HCIA v.3.5 _ Network_Cloud_Services

Question 1

_______ provides an isolated network environment on HUAWEI CLOUD.

Answer 1

VPC

Question 2

________ provides secure access to cloud services and private services hosted on HUAWEI CLOUD.

Answer 2

VPCEP

Question 3

_________ automatically distributes incoming traffic across multiple backend servers.

Answer 3

ELB

Question 4

__________ provides network address translation (____) for cloud servers

Answer 4

NAT gateway

Question 5

___________ establishes a dedicated channel between an on-premises data center and the cloud.

Answer 5

Direct Connect

Question 6

____________ establishes an IPsec encrypted channel between an on-premises data center and the cloud.

Answer 6

VPN

Question 7

This service enables you to provision logically isolated, configurable, and manageable virtual networks for cloud servers, cloud containers, and cloud databases, improving cloud service security and simplifying network
deployment.

Answer 7

VPC service

Question 8

VPC’s are based on ____________ technology

Answer 8

tunneling. (Tunneling is a way to move packets from one network to another. Tunneling works via encapsulation: wrapping a packet inside another packet. Networking basics.)

Question 9

An access control list (ACL)

Answer 9

is a list of rules that specifies which users or systems are granted or denied access to a particular object or system resource. Access control lists are also installed in routers or switches, where they act as filters, managing which traffic can access the network.

Question 10

a __________________ enables two vpcs to communicate with each other using private ip addresses.

Answer 10

vpc peering connection

Question 11

True or false: By default, different VPCs cannot communicate with each other.

Answer 11

True

Question 12

True or false: By default, a VPC can communicate with the Internet.

Answer 12

False: By default, a VPC cannot communicate with the Internet. You can use EIP, ELB, NAT Gateway, VPN, and Direct Connect to enable access to or from the Internet.

Question 13

True or false: By default, two VPCs in the same region can communicate with each other.

Answer 13

False: By default, two VPCs in the same region cannot communicate with each other. You can create a VPC peering connection to enable them to communicate with each other using private IP addresses.

Question 14

______________ provides automatic failover in real time and chooses the optimal path when a network connection fails.

Answer 14

Dynamic BGP

Question 15

Each VPC consists of:

Answer 15

a private CIDR block, route tables, and at least one subnet.

Question 16

The VPC service supports the following CIDR blocks:

Answer 16

10.0.0.0 – 10.255.255.255, 172.16.0.0 – 172.31.255.255, and 192.168.0.0 – 192.168.255.255

Question 17

True or false: Cloud resources, such as cloud servers and databases, don’t need to be deployed in subnets.

Answer 17

False: Cloud resources, such as cloud servers and databases, must be deployed in subnets.

Question 18

True or false: When you create a VPC, the system automatically generates a default route table.

Answer 18

True: The route table ensures that all subnets in the VPC can communicate with each other.

Question 19

What’s the main advantage of an IP address group?

Answer 19

An IP address group frees you from repeatedly modifying security group rules and simplifies security group rule management.

Question 20

True or false: ECSs in all subnets of the same VPC can communicate with one
another, just like ECSs in different VPCs.

Answer 20

False: By default, ECSs in all subnets of the same VPC can communicate with one
another, but ECSs in different VPCs cannot.