• ホーム
  • ブログ
  • [2024年01月最新リリース]DCA問題集でDocker Certified Associate認証 [Q23-Q39]

[2024年01月最新リリース]DCA問題集でDocker Certified Associate認証 [Q23-Q39]

Share

[2024年01月最新リリース]DCA問題集でDocker Certified Associate認証

最新の完璧なDCA問題集問題と解答で100%パスさせます

質問 # 23
Will this sequence of steps completely delete an image from disk in the Docker Trusted Registry?
Solution: Delete the image and delete the image repository from Docker Trusted Registry

  • A. No
  • B. Yes

正解:A

解説:
Explanation
Deleting the image and deleting the image repository from Docker Trusted Registry will not completely delete the image from disk. According to the official documentation, you also need to run garbage collection on the Docker Trusted Registry to reclaim disk space.
References: https://docs.docker.com/ee/dtr/admin/manage-images/garbage-collection/


質問 # 24
Is this a Linux kernel namespace that is disabled by default and must be enabled at Docker engine runtime to be used?
Solution. pid

  • A. No
  • B. Yes

正解:A

解説:
Explanation
pid is not a Linux kernel namespace that is disabled by default and must be enabled at Docker engine runtime to be used. pid is a Linux kernel namespace that provides process isolation for containers. It ensures that processes in one container cannot see or signal processes in another container or on the host system. pid is enabled by default for Docker containers and does not require any special flag or option to be used. However, you can disable pid isolation for a container by using --pid host option when creating or running a container.
This option connects the container to the host's pid namespace and allows the container to see and signal processes on the host system. References: https://docs.docker.com/engine/reference/run/#pid-settings-pid,
https://en.wikipedia.org/wiki/Linux_namespaces#Process_ID_(pid)


質問 # 25
Which networking drivers allow you to enable multi-host network connectivity between containers?

  • A. host, macvlan, overlay, user-defined
  • B. bridge, macvlan, ipvlan, overlay
  • C. macvlan, ipvlan, and overlay
  • D. bridge, user-defined, host

正解:C


質問 # 26
Which of the following commands wifi automatically create a volume when a container is started?

  • A. 'docker container run --name nginxtest -v /app:mount nginx'
  • B. 'docker container run --name nginxtest --volumes myvol:/app:new nginx'
  • C. 'docker container run --name nginxtest -v myvol:/app nginx'
  • D. 'docker container run --name nginxtest --volumes=/app nginx'

正解:D


質問 # 27
One of several containers in a pod is marked as unhealthy after failing its livenessProbe many times. Is this the action taken by the orchestrator to fix the unhealthy container?
Solution: The controller managing the pod is autoscaled back to delete the unhealthy pod and alleviate load.

  • A. No
  • B. Yes

正解:A

解説:
Explanation
The controller managing the pod is not autoscaled back to delete the unhealthy pod and alleviate load, because this is not how Kubernetes handles pod failures. According to the official documentation, Kubernetes will try to maintain the desired number of pods for each controller, and will not scale down or up based on pod health.
References:
https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller/#how-a-replicationcontroller-wor


質問 # 28
Is this a way to configure the Docker engine to use a registry without a trusted TLS certificate?
Solution. Set and export the IGNORE_TLS environment variable on the command line.

  • A. No
  • B. Yes

正解:A

解説:
Explanation
Setting and exporting the IGNORE_TLS environment variable on the command line is not a way to configure the Docker engine to use a registry without a trusted TLS certificate. The IGNORE_TLS environment variable is not recognized by Docker and has no effect on its behavior. To configure the Docker engine to use a registry without a trusted TLS certificate, you need to either set INSECURE_REGISTRY in the /etc/docker/default configuration file or add --insecure-registry flag to the dockerd command. References:
https://docs.docker.com/registry/insecure/,
https://docs.docker.com/engine/reference/commandline/dockerd/#insecure-registries


質問 # 29
Two development teams in your organization use Kubernetes and want to deploy their applications while ensuring that Kubernetes-specific resources, such as secrets, are grouped together for each application.
Is this a way to accomplish this?
Solution: Add all the resources to the default namespace.

  • A. No
  • B. Yes

正解:A


質問 # 30
Is this the purpose of Docker Content Trust?
Solution: Verify and encrypt Docker registry TLS.

  • A. No
  • B. Yes

正解:A

解説:
Explanation
Verifying and encrypting Docker registry TLS is not the purpose of Docker Content Trust. According to the official documentation, this is done by using HTTPS or self-signed certificates for secure communication with a registry.
References: https://docs.docker.com/engine/security/https/


質問 # 31
Does this describe the role of Control Groups (cgroups) when used with a Docker container?
Solution: user authorization to the Docker API

  • A. No
  • B. Yes

正解:A


質問 # 32
Two development teams in your organization use Kubernetes and want to deploy their applications while ensuring that Kubernetes-specific resources, such as secrets, are grouped together for each application.
Is this a way to accomplish this?
Solution: Add all the resources to the default namespace.

  • A. No
  • B. Yes

正解:A

解説:
Explanation
This is not a way to accomplish this, because adding all the resources to the default namespace is not a good practice for isolating applications in Kubernetes. According to the official documentation, namespaces are used to group resources into logical units that correspond to different projects, teams, or environments. Using namespaces can help avoid naming collisions and enforce resource quotas and access policies.
References: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/


質問 # 33
Does this command create a swarm service that only listens on port 53 using the UDP protocol?
Solution: 'docker service create --name dns-cache -p 53:53/udp dns-cache'

  • A. No
  • B. Yes

正解:B


質問 # 34
Your organization has a centralized logging solution, such as Splunk.
Will this configure a Docker container to export container logs to the logging solution?
Solution: docker system events --filter splunk

  • A. No
  • B. Yes

正解:A


質問 # 35
From a DevOps process standpoint, it is best practice to keep changes to an application in version control.
Which of the following will allow changes to a docker Image to be stored in a version control system?

  • A. docker save
  • B. A docker-compose.yml file
  • C. docker commit
  • D. A dockerfile

正解:C


質問 # 36
An application image runs in multiple environments, with each environment using different certificates and ports.
Is this a way to provision configuration to containers at runtime?
Solution: Provision a Docker config object for each environment.

  • A. No
  • B. Yes

正解:B


質問 # 37
Two pods bear the same label, app: dev.
Will a label selector matching app: dev match both of these pods?

  • A. Yes, if the pods are in the same Kubernetes namespace as the object bearing the label selector and both pods were preexisting when the label selector was declared.
  • B. Yes, as long as all the containers in those pods are passing their livenessProbes and readinessProbes.
  • C. Yes, if both pods were pre-existing when the label selector was declared.
  • D. Yes, if the pods are in the same Kubernetes namespace as the object bearing the label selector

正解:A


質問 # 38
Will this command mount the host's '/data' directory to the ubuntu container in read-only mode?
Solution: 'docker run -v /data:/mydata --mode readonly ubuntu'

  • A. No
  • B. Yes

正解:A

解説:
Explanation
This command will not mount the host's '/data' directory to the ubuntu container in read-only mode, because it has an incorrect option for making the volume read-only. According to the official documentation, the correct command should be:
docker run -v /data:/mydata:ro ubuntu
The incorrect option is:
The --mode flag does not exist and should be replaced by a :ro suffix to make the volume read-only.
References: https://docs.docker.com/engine/reference/commandline/run/#mount-volume-v-read-only
https://docs.docker.com/storage/volumes/#use-a-read-only-volume


質問 # 39
......

最新のDCA試験問題集でDocker試験トレーニング:https://www.goshiken.com/Docker/DCA-mondaishu.html

2024年最新のの問題DCA問題集で最新のDocker試験を使おう:https://drive.google.com/open?id=1dLJepbWiNQGE9-hOtMqSNzKdpt3954Mx

関するブログ

もっと
DCA無料問題集