Q1. Which aspect of the project definition does the cloud design scope provide?
A. Broad directions for the project
B. Boundaries of what the project should and should not include
C. Sales figures that must be met when designing the project
D. Specific features or functions that must be included in the project
Answer: D
Q2. An organization has internal applications that require block, file, and object storage. They anticipate the need for multi-PB storage within the next 18 months. In addition, they would prefer to use commodity hardware as well as open source technologies. Which solution should be recommended?
A. Cinder
B. Hadoop
C. Swift
D. Ceph
Answer: C
Explanation: OpenStack Swift Object Storage on EMC Isilon
EMC Isilon with OneFS 7.2 now supports OpenStack Swift API. Isilon is simple to manage, highly scalable (up to 30PB+ in a single namespace) and highly efficient (80%+ storage utilization) NAS platform.
Explanation: References:
http://samuraiincloud.com/2014/11/26/openstack-swift-object-storage-on-emc-isilon/
Q3. An organization wants to include performance monitoring in their cloud environment. However, they want to minimize the number of accounts and passwords that must be created on target devices and sent across the network. Which monitoring solution should a cloud architect recommend to meet this requirement?
A. Proxy
B. Agent-based
C. Agentless
D. Central
Answer: D
Q4. What is a benefit of a service catalog?
A. Handles every IT request simultaneously
B. Allows users to customize tenant roles
C. Services do not have to meet the standards set by the business
D. Enables the application of quotas on resources to control cost
Answer: D
Q5. An organization plans to deploy many cloud-native applications that will generate a considerable amount of east-west traffic. The cloud-native applications will be deployed on hosts running hyppervisors. Why would distributed routers be considered in this design?
A. Enable network segment
B. Improve network performance between hosts
C. Minimize Internet traffic
D. Protect against a physical router failure
Answer: B
Explanation: Distributed Virtual Router (DVR) aims to isolate the failure domain of the traditional network node and to optimize network traffic by eliminating the centralized L3 agent. It does that by moving most of the routing previously performed on the network node to the compute nodes.
* East/west traffic (Traffic between different networks in the same tenant, for example between different tiers of your app) previously all went through one of your network nodes whereas with DVR it will bypass the network node, going directly between the compute nodes hosting the VMs. Etc. Explanation:
References:
http://assafmuller.com/2015/04/15/distributed-virtual-routing-overview-and-eastwest-routing/
Q6. In a cloud design, an architect has defined a separate trust zone for host management. The hosts will be running open source hypervisors.
What should be included in the design deliverables to support this separate trust zone?
A. Isolated management network and a common super-user account
B. Separate PKI and encrypted CMI portal access
C. Separate authentication source and a preferred zone set
D. Isolated management network and a separate authentication source
Answer: D
Q7. An organization has internal applications that require block, file, and object storage. They anticipate the need for multi-PB storage within the next 18 months. In addition, they would prefer to use commodity hardware as well as open source technologies. Which solution should be recommended?
A. Cinder
B. Hadoop
C. Swift
D. Ceph
Answer: C
Explanation: OpenStack Swift Object Storage on EMC Isilon
EMC Isilon with OneFS 7.2 now supports OpenStack Swift API. Isilon is simple to manage, highly scalable (up to 30PB+ in a single namespace) and highly efficient (80%+ storage utilization) NAS platform.
Explanation: References:
http://samuraiincloud.com/2014/11/26/openstack-swift-object-storage-on-emc-isilon/
Q8. After developing prototype applications in the public cloud, developers determined that they want softwaredefined network functionality. Which ability will this requirement provide for the developers?
A. Programmatically provision an IPsec VPN tunnel between the public and private clouds
B. Programmatically migrate layer-3 access from aggregate to access switches
C. Programmatically control physical core network topologies
D. Programmatically provision physical network segments and services
Answer: D
Explanation: Software-defined networking (SDN) is an approach to computer networking that allows network administrators to manage network services through abstraction of higher-level functionality. This is done by decoupling the system that makes decisions about where traffic is sent (the control plane) from the underlying systems that forward traffic to the selected destination (the data plane).
Reference: https://en.wikipedia.org/wiki/Software-defined_networking
Q9. A cloud architect is designing a private cloud for an organization. The organization has no existing backup infrastructure. They want to offer consumers the ability to backup virtual machine instances using image-based backups.
What should the cloud architect look for when selecting a backup application for this environment?
A. Virtual machine hardware is on the backup application vendor's compatibility list
B. Hypervisor servers' hardware is on the backup application vendor's compatibility list
C. Backup application can be integrated with the selected CMP components
D. Backup application supports a cloud gateway for accessing the cloud-based virtual machines
Answer: D
Explanation: A cloud storage gateway provides basic protocol translation and simple connectivity to allow the incompatible technologies to communicate transparently. The gateway can make cloud storage appear to be a NAS filer, a block storage array, a backup target or even an extension of the application itself.
Explanation: References:
http://searchcloudstorage.techtarget.com/definition/cloud-storage-gateway
Q10. Which categories of network traffic should be isolated from inter-host communication and each other?
A. Logging and messaging
B. Cloud services and administration
C. Administration and storage
D. Messaging and storage
Answer: B