
最新のAlibaba Cloud ACP-Cloud1のPDFと問題集で(2024)無料試験問題解答
あなたを合格させるAlibaba Cloud Computing ACP-Cloud1試験問題集で2024年05月01日には72問あります
ACP-Cloud1試験は、クラウドコンピューティングの概念、アーキテクチャ、展開モデル、セキュリティなど、幅広いトピックをカバーしています。試験では、Elastic Compute Service(ECS)、Object Storage Service(OSS)、Relational Database Service(RDS)などのAlibaba Cloud製品やサービスも取り扱われます。受験者は、クラウドコンピューティングの基本原則についての確固たる理解と、Alibaba Cloud製品やサービスの実践的な経験が求められます。
ACP-Cloud1試験は、クラウドコンピューティングのスキルと知識を検証したい専門家向けに設計されています。この試験では、クラウドコンピューティングの概念、クラウドインフラストラクチャ、クラウドセキュリティ、クラウドの展開と管理など、クラウドコンピューティングに関連するさまざまなトピックに焦点を当てています。この試験は、Alibaba Cloudを使用してクラウドベースのソリューションを設計、展開、および管理する候補者の能力をテストするように設計されています。
質問 # 23
When using Alibaba Cloud SLB, users can enable the health check function If a backend ECS instance A is running abnormally, SLB will isolate it and forward the requests to other ECS instances, and when the backend ECS instance A is back to normal, SLB will again forward requests to it.
- A. True
- B. False
正解:A
質問 # 24
If you want to build a secure and isolated network environment on Alibaba Cloud; meanwhile, design your network topology and specify Intranet IP addresses or CIDR Blocks in this network environment as needed, you can choose
- A. Auto Scaling
- B. Virtual Private Cloud (VPC)
- C. Leased line
- D. Express Connect
正解:B
解説:
Explanation
According to the Alibaba Cloud VPC documentation1, a virtual private cloud (VPC) is a virtual network dedicated to your Alibaba Cloud account. You have full control over your VPC, such as specifying the CIDR block, configuring route tables and gateways, and creating subnets. A VPC is an isolated network environment that provides security and flexibility for your cloud computing resources. You can use a VPC to build a secure and isolated network environment on Alibaba Cloud, design your network topology, and specify intranet IP addresses or CIDR blocks in this network environment as needed. Therefore, option B is the correct choice for your scenario. References: What is a VPC? and Alibaba Cloud Virtual Private Cloud.
質問 # 25
You are designing a solution for a startup company, the proposed solution is like this You suggest they use ECS instances to process requests from mobile App clients, and use SLB to distribute data traffic and ensure the load across each backend ECS instance is balanced.
Moreover to deal with volatile fluctuations in business volume (page views are much higher on the weekends), you also suggest they use Auto Scaling to dynamically increase or reduce computing resources.
The company is satisfied with the solution you proposed. However, they have one concern that when removing an idle instance from the scaling group: if Auto Scaling shuts the instance down directly, the service running on that instance will be abruptly terminated, resulting in poor user experience.
In order to eliminate your customer's concern, which of the following solutions should you recommend them?
- A. Find the ECS instance that is going to be removed from the backend server pool of the SLB instance, and manually remove this instance from the backend server pool Applications running on this ECS instance will normally return results, but this instance will not be assigned with new requests.
- B. Use the Lifecycle Hook function embedded m Auto Scaling Define a suitable timeout and a web hook to do the necessary work before the instance is removed.
- C. Find the ECS instance that is going to be removed from the backend server pool of the SLB instancer and automatically set the weight of this ECS instance to 0. This instance will not be assigned with new requests, and will be automatically removed from the backend server pool after existing tasks are completed.
- D. First, insert a script into the image for creating the ECS instance Second, make the script run automatically when the operating system in this ECS instances is about to shut down. This script contains the processing logic that can ensure the instance finish all the remaining tasks before shutting down.
正解:B
質問 # 26
Different Alibaba Cloud VPCs are completely isolated from each other.
By default, the VPCs cannot communicate with each other over Intranet, but you can establish VPN connections via the Internet to achieve interconnection between VPCs.
- A. True
- B. False
正解:A
質問 # 27
RDS provides whitelist access policies. You can set permitted IP addresses and IP network segments to effectively prevent hackers from attacking the server by port scanning.
- A. True
- B. False
正解:A
質問 # 28
When the "'Obtain the Visitor's Real IP Address" function is enabled in Alibaba Cloud SLB For layer 7 services, you can obtain the real IP addresses of visitors through the______________field in HTTP header
- A. Connection
- B. X-Forwarded-For
- C. Authorization
- D. Etag
正解:B
解説:
Explanation
The X-Forwarded-For field in HTTP header is used to identify the originating IP address of a client connecting to a web server through an HTTP proxy or a load balancer. When the "Obtain the Visitor's Real IP Address" function is enabled in Alibaba Cloud SLB, the SLB instance adds the X-Forwarded-For field to the HTTP header of each request and forwards the request to the backend server. The backend server can then obtain the real IP address of the visitor from the X-Forwarded-For field1. The format of the X-Forwarded-For field is as follows:
X-Forwarded-For: client, proxy1, proxy2
where the value is a comma+space separated list of IP addresses, the left-most being the original client, and each successive proxy that passed the request adding the IP address where it received the request from. In this example, the request passed through proxy1, proxy2, and then the SLB instance (proxy3).2 References: Obtain client IP addresses - Server Load Balancer - Alibaba Cloud, X-Forwarded-For - MDN Web Docs
質問 # 29
When using Alibaba Cloud SLB. you can set different weights for backend ECS instances The higher the weight of a backend ECS instance the more load will be assigned to it An SLB instance has 5 ECS instances in the backend server pool, all of which are healthy Among these 5 ECS instances, the weight of ecs_inst1 is set to 100. Which of the following statements is correct?
- A. 100% of loads will be assigned to ecs__inst1, and the remaining 4 ECS instances will stay idle
- B. Based on SLB's working mechanism, approximately 20% of loads will be assigned to ecs_inst1
- C. Based on request level parameters of external requests, all requests with a request level parameter of 100 will be transferred to ecs_inst1
- D. We do not know the weight settings of the remaining 4 ECS instances, so we cannot tell what would happen
正解:D
解説:
Explanation
When using Alibaba Cloud SLB, you can set different weights for backend ECS instances. The higher the weight of a backend ECS instance, the more load will be assigned to it. However, the load distribution is not based on the absolute value of the weight, but on the proportion of the weight in the total weight of all healthy backend ECS instances. For example, if there are two healthy backend ECS instances with weights of 100 and
200 respectively, the first instance will receive 33.3% of the load, and the second instance will receive 66.7% of the load. Therefore, to determine the load distribution of the 5 ECS instances in the question, we need to know the weight settings of the remaining 4 ECS instances. Without this information, we cannot tell what would happen. The other options are incorrect because they are based on wrong assumptions or misunderstandings of the SLB weight setting mechanism.
質問 # 30
When a customer uses Alibaba Cloud Object Storage Service (OSS) service and finds there exist an amount of Internet downstream traffic, he/she can use Alibaba Cloud Content Delivery Network (CDN) service to reduce the traffic cost.
Because the Internet traffic cost of CDN is lower than that of OSS, moreover, the back-to-source traffic cost from CDN to OSS is also lower than a user access to OSS directly.
- A. True
- B. False
正解:A
質問 # 31
You are using Auto Scaling with one scaling group already created, then you want to execute a task at a specific time such as removing 1 ECS instance every night at 00:00. To achieve this, which of the following operations should be performed'? (Number of correct answers; 2)
- A. Create a scheduled task.
- B. Create an event-triggered task.
- C. Create a scaling rule
- D. Create a new scaling group.
正解:C、D
質問 # 32
A startup video streaming company deploys its service on Alibaba Cloud Elastic Compute Service (ECS) Christmas is coming soon and the CEO knows that they need to prepare more computing resources However, they don't want to purchase a large number of Elastic Compute Service (ECS) instances tor a long period of time. Instead, they want to buy ECS instances for a short period of time and release them after the event is over. Which of the following billing methods of ECS is the most suitable?
- A. Pay-As-You-Go with Reserved Instances
- B. Pay-As-You-Go with Savings Plan
- C. Subscription with Reserved Instances
- D. Pay-As-You-Go Only
正解:D
解説:
Explanation
Pay-As-You-Go is a billing method that allows you to pay for resources after you use them. You are billed based on the actual usage of resources, such as the number of hours that an ECS instance runs or the amount of data that is transferred. Pay-As-You-Go is suitable for scenarios where the demand for resources is unpredictable, flexible, or short-term1. Pay-As-You-Go has the following advantages for the startup video streaming company:
No upfront payment: The company does not need to pay any fees in advance when they purchase ECS instances. They only pay for the resources that they actually use, which can help them save costs and optimize their cash flow1.
Flexible scaling: The company can easily scale up or down their ECS instances based on the actual demand for their service. They can add more ECS instances during peak hours or events, such as Christmas, and release them when the demand drops. They can also change the configurations of their ECS instances at any time, such as upgrading the CPU, memory, or bandwidth1.
No long-term commitment: The company does not need to commit to a long-term contract or subscription when they use Pay-As-You-Go. They can release their ECS instances at any time without incurring any penalties or fees. They can also switch to other billing methods, such as Subscription or Savings Plan, if their business needs change1.
The other billing methods of ECS are not as suitable as Pay-As-You-Go for the company's scenario, for the following reasons:
Pay-As-You-Go with Reserved Instances: Reserved Instances are a type of discount coupon that can be used to deduct a portion of the fees incurred by Pay-As-You-Go instances that match the attributes of the Reserved Instances, such as region, zone, instance type, and operating system2. Reserved Instances require upfront payment and have a fixed term of one year or three years. They are suitable for scenarios where the demand for resources is stable and predictable, and where the user wants to enjoy lower prices than Pay-As-You-Go2. However, for the company's scenario, Reserved Instances are not a good option, because they do not need to purchase a large number of ECS instances for a long period of time, and they want to have more flexibility and scalability in their resource management.
Subscription with Reserved Instances: Subscription is a billing method that allows you to pay for resources in advance for a specific period of time, such as one month, one year, or three years. You are billed based on the specifications and duration of the resources that you purchase, regardless of whether you use them or not. Subscription is suitable for scenarios where the demand for resources is stable and long-term, and where the user wants to enjoy lower prices than Pay-As-You-Go3. Subscription with Reserved Instances can further reduce the cost of Subscription instances by applying the Reserved Instances discounts to them2. However, for the company's scenario, Subscription with Reserved Instances are not a good option, because they do not want to pay for resources in advance or commit to a long-term contract, and they want to have more flexibility and scalability in their resource management.
Pay-As-You-Go with Savings Plan: Savings Plan is a billing method that allows you to commit to a consistent amount of usage (measured in USD/hour) for a one-year or three-year term, and in exchange, receive a lower price for that usage4. Savings Plan can be applied to any Pay-As-You-Go instances that match the attributes of the Savings Plan, such as region, instance family, or operating system4. Savings Plan is suitable for scenarios where the demand for resources is stable and predictable, and where the user wants to enjoy lower prices than Pay-As-You-Go and more flexibility than Subscription4.
However, for the company's scenario, Savings Plan is not a good option, because they do not want to commit to a consistent amount of usage for a long period of time, and they want to have more flexibility and scalability in their resource management.
References: Pay-As-You-Go - Elastic Compute Service - Alibaba Cloud, Reserved Instances - Elastic Compute Service - Alibaba Cloud, Subscription - Elastic Compute Service - Alibaba Cloud, Savings Plan - Elastic Compute Service - Alibaba Cloud
質問 # 33
A popular worldwide forum stores static resources in OSS and accelerates access using CON Users find that the speed of downloading files from the forum has been greatly improved, but uploading files is slow due to the long data transmission distance, resulting in a bad access experience In order to improve the speed of uploading files for users in this forum, so that users in different regions can have a good access experience, we recommend that the forum can________.
- A. Enable the transmission acceleration service for O: Enable OSS
- B. Activate OSS in different regions as file storage, and synchronize data between OSS in different regions through cross-region replication
- C. Enable OSS static website hosting
- D. Activate the PCDN service
正解:B
質問 # 34
To meet business requirements, a user requires that the backend server of an SLB instance include a primary ECS instance and a secondary ECS instance. When the primary instance is working properly, the traffic is only forwarded to the primary ECS, when the primary instance is down, traffic is switched to the standby instance.
In this case, you can create an active/standby server group on the backend of the SLB instance Which kind of listener supports this feature? (Number of correct answers: 2)
- A. HTTP
- B. HTTPS
- C. UDP
- D. TCP
正解:B、D
解説:
Explanation
Active/standby server groups are a feature of Server Load Balancer (SLB) that allows you to configure a primary ECS instance and a secondary ECS instance for the backend of an SLB instance1. When the primary instance is working properly, the traffic is only forwarded to the primary ECS. When the primary instance is down, traffic is switched to the standby instance1. This feature is supported by TCP and HTTPS listeners, but not by HTTP and UDP listeners1. TCP and HTTPS listeners support session persistence, which ensures that requests from the same client are always forwarded to the same backend server2. HTTP and UDP listeners do not support session persistence, and they use round-robin or weighted round-robin algorithms to distribute traffic among the backend servers2. References: 1: Create an active/standby server group 2: [Configure a listener]
質問 # 35
Alibaba Cloud ECS provides multiple instance types to meet the needs of different business scenarios. A medium-sized enterprise user wants to use two ECS instances, one to deploy a single Tomcat service and the other one to deploy Memcache. Which of the following configurations is most recommended?
- A. Tomcat: 4 cores 8G. Memcache: 2 cores 8G
- B. Tomcat: 4 cores, 4G, Memcache: 2 cores, 8G
- C. Tomcat: 4 cores. 8G, Memcache: 2 cores: 16G
- D. Tomcat: 4 cores: 4G, Memcache: 2 cores: 16G
正解:B
質問 # 36
A large enterprise wants to migrate the entire business system to Alibaba Cloud to save the overall IT procurement and O&M costs From the security aspect, the company requires that
1. Must support secured remote O&M because the administrator often takes business trips.
2. Networks between subsystems should be isolated because subsystems are independently used by different departments Which of the followings should be used together to meet the company's requirements? (Number of correct answers: 3)
- A. Create multiple ECS instances in the VPC to install subsystems of different departments- Allocate only Intranet IP addresses to all ECS instances, and deploy them in the same security groups.
- B. Build an independent ECS instance as the bastion host or remote logon and O&M, and authorize the bastion host to access ECS instances running other subsystems.
- C. Use the security group function of the ECS instance, and respectively deploy ECS instances running different subsystems to independent security groups.
- D. Enable the VPN on the bastion host (or directly use the VPN image on Alibaba Cloud Marketplace).
The administrator uses VPN encrypted communication during O&M.
正解:B、C、D
解説:
Explanation
To meet the company's security requirements, the following solutions should be used together:
A: Enable the VPN on the bastion host (or directly use the VPN image on Alibaba Cloud Marketplace).
The administrator uses VPN encrypted communication during O&M. This solution can support secure remote O&M, because VPN (Virtual Private Network) is a technology that creates a secure and encrypted connection over the Internet between the bastion host and the administrator's device. VPN can protect the data transmitted between the bastion host and the administrator from being intercepted or tampered by malicious third parties1. Alibaba Cloud provides VPN Gateway service that allows users to create VPN connections between VPCs and on-premises data centers, or between VPCs in different regions2. Users can also use VPN images from Alibaba Cloud Marketplace, such as OpenVPN, to create VPN servers on ECS instances3.
B: Build an independent ECS instance as the bastion host or remote logon and O&M, and authorize the bastion host to access ECS instances running other subsystems. This solution can also support secure remote O&M, because a bastion host is a special-purpose ECS instance that acts as a proxy or a gateway for accessing other ECS instances in the VPC. A bastion host can enhance the security of the ECS instances by limiting the exposure of the ECS instances to the public network, and by implementing security policies and monitoring tools on the bastion host4. Alibaba Cloud provides Bastionhost service that allows users to centrally manage the access to cloud servers from external networks and provide secure connections to VPC resources5.
C: Use the security group function of the ECS instance, and respectively deploy ECS instances running different subsystems to independent security groups. This solution can isolate the networks between subsystems, because a security group is a virtual firewall that controls the inbound and outbound traffic of the ECS instances in the group. Users can configure security group rules to allow or deny access based on the network protocol, port, and source IP address. By deploying ECS instances running different subsystems to independent security groups, users can prevent unauthorized access or communication between the subsystems6.
The other solution is not suitable for the company's scenario, for the following reason:
D: Create multiple ECS instances in the VPC to install subsystems of different departments- Allocate only Intranet IP addresses to all ECS instances, and deploy them in the same security groups. This solution cannot isolate the networks between subsystems, because ECS instances in the same security group can communicate with each other by default, regardless of whether they have intranet or internet IP addresses. Moreover, this solution may also prevent the ECS instances from accessing the internet or providing external services, which may affect the business operation of the company6.
References: What is a VPN? - Virtual Private Network - Cisco, VPN Gateway - Alibaba Cloud, OpenVPN - Alibaba Cloud Marketplace, Bastion Host - Alibaba Cloud Document Center, Bastionhost - Alibaba Cloud, Security groups - Elastic Compute Service - Alibaba Cloud
質問 # 37
Company A constructed a sales management platform using three Elastic Compute Service (ECS) instances. One of the instances runs MySQL, and is used as the database server. The other two instances are used as Web servers After some time, the number of employees in Company A dramatically increases, leading to higher sales volumes At the same time, the platform response speed is gradually decreasing too.
According to the report from CloudMonitor, the average CPU utilization rate of the two Web servers exceeds 70%, and database load reaches 75% Company A can select Alibaba Cloud_________ services.to cope with the issue and optimize the performance. (Number of correct answers: 2)
- A. Incorporate Server Load Balancer (SLB) and add additional ECS instances to relieve the load on existing ECS instances
- B. Replace the self-built MySQL database with ApsaraDB for RDS to obtain better database performance, and utilize RDS read-only instances to handle read-only requests
- C. Use Content Delivery Network (CDN) to enhance content loading speed
- D. Import database data into Object Storage Service (OSS) to share the storage pressure on the platform
正解:A、B
質問 # 38
The daily PV volume of a community website is as high as 20 million. The applications of the website are deployed on ECS instances while logs are stored on the data disks of a single ECS instance.
Now, the website wants to extend the log retention period to 24 months and ensure that logs can be quickly downloaded when needed. The current data disks they have can only help retain three months of logs In this case, ________ is the ideal solution for solving the log retention issue.
- A. OSS
- B. CDN
- C. Container Service
- D. ApsaraDB for RDS
正解:A
解説:
Explanation
OSS (Object Storage Service) is a secure, cost-effective, and highly reliable cloud storage service that allows you to store, back up, and archive any amount of data in the cloud1. OSS is ideal for storing logs, as it provides 99.9999999999% (12 nines) durability and 99.995% availability or service continuity1. OSS also supports lifecycle management, which allows you to automatically delete or transition objects to lower-cost storage classes based on your predefined rules2. OSS offers four tiers of storage: Standard, Infrequent Access, Archive, and Cold Archive. Each tier is cost-optimized for specific storage patterns1. The Archive and Cold Archive tiers are suitable for storing infrequently accessed data, such as logs, for a long time. The Archive tier offers data retrieval time within one minute, while the Cold Archive tier offers expedited data retrieval time within an hour1. Therefore, OSS can help the website extend the log retention period to 24 months and ensure that logs can be quickly downloaded when needed.
CDN (Content Delivery Network) is a distributed network that delivers content to users based on their geographic locations, the origin sites, and the content delivery nodes3. CDN is mainly used for content distribution, such as static web pages, images, videos, and downloads3. CDN is not suitable for storing logs, as it does not provide data durability or lifecycle management.
Container Service is a high-performance and scalable container application management service that enables you to use Docker and Kubernetes to manage the lifecycle of containerized applications4. Container Service is mainly used for deploying and orchestrating microservices, serverless applications, and big data applications4.
Container Service is not suitable for storing logs, as it does not provide data durability or lifecycle management.
ApsaraDB for RDS (Relational Database Service) is a stable and reliable online database service that supports MySQL, SQL Server, PostgreSQL, MariaDB, and PPAS5. ApsaraDB for RDS is mainly used for storing and processing structured data, such as user information, transaction records, and product catalogs5. ApsaraDB for RDS is not suitable for storing logs, as it is more expensive and less scalable than OSS. References: Object Storage Service (OSS) - Alibaba Cloud, Lifecycle management - Object Storage Service - Alibaba Cloud Documentation Center, Content Delivery Network (CDN) - Alibaba Cloud, Container Service - Alibaba Cloud, ApsaraDB for RDS - Alibaba Cloud
質問 # 39
Many of Alibaba Cloud services provide highly reliable data storage capacity. For example, Object Storage Service (OSS) promises that its data reliability is no less than 99 99999999%. This high data reliability is solely achieved by RAID 0+1 redundancy technology.
- A. True
- B. False
正解:A
質問 # 40
You are using Auto Scaling with one scaling group already created, then you want to execute a task at a specific time such as removing 1 ECS instance every night at 00:00. To achieve this, which of the following operations should be performed'? (Number of correct answers; 2)
- A. Create a scheduled task.
- B. Create a scaling rule
- C. Create an event-triggered task.
- D. Create a new scaling group.
正解:D
質問 # 41
RDS accounts can be used to connect with the databases created on a given RDS instance. Each account can be bound with multiple databases. Yet, the read/write permissions of each database can only be assigned to one RDS account
- A. False
- B. True
正解:A
解説:
Explanation
RDS accounts can be used to connect with the databases created on a given RDS instance. Each account can be bound with multiple databases. However, the read/write permissions of each database can be assigned to multiple RDS accounts, not just one. For example, you can create an account with read-only permission for all databases, and another account with read-write permission for a specific database. This way, you can manage the access control of your databases more flexibly and securely. References: Introduction to ApsaraDB RDS - Alibaba Cloud Document Center - User Management - Account Permissions
質問 # 42
A video company uses SLB to distribute user requests to 20 ECS instances with the same configuration to response these requests. As the Spring Festival approaches, service traffic would double during holidays (based on past experience). Thus, you use Auto Scaling to elastically adjust computing resources. Since the services is online for many years, you have historic records that can help predict the upcoming service traffic and choose the scaling mode freely. In this scenario, which of the following options are feasible and with minimum operation efforts? (Number of correct answers: 2)
- A. Manual mode: Set the minimum number of instances to 40 on the first day of the holidays and change the number to 20 after the holidays.
- B. Healthy check mode: Ensures that all the current ECS instances in scaling groups are working correctly to meet user access requests.
- C. Cloud monitor and event-triggered task: Dynamically adds ECS instances during resource shortage and reduces ECS instances during idle hours by monitoring the CPU utilization rate and workload
- D. Scheduled task: Increases the number of ECS instances to 40 on the first day of the holidays and reduce the number to 20 after the holidays.
正解:A、D
質問 # 43
A large enterprise wants to migrate the entire business system to Alibaba Cloud to save the overall IT procurement and O&M costs From the security aspect, the company requires that
1. Must support secured remote O&M because the administrator often takes business trips.
2. Networks between subsystems should be isolated because subsystems are independently used by different departments Which of the followings should be used together to meet the company's requirements? (Number of correct answers: 3)
- A. Use the security group function of the ECS instance, and respectively deploy ECS instances running different subsystems to independent security groups.
- B. Enable the VPN on the bastion host (or directly use the VPN image on Alibaba Cloud Marketplace). The administrator uses VPN encrypted communication during O&M.
- C. Build an independent ECS instance as the bastion host or remote logon and O&M, and authorize the bastion host to access ECS instances running other subsystems.
- D. Create multiple ECS instances in the VPC to install subsystems of different departments- Allocate only Intranet IP addresses to all ECS instances, and deploy them in the same security groups.
正解:B、C、D
質問 # 44
......
ACP-Cloud1問題集はAlibaba Cloud Computing認証済み試験問題と解答:https://www.goshiken.com/Alibaba-Cloud/ACP-Cloud1-mondaishu.html
ACP-Cloud1無料試験学習ガイド!(更新された72問あります):https://drive.google.com/open?id=1yuEE4f-9vbqIguiXMXbYFWrjt4_6MnJr