[2024] Alibaba Cloud ACP-Cloud1 Practice Verified Answers - Pass Your Exams For Sure! [Q22-Q47]

ACP-Cloud1 Practice Alibaba Cloud Verified Answers - Pass Your Exams For Sure! [2024]

Valid Way To Pass Alibaba Cloud Computing's  ACP-Cloud1 Exam

To prepare for the ACP-Cloud1 exam, candidates can take advantage of Alibaba Cloud's extensive resources, including online courses, study guides, and practice exams. These resources are designed to help candidates gain a deep understanding of cloud computing concepts and Alibaba Cloud's products and services. Candidates can also attend training courses to gain hands-on experience and interact with industry experts.

 

NEW QUESTION # 22
You need to create a new ECS instance for a 10-data test. Which of the following billing methods is most cost-effective?

• A. Pay-As-You-Go
• B. Pay-AS-You-Go with Savings Plan
• C. Preemptible
• D. Subscription

Answer: B

Explanation:
Explanation
According to the Alibaba Cloud ECS documentation1, the Pay-As-You-Go billing method is flexible and suitable for short-term or uncertain workloads. However, it is also the most expensive option compared to other billing methods. To reduce the cost of Pay-As-You-Go instances, you can purchase a Savings Plan, which is a discount plan that offers lower prices for a fixed amount of hourly usage. A Savings Plan can be applied to any Pay-As-You-Go instance in the same region, regardless of the instance type, operating system, or zone. Therefore, option A is the most cost-effective billing method for a 10-day test, as it allows you to enjoy the flexibility of Pay-As-You-Go and the savings of a fixed commitment. References: Billing methods and Savings Plan.

NEW QUESTION # 23
Alibaba Cloud Content Delivery Network (CDN) is a distributed network that is built and overlaid on the bearer network Moreover it is composed of edge node server clusters distributed across different regions. It replaces the traditional data transmission mode, which is centered on Web servers. When using Alibaba Cloud CDN, a user's request wilt first reach the edge node, and then receive data from the origin site by means of back-to-source Moreover, the admin can obtain visitor's real IP on the origin site. Which of the following descriptions relate to "obtaining visitors real IP" are correct? (Number of correct answers: 2)

• A. "Visitor's real IP" is saved in "X-Forwarded-For" header in HTTP protocol. It can be directly obtained in the user-defined LOG of Apache and Nginx.
• B. You can one-step activate the "recording visitor's real IP" function in Alibaba Cloud CDN console to directly view the visitor's real IP in the access log.
• C. In Windows, if IIS is used: after installing "F5XForwardedFor" extension module. 'Visitor's real IP" can then be seen in the log.
• D. "Visitor's real IP" can only be obtained by modifying the application

Answer: A,C

NEW QUESTION # 24
The backend server pool of an Alibaba Cloud SLB contains multiple ECS instances, which may have different service capacities. To exploit the different service capacities of backend ECS instances, which of the following statements is correct?

• A. Choose Round-Robin model and ECS instances with higher capacities will surely be assigned with more requests.
• B. Choose Weighted Least-Connection mode, and ECS instances with higher capacities will surely be assigned with more requests.
• C. SLB cannot assign more requests to certain ECS instances.
• D. Choose Weighted Round Robin mode to set higher weights to ECS instances with higher capacities The higher the weight of the backend ECS instance the higher chance that the instance will receive requests.

Answer: D

Explanation:
Explanation
Weighted Round Robin (WRR) is a load balancing mode that assigns requests to backend ECS instances based on their weights. The higher the weight of the backend ECS instance, the higher the chance that the instance will receive requests. This mode can exploit the different service capacities of backend ECS instances by setting higher weights to ECS instances with higher capacities. For example, if there are two ECS instances in the backend server pool, one with a weight of 10 and the other with a weight of 20, the ECS instance with a weight of 20 will receive twice as many requests as the ECS instance with a weight of 10.
References:
1: SLB overview - Server Load Balancer - Alibaba Cloud Documentation Center
4: Server Load Balancer - Alibaba Cloud
5: Alibaba Server Load Balancer (SLB) Course - Cloud Academy

NEW QUESTION # 25
Once ECS is created, you can't change its private IP address anymore.

• A. True
• B. False

Answer: A

NEW QUESTION # 26
Names of the files in each OSS bucket must be unique Also, they can be renamed.

• A. False
• B. True

Answer: A

Explanation:
Explanation
Objects cannot be directly renamed in OSS. To rename an object in the bucket, you can copy the source object to the destination object and delete the source object. This is because the object name is part of the object URL and cannot be changed without affecting the access to the object. However, if you enable the hierarchical namespace feature for a bucket, you can rename objects in the bucket by using the OSS console or SDKs.
References:
Object Storage Service:Rename objects - Alibaba Cloud
Object Storage Service:Rename objects - Alibaba Cloud
Recipe OSS: How to rename an object? (Alibaba Cloud)

NEW QUESTION # 27
Many cloud computing service providers support users to activate/create a cloud service through Open API.
Which of the following protocols is most not likely to be supported by these Open API?

• A. PPPoE
• B. HTTP
• C. Restful
• D. Web Service

Answer: A

Explanation:
Explanation
PPPoE stands for Point-to-Point Protocol over Ethernet, which is a network protocol that encapsulates PPP frames in Ethernet frames and allows multiple computers to share a single Internet connection. PPPoE is typically used by Internet service providers (ISPs) to provide broadband access to their customers, such as DSL or cable modem. PPPoE is not a protocol that is commonly supported by Open API for cloud computing service providers, because it is not designed for web-based communication and requires a dedicated connection between the client and the server. Open API, on the other hand, is a term that refers to a set of publicly available application programming interfaces (APIs) that allow developers to access the functionality and data of cloud computing service providers. Open API usually follows standard protocols that are widely used on the web, such as HTTP, Restful, and Web Service. HTTP stands for Hypertext Transfer Protocol, which is the foundation of data communication on the web. HTTP defines how messages are formatted and transmitted, and what actions web servers and browsers should take in response to various commands. HTTP is a stateless protocol, which means that each request is independent and does not depend on any previous requests or responses. Restful stands for Representational State Transfer, which is an architectural style for designing web services that are based on the concept of resources. Restful web services use HTTP methods (such as GET, POST, PUT, and DELETE) to perform operations on resources, and use standard formats (such as JSON or XML) to exchange data. Restful web services are stateless, scalable, and cacheable, and aim to provide a uniform interface for interacting with different types of resources. Web Service is a generic term that refers to any software service that is available over the web and uses a standardized format for communication, such as SOAP or REST. Web Service allows different applications to communicate and exchange data across different platforms and languages. Web Service can be described using a specification language, such as WSDL or OpenAPI, which defines the structure, operations, and parameters of the service. Web Service can also be registered and discovered using a directory service, such as UDDI or Swagger.

NEW QUESTION # 28
Which of the following scenarios can be done using Alibaba Cloud Express Connection? (Number of correct answers: 2)

• A. Intranet communication between VPCs and Smart Access Gateway in customers different branch offices
• B. Intranet communication between two VPCs in different accounts and different CIDR Blocks
• C. Intranet communication between a VPC and servers in an external IDC
• D. Intranet communication between two VPCs under the same account in the same region

Answer: A,C

Explanation:
Explanation
Alibaba Cloud Express Connect is a service that enables high-bandwidth, reliable, secure, and private connections between different networks, such as VPC networks across regions, Alibaba Cloud accounts, and on-premise data centers1. It supports different connection methods, such as physical connections, virtual border routers, and Express Cloud Connect1.
Scenario A: Intranet communication between VPCs and Smart Access Gateway in customers different branch offices. This scenario can be achieved by using Express Cloud Connect, which is based on the hardware capacities of Smart Access Gateway and provides SD-WAN capabilities1. Express Cloud Connect allows you to connect your branch offices to Alibaba Cloud through a dedicated partner backbone network, and access VPC networks in all regions1.
Scenario B: Intranet communication between a VPC and servers in an external IDC. This scenario can be achieved by using physical connections, which are dedicated network connections between on-premise data centers and VPC networks1. You can lease a line from your ISP or work with an Alibaba Cloud partner to establish a physical connection to Alibaba Cloud1. This way, you can access VPC networks in all regions with high bandwidth and low latency1.
Scenario C: Intranet communication between two VPCs in different accounts and different CIDR Blocks. This scenario can be achieved by using peering connections, which are logical connections that enable communication between VPC networks2. Peering connections support cross-region and cross-account scenarios, and allow you to connect VPC networks with different CIDR blocks2. However, peering connections are not part of Alibaba Cloud Express Connect, but a separate service called Cloud Enterprise Network2.
Scenario D: Intranet communication between two VPCs under the same account in the same region. This scenario can also be achieved by using peering connections, which are logical connections that enable communication between VPC networks2. Peering connections support intra-region and same-account scenarios, and allow you to connect VPC networks with different CIDR blocks2. However, peering connections are not part of Alibaba Cloud Express Connect, but a separate service called Cloud Enterprise Network2. References: 1: Express Connect - Alibaba Cloud 2: Introduction to Cloud Enterprise Network - Alibaba Cloud Document Center

NEW QUESTION # 29
Alibaba Cloud Object Storage Service (OSS) provides multiple file uploading modes for different scenarios, which are___________.
(Number of correct answers: 2)

• A. Directly copying to/from OSS using portable disks
• B. Direct upload from the OSS management console no matter how large the file is
• C. Uploading using the API
• D. Upload using the SDK

Answer: A,B

NEW QUESTION # 30
An online education website is built based on ECS. SLB and Auto Scaling, which greatly reduces resource cost, O&M cost and without compromising system stability and user experience.
Now. the website admin wants to keep the user information (such as source IP, accessed URLs, and duration on each page) for analysis to support their upcoming campaign events In this case, which of the following statements is NOT correct?

• A. Let each ECS instance in the scaling group keeps the user access information it processes Thus, the data saved by these ECS instances can be accessed and analyzed at any time, making the solution not only simple, but also efficient reliable, and cost-effective.
• B. Synchronize user-related access information to OSS in real time or quasi real time for further use
• C. Synchronize user-Synchronize user-related access information to ApsaraDB for Memcache in real time or quasi real time. Then, access Memcache using an application or make the data in Memcache persistent based on certain rules and then can use the persistent data for further analysis.
• D. Save user-related access information to ApsaraDB for RDS in real time or quasi real time, which can then be used for performing query and analysis.

Answer: A

Explanation:
Explanation
This statement is not correct because it is not a good practice to store user access information on each ECS instance in the scaling group. This is because the ECS instances are dynamic and can be added or removed by the Auto Scaling service based on the load and demand. Therefore, the data stored on the ECS instances may be lost or inconsistent if the instances are terminated or replaced. Moreover, this approach does not provide a centralized and unified way to access and analyze the data, which may affect the accuracy and efficiency of the analysis. Therefore, it is better to use other services such as ApsaraDB for RDS, ApsaraDB for Memcache, or OSS to store the user access information in a persistent and scalable manner. References: Auto Scaling, ApsaraDB for RDS, ApsaraDB for Memcache, OSS

NEW QUESTION # 31
If you need to accelerate a certain domain name (such as abc.com) via Alibaba Cloud Content Delivery Network (CDN), you must add it to "CDN Domain Name List" in the CDN service. After added successfully, you will get a CNAME address A Next, you need to modify domain name resolution and direct the domain name (such as abc.com) to CNAME address A. Which of the following is a NOT correct description of modifying domain name resolution?

• A. The DNS service provider used by the domain name (such as abc.com) can be companies other than Alibaba Cloud.
• B. The CNAME address allocated to the domain name (such as abc.com) will point to an IP address. This IP address resolving mechanism is intelligently managed by Alibaba Cloud CDN system.
• C. The DNS service provider used by the domain name (such as abc.com) must support intelligent resolution.
• D. If your domain name (such as abc.com) is transferred to Alibaba Cloud in advance, and managed by the same Alibaba Cloud account, you can perform one-step resolution modification.

Answer: C

Explanation:
Explanation
The DNS service provider used by the domain name (such as abc.com) does not need to support intelligent resolution, because the CNAME address allocated to the domain name will point to an IP address that is intelligently managed by Alibaba Cloud CDN system. Therefore, option C is not a correct description of modifying domain name resolution. References: What is Alibaba Cloud CDN? - CDN - Alibaba Cloud Documentation Center and Alibaba Cloud CDN

NEW QUESTION # 32
Company A constructed a sales management platform using three Elastic Compute Service (ECS) instances. One of the instances runs MySQL, and is used as the database server. The other two instances are used as Web servers After some time, the number of employees in Company A dramatically increases, leading to higher sales volumes At the same time, the platform response speed is gradually decreasing too.
According to the report from CloudMonitor, the average CPU utilization rate of the two Web servers exceeds 70%, and database load reaches 75% Company A can select Alibaba Cloud_________ services.to cope with the issue and optimize the performance. (Number of correct answers: 2)

• A. Import database data into Object Storage Service (OSS) to share the storage pressure on the platform
• B. Use Content Delivery Network (CDN) to enhance content loading speed
• C. Incorporate Server Load Balancer (SLB) and add additional ECS instances to relieve the load on existing ECS instances
• D. Replace the self-built MySQL database with ApsaraDB for RDS to obtain better database performance, and utilize RDS read-only instances to handle read-only requests

Answer: C,D

NEW QUESTION # 33
An enterprise hosts their servers (include both Linux and Windows servers) in a traditional IDC Every night hackers with IP addresses from many countries try to crack the password of their servers, making the administrator terribly worried about this However because of work requirements the remote management port of these servers must be opened to public network.
The administrator heard that Alibaba Cloud has solutions that can help customers improve the security of their systems Therefore, he/she wants to migrate the system to Alibaba Cloud. Which of the following functions should the administrator activate in Alibaba Cloud to reduce the possibility of brute force password cracking?

• A. CloudMonitor
• B. Anti-DDoS Origin Basic Edition
• C. Cloud Firewall
• D. Security Center

Answer: C

NEW QUESTION # 34
Alibaba Cloud SLB can distribute user requests to backend ECS instances. These ECS instances must have the same specification (CPU, Memory)

• A. False
• B. True

Answer: A

Explanation:
Explanation
Alibaba Cloud SLB can distribute user requests to backend ECS instances, but these ECS instances do not have to have the same specification (CPU, Memory). SLB virtualizes the added group of ECS instances in the same region into an application pool, and you can manage backend servers through either the default server group, a primary server group, or VServer groups. You can add ECS instances of different specifications to the same server group or VServer group according to your needs. SLB supports weighted round-robin (WRR) and weighted least connections (WLC) algorithms to balance the load among backend servers with different weights. References:
SLB overview - Alibaba Cloud
Backend server overview - Alibaba Cloud
What is Server Load Balancer and How It Works - Alibaba Cloud
Server Load Balancer - Alibaba Cloud
Alibaba Server Load Balancer (SLB) Course - Cloud Academy

NEW QUESTION # 35
The difference between public and private Server Load Balancers (SLBs) is that private SLBs connect to their backend ECS instances using the private network (Intranet) while public SLBs connect to their backend ECS instances using the public network (Internet).

• A. True
• B. False

Answer: A

Explanation:
Explanation
The difference between public and private Server Load Balancers (SLBs) is that private SLBs connect to their backend ECS instances using the private network (Intranet) while public SLBs connect to their backend ECS instances using the public network (Internet). This is true according to the Alibaba Cloud documentation on SLB1. Public SLBs are used to distribute traffic from the Internet to ECS instances, while private SLBs are used to distribute traffic within a VPC or a classic network2. References: 1: Server Load Balancer - Alibaba Cloud Documentation Center 2: Create a Server Load Balancer instance - Server Load Balancer - Alibaba Cloud Documentation Center

NEW QUESTION # 36
SLB is a load balancing service that distributes traffic to multiple cloud servers It provides a wide range of functions to meet the needs of various business scenarios If a user wants to use SLB and ECS instances to deploy two-way authenticated HTTPS websites, the following statement is correct_______.

• A. SLB can only host CA certificates, not SSL certificate
• B. SLB can only support HTTPS one-way authentication
• C. SLB can only host SSL certificates, not CA certificates.
• D. You need to host server SSL certificates and client CA certificates on SLB

Answer: D

Explanation:
Explanation
SLB (Server Load Balancer) is a service that distributes network traffic across groups of backend servers to improve the service capability and application availability1. SLB supports HTTPS listeners, which allow you to encrypt the data transmission between clients and SLB instances2. HTTPS is a secure version of HTTP that uses SSL/TLS protocols to provide data encryption, integrity, and authentication3.
To use HTTPS listeners, you need to upload SSL certificates to SLB. SSL certificates are digital certificates that use public key cryptography to verify the identity of a website and encrypt the data exchanged between the website and the visitors4. There are two types of SSL certificates: server certificates and client certificates.
Server certificates are issued by trusted certificate authorities (CAs) to verify the identity of the website owner and the domain name. Client certificates are issued by the website owner to verify the identity of the visitors5.
SLB supports both one-way and two-way authentication for HTTPS listeners. One-way authentication means that only the server identity is verified by the client. Two-way authentication means that both the server and the client identities are verified by each other. To use one-way authentication, you only need to upload the server SSL certificate to SLB. To use two-way authentication, you need to upload both the server SSL certificate and the client CA certificate to SLB. The client CA certificate is the root certificate or intermediate certificate of the CA that issues the client certificates.
Therefore, if you want to use SLB and ECS instances to deploy two-way authenticated HTTPS websites, you need to host server SSL certificates and client CA certificates on SLB. SLB can host both SSL certificates and CA certificates, and it supports HTTPS two-way authentication. The other statements are incorrect. References: Server Load Balancer(SLB) - Alibaba Cloud, Add an HTTPS listener - Server Load Balancer - Alibaba Cloud Documentation Center, What is HTTPS? - SSL.com, What is an SSL Certificate? - SSL.com, What is a Client Certificate? - SSL.com, [Configure two-way authentication for an HTTPS listener - Server Load Balancer - Alibaba Cloud Documentation Center]

NEW QUESTION # 37
RDS accounts can be used to connect with the databases created on a given RDS instance. Each account can be bound with multiple databases. Yet, the read/write permissions of each database can only be assigned to one RDS account

• A. True
• B. False

Answer: A

NEW QUESTION # 38
A large enterprise wants to migrate the entire business system to Alibaba Cloud to save the overall IT procurement and O&M costs From the security aspect, the company requires that
1. Must support secured remote O&M because the administrator often takes business trips.
2. Networks between subsystems should be isolated because subsystems are independently used by different departments Which of the followings should be used together to meet the company's requirements? (Number of correct answers: 3)

• A. Enable the VPN on the bastion host (or directly use the VPN image on Alibaba Cloud Marketplace).
  The administrator uses VPN encrypted communication during O&M.
• B. Create multiple ECS instances in the VPC to install subsystems of different departments- Allocate only Intranet IP addresses to all ECS instances, and deploy them in the same security groups.
• C. Use the security group function of the ECS instance, and respectively deploy ECS instances running different subsystems to independent security groups.
• D. Build an independent ECS instance as the bastion host or remote logon and O&M, and authorize the bastion host to access ECS instances running other subsystems.

Answer: A,C,D

Explanation:
Explanation
To meet the company's security requirements, the following solutions should be used together:
A: Enable the VPN on the bastion host (or directly use the VPN image on Alibaba Cloud Marketplace).
The administrator uses VPN encrypted communication during O&M. This solution can support secure remote O&M, because VPN (Virtual Private Network) is a technology that creates a secure and encrypted connection over the Internet between the bastion host and the administrator's device. VPN can protect the data transmitted between the bastion host and the administrator from being intercepted or tampered by malicious third parties1. Alibaba Cloud provides VPN Gateway service that allows users to create VPN connections between VPCs and on-premises data centers, or between VPCs in different regions2. Users can also use VPN images from Alibaba Cloud Marketplace, such as OpenVPN, to create VPN servers on ECS instances3.
B: Build an independent ECS instance as the bastion host or remote logon and O&M, and authorize the bastion host to access ECS instances running other subsystems. This solution can also support secure remote O&M, because a bastion host is a special-purpose ECS instance that acts as a proxy or a gateway for accessing other ECS instances in the VPC. A bastion host can enhance the security of the ECS instances by limiting the exposure of the ECS instances to the public network, and by implementing security policies and monitoring tools on the bastion host4. Alibaba Cloud provides Bastionhost service that allows users to centrally manage the access to cloud servers from external networks and provide secure connections to VPC resources5.
C: Use the security group function of the ECS instance, and respectively deploy ECS instances running different subsystems to independent security groups. This solution can isolate the networks between subsystems, because a security group is a virtual firewall that controls the inbound and outbound traffic of the ECS instances in the group. Users can configure security group rules to allow or deny access based on the network protocol, port, and source IP address. By deploying ECS instances running different subsystems to independent security groups, users can prevent unauthorized access or communication between the subsystems6.
The other solution is not suitable for the company's scenario, for the following reason:
D: Create multiple ECS instances in the VPC to install subsystems of different departments- Allocate only Intranet IP addresses to all ECS instances, and deploy them in the same security groups. This solution cannot isolate the networks between subsystems, because ECS instances in the same security group can communicate with each other by default, regardless of whether they have intranet or internet IP addresses. Moreover, this solution may also prevent the ECS instances from accessing the internet or providing external services, which may affect the business operation of the company6.
References: What is a VPN? - Virtual Private Network - Cisco, VPN Gateway - Alibaba Cloud, OpenVPN - Alibaba Cloud Marketplace, Bastion Host - Alibaba Cloud Document Center, Bastionhost - Alibaba Cloud, Security groups - Elastic Compute Service - Alibaba Cloud

NEW QUESTION # 39
Company A constructed a sales management platform using three Elastic Compute Service (ECS) instances.
One of the instances runs MySQL, and is used as the database server. The other two instances are used as Web servers After some time, the number of employees in Company A dramatically increases, leading to higher sales volumes At the same time, the platform response speed is gradually decreasing too.
According to the report from CloudMonitor, the average CPU utilization rate of the two Web servers exceeds
70%, and database load
reaches 75% Company A can select Alibaba Cloud_________ services.to cope with the issue and optimize the performance. (Number of correct answers: 2)

• A. Import database data into Object Storage Service (OSS) to share the storage pressure on the platform
• B. Use Content Delivery Network (CDN) to enhance content loading speed
• C. Incorporate Server Load Balancer (SLB) and add additional ECS instances to relieve the load on existing ECS instances
• D. Replace the self-built MySQL database with ApsaraDB for RDS to obtain better database performance, and utilize RDS read-only instances to handle read-only requests

Answer: C,D

Explanation:
Explanation
Option B is correct because using Server Load Balancer (SLB) and adding additional ECS instances can help to distribute the traffic among multiple servers and improve the availability and scalability of the platform. SLB can also provide health checks and fault tolerance for the ECS instances1 Option D is correct because replacing the self-built MySQL database with ApsaraDB for RDS can provide better database performance, security, and reliability. ApsaraDB for RDS is a fully managed cloud database service that supports MySQL, SQL Server, PostgreSQL, and other engines. It can automatically handle tasks such as backup, recovery, monitoring, and patching. Using RDS read-only instances can also handle read-only requests and reduce the load on the primary database2 Option A is incorrect because importing database data into Object Storage Service (OSS) will not share the storage pressure on the platform. OSS is a cloud storage service that provides high durability, availability, and scalability for storing unstructured data such as images, videos, and documents. It is not suitable for storing structured data such as database tables. Moreover, importing data into OSS will incur additional costs and latency3 Option C is incorrect because using Content Delivery Network (CDN) will not enhance the content loading speed of the platform. CDN is a distributed network that delivers content to users based on their geographic locations, the origin of the content, and the content delivery server. It is mainly used to accelerate the delivery of static content such as images, videos, and scripts. It is not effective for dynamic content such as database queries and transactions4 References:
1: Server Load Balancer - Alibaba Cloud
2: ApsaraDB for RDS - Alibaba Cloud
3: Object Storage Service - Alibaba Cloud
4: Content Delivery Network - Alibaba Cloud

NEW QUESTION # 40
SLB is a load balancing service that distributes traffic to multiple cloud servers It provides a wide range of functions to meet the needs of various business scenarios If a user wants to use SLB and ECS instances to deploy two-way authenticated HTTPS websites, the following statement is correct_______.

• A. SLB can only support HTTPS one-way authentication
• B. SLB can only host CA certificates, not SSL certificate
• C. SLB can only host SSL certificates, not CA certificates.
• D. You need to host server SSL certificates and client CA certificates on SLB

Answer: A

NEW QUESTION # 41
A company launched its online service just a year ago. It uses five ECS instances and does not have a full-time system administrator Over the last six months, the company's system has encountered various security problems Several high-risk vulnerabilities were exploited by hackers, leading to leakage of the company's confidential dat
a. Which of the following Alibaba Cloud products can be used to quickly resolve this problem?

• A. Managed Security Service
• B. Anti-DDoS Pro Service
• C. Cloud Firewall
• D. Security Center

Answer: C

NEW QUESTION # 42
Alibaba Cloud Object Storage Service (OSS) is a cloud storage service that features massive capacity, outstanding security, low costs, and high reliability. In an OSS bucket, all elements are stored as________.

• A. Hashes
• B. Objects
• C. Stubs
• D. Keys

Answer: B

Explanation:
OSS does not use a hierarchical structure for objects, but instead uses a flat structure. All elements are stored as objects in buckets. To use OSS in the same manner in which local file systems are used, you can configure Cloud Storage Gateway (CSG).
https://www.alibabacloud.com/help/doc-detail/31817.htm

NEW QUESTION # 43
Recently, response speed of a certain Alibaba Cloud Elastic Compute Service (ECS) instance is unacceptably slow. By using CloudMonitor we discovered that the ECS instance utilizes more than 80% of the assigned bandwidth.
Which of the following approach can address this issue and without the need to reboot the ECS instance?

• A. Add a disk to the ECS instance
• B. Upgrade the bandwidth of the ECS instance
• C. Upgrade the CPU and memory of the ECS ins
• D. None of the above

Answer: B

NEW QUESTION # 44
When the "'Obtain the Visitor's Real IP Address" function is enabled in Alibaba Cloud SLB For layer 7 services, you can obtain the real IP addresses of visitors through the______________field in HTTP header

• A. Connection
• B. Etag
• C. X-Forwarded-For
• D. Authorization

Answer: C

Explanation:
Explanation
The X-Forwarded-For field in HTTP header is used to identify the originating IP address of a client connecting to a web server through an HTTP proxy or a load balancer. When the "Obtain the Visitor's Real IP Address" function is enabled in Alibaba Cloud SLB, the SLB instance adds the X-Forwarded-For field to the HTTP header of each request and forwards the request to the backend server. The backend server can then obtain the real IP address of the visitor from the X-Forwarded-For field1. The format of the X-Forwarded-For field is as follows:
X-Forwarded-For: client, proxy1, proxy2
where the value is a comma+space separated list of IP addresses, the left-most being the original client, and each successive proxy that passed the request adding the IP address where it received the request from. In this example, the request passed through proxy1, proxy2, and then the SLB instance (proxy3).2 References: Obtain client IP addresses - Server Load Balancer - Alibaba Cloud, X-Forwarded-For - MDN Web Docs

NEW QUESTION # 45
Which of the following statements is NOT correct, when comparing RDS with a self-built database?

• A. RDS requires no O&M while self-built database require a dedicated DBA for maintenance, which results in high HR costs.
• B. RDS provides automatic backup while self-built databases require you to prepare storage space for backup copies and regularly verify that these copies can be restored.
• C. RDS features a high availability of 99 95% while self-built databases require you to implement data protection primary-standby replication, and RAID all by yourself.
• D. Self-built database support quick deployment and elastic scaling.

Answer: D

NEW QUESTION # 46
A Virtual Private Cloud (VPC) is an isolated network environment that is completely isolated from each other The following statements about VPC are correct_________. (Number of correct answers: 2)

• A. Subnets can be divided like the traditional network environment. Different cloud servers within each subnet are connected by the same router and different subnets are interconnected by switches.
• B. The internal networks of different VPCs are completely isolated and can be interconnected through IP addresses mapped to the outside.
• C. Each VPC has an independent tunnel ID, and a tunnel ID corresponds to a virtualized network.
• D. ECS instances in a VPC use security group firewalls for Layer 2 network access control.

Answer: B,C

Explanation:
Explanation
According to the Alibaba Cloud Academy, a VPC is an isolated network environment that is completely isolated from each other. Each VPC has an independent tunnel ID, and a tunnel ID corresponds to a virtualized network. This means that different VPCs cannot communicate with each other through the tunnel ID. Subnets are not divided like the traditional network environment, but rather are logical divisions of the VPC. Different cloud servers within each subnet are connected by the same router, but different subnets are interconnected by route tables, not switches. ECS instances in a VPC use security group firewalls for Layer 4 network access control, not Layer 2. The internal networks of different VPCs are completely isolated and can be interconnected through IP addresses mapped to the outside, such as NAT Gateway or EIP. References: ACP Cloud Computing Certification Preparation Course - Internetworking with VPC, Alibaba Cloud VPC User Guide

NEW QUESTION # 47
......

The ACP-Cloud1 certification exam is an industry-recognized certification that demonstrates your ability to design, deploy, and manage cloud computing solutions. It is an essential certification for professionals who want to work in cloud computing and cloud-related services. ACP Cloud Computing Professional certification is recognized globally and provides you with a competitive advantage in the job market.

Alibaba Cloud ACP-Cloud1 (ACP Cloud Computing Professional) Certification Exam is a comprehensive test that covers a wide range of topics related to cloud computing. It is designed to test the knowledge and skills of IT professionals who are looking to advance their careers in cloud computing. ACP Cloud Computing Professional certification is recognized globally and is highly valued by employers in the IT industry. It is a great way to showcase an individual's expertise in cloud computing and their commitment to their profession.

 

Alibaba Cloud ACP-Cloud1 Pre-Exam Practice Tests | Actualtests4sure: https://surepass.actualtests4sure.com/ACP-Cloud1-practice-quiz.html