network security groups for production, QA, and development servers.
✑ Peer the networks together.
✑ Create static routes for each network to the firewall.
B.
✑ Create separate network security groups for production, QA, and development servers.
✑ Apply the network security groups on the appropriate production, QA, and development servers.
A cloud administrator is upgrading a cloud environment and needs to update the automation script to use a new feature from the cloud provider. After executing the script, the deployment fails. Which of the following is the MOST likely cause?
A. API incompatibility
B. Location changes
C. Account permissions
D. Network failure
C. Account permissions
A systems administrator has been asked to restore a VM from backup without changing the current VM’s operating state. Which of the following restoration methods would BEST fit this scenario?
A. Alternate location
B. Rolling
C. Storage live migration
D. In-place
A. Alternate location
Due to a policy change, a few of a customer’s application VMs have been migrated to synchronously replicated storage. The customer now reports that performance is lower. The systems administrator checks the resource usage and discovers CPU utilization is at 60% and available memory is at 30%. Which of the following is the MOST likely cause?
A. There is not enough vCPU assigned.
B. The application is not compatible with the new settings.
C. The new configuration is adding latency.
D. The memory of the VM is underallocated.
B. The application is not compatible with the new settings.
A systems administrator wants to ensure two VMs remain together on the same host. Which of the following must be set up to enable this functionality?
A. Affinity
B. Zones
C. Regions
D. A cluster
A. Affinity
An organization is implementing a new requirement to facilitate users with faster downloads of corporate application content. At the same time, the organization is also expanding cloud regions. Which of the following would be suitable to optimize the network for this requirement?
A. Implement CDN for overall cloud application.
B. Implement auto-scaling of the compute resources.
C. Implement SR-IOV on the server instances.
D. Implement an application container solution.
A. Implement CDN for overall cloud application.