View 1Z0-1124-25 Exam Questions

Q: 1

When migrating workloads from AWS to OCI, which connectivity option generally offers the LOWEST latency and HIGHEST bandwidth for data transfer, assuming a direct, dedicated connection is financially viable?

Options

Discussion

Priya Feb 28, 2026 3:05 pm

A is wrong, B. Only B sets up that proper private link for both best speed and lowest lag.

Sam Feb 23, 2026 12:55 am

A is wrong, B. With a third-party cloud exchange joining Direct Connect and FastConnect, you get a private, dedicated link-so lowest latency and highest bandwidth by far. VPNs (A/D) ride on public internet so even with optimization can't really compete, unless the question meant a direct dark fiber or MPLS circuit not listed here.

Adam M. Mar 1, 2026 10:39 am

Sofia J. Feb 18, 2026 4:54 am

C or D, had something like this in a mock and didn't feel B was obvious at all.

LeoI Mar 4, 2026 7:31 am

D , had something like this in a mock and picked D for public IP routing with Transit Gateway.

Casey J. Feb 21, 2026 11:46 pm

Every Oracle practice and real exam report seems to harp on B. Its B

Noah Z. Feb 15, 2026 3:28 pm

Its D. Transit Gateway to VPN lets you connect AWS and OCI directly, skipping extra hops of a third-party exchange. Sure, it's over the public internet, but VPN optimization can help with latency if set up right. Maybe missing something with B but D looks close.

Sara Feb 19, 2026 6:45 pm

Avery I. Feb 16, 2026 6:53 pm

Ivy Feb 15, 2026 12:49 am

Probably B, since the cloud exchange linking Direct Connect and FastConnect gives true private, dedicated bandwidth. Minor gotcha: if the question allowed for actual physical dark fiber between clouds (which isn't listed), that could theoretically beat even B. Otherwise, B fits as worded. Agree?

Be respectful. No spam.

Q: 2

You are designing a multi-tier application within an OCI Virtual Cloud Network (VCN). The application comprises a public-facing web tier in one subnet, an application tier in another, and a database tier in a third. For security reasons, you want to ensure that only the application tier can initiate connections to the database tier. The web tier needs to be able to communicate with the application tier, but not directly with the database tier. You are using private IP addresses within your VCN. Which procedural step is MOST effective to achieve this network isolation?

Options

Discussion

Sofia B. Feb 17, 2026 5:26 pm

Gotta go with C here. Security lists per subnet is the OCI standard for isolating tiers, way simpler than messing with routing or one big NSG. Pretty sure that's what Oracle wants.

CuriousArchitect7431 Feb 28, 2026 12:54 pm

C. that's what I've seen recommended for subnet isolation. No need for routing tricks if security lists are tight enough.

Nathan A. Mar 5, 2026 7:39 pm

Honestly kinda lost on this one, but I'll go with C. Someone back me up?

Quinn I. Mar 2, 2026 3:01 am

D imo

Liam A. Feb 26, 2026 1:55 pm

Its D

RowanA Feb 14, 2026 4:54 pm

Probably C, NSGs in A sound tempting but Oracle exams favor security lists for subnet-level granularity. B is a trap since it lumps them together.

Daniel Mar 4, 2026 10:06 pm

C/D? I get why some pick D for 'defense in depth,' but with OCI VCNs, security lists (C) already block direct web-to-db access. Routing changes in D feel extra unless you want to enforce pathing. Pretty sure C is best here but open to debate.

NoraR Feb 28, 2026 2:37 am

Why add route table changes if security lists alone isolate tiers? D looks like a trap for most effective.

Avery Feb 24, 2026 11:35 am

Nah, it's not D. C is what Oracle usually wants on these since routing changes add unneeded steps here. D looks tempting but it's a trap.

MethodicalEngineer9963 Feb 15, 2026 7:36 pm

C, no other config needed for VCN internal isolation.

Be respectful. No spam.

Q: 3

You are troubleshooting a connectivity issue between two compute instances within the same VCN. Both instances are in different subnets. Instance A (IPv4: 10.0.1.10, IPv6: fc00:1:1::10) can ping its subnet gateway (10.0.1.1) and can ping the IPv6 address of Instance B (fc00:1:2::20), but cannot ping Instance B's IPv4 address (10.0.2.20). The security lists and network security groups (NSGs) are configured to allow all traffic between the subnets. The route table for Instance A’s subnet has a rule to route all traffic destined to 10.0.2.0/24 subnet to the VCN Local Peering Gateway. What is the most probable cause?

Options

Discussion

SharpTester9938 Mar 3, 2026 2:36 pm

C/D? OCI networking makes me pull my hair out sometimes, especially with these route table details. Still, leaning B since in every similar question I've seen, missing a route back for IPv4 breaks ping but IPv6 works. Not 100% sure though.

Neha J. Feb 26, 2026 11:41 pm

Option D had something like this in a mock.

SeasonedArchitect1968 Feb 17, 2026 3:35 pm

B not A. Thought maybe A since IPv6 sometimes confuses things in OCI, but since IPv6 works and security lists allow all, feels like subnet B’s route table is the real gotcha here. Bit on the fence since LPGs aren’t typical inside one VCN-open to pushback if I missed something.

Vikram J. Feb 16, 2026 2:00 pm

B or maybe A if there's some funky VCN-level config, but it's almost always B when IPv4 fails and IPv6 works fine. In OCI, you need both subnets' route tables to cover the path each way or ICMP replies never get back. I could see a weird edge case if LPG was misused, but that's not typical here. Anyone run into this with default VCNs?

Noah S. Feb 21, 2026 1:55 pm

I don’t think it’s B. A makes sense if IPv6 wasn’t enabled, the ping wouldn’t work at all for that address. The weird thing is both instances ping on IPv6, so network config oddity maybe? Not fully convinced but it gets tricky with OCI peering.

Zoe M. Feb 15, 2026 2:25 am

B, and I’ve seen similar cases in Oracle practice tests where route tables trip people up. The official study guide has examples of this kind of return path issue. Pretty sure that's it, but check the docs if you want to be certain.

Logan Y. Feb 28, 2026 4:38 am

D . Ping works with IPv6 so not sure why that wouldn't apply here.

Karan Feb 25, 2026 3:44 pm

Option B similar scenario pops up in Oracle docs and the official study guide covers subnet route table configs well. Practice labs on OCI networking help a lot with these path/return-path type routing questions. Not totally sure, but that’s where I’d focus.

Emma I. Feb 19, 2026 7:10 am

B here, pretty sure. Trap is A but IPv6 works fine, so routing on B’s subnet is the issue.

NehaZ Feb 25, 2026 11:10 am

A isn’t it, B fits better. If Instance B’s subnet route table doesn’t send 10.0.1.0/24 back to the VCN or local link, the IPv4 ping response can’t make it home, even if security is wide open. That lines up with what I’ve seen-correct me if I’m missing something.

Be respectful. No spam.

Correct Answer:

Explanation

Analyze Connectivity Successes: Instance A can ping its subnet gateway (10.0.1.1), indicating that

local subnet routing and security rules are functioning for IPv4. It can also ping Instance B’s IPv6

address (fc00:1:2::20), confirming that IPv6 routing and security rules between subnets are

operational.

Identify the Failure: Instance A cannot ping Instance B’s IPv4 address (10.0.2.20). Since security lists

and NSGs allow all traffic, the issue is unlikely to be a security configuration problem.

Examine Routing for Instance A: The route table for Instance A’s subnet (10.0.1.0/24) has a rule

directing traffic to 10.0.2.0/24 via the VCN Local Peering Gateway (LPG). In OCI, LPGs are used for

intra-region VCN peering, but here, both instances are in the same VCN, so this rule is likely a

misconfiguration or irrelevant unless peering is involved. However, the successful IPv6 ping suggests

basic connectivity exists.

Check Return Path from Instance B: For a ping to succeed, Instance B must send ICMP replies back to

Instance A (10.0.1.10). Instance B’s subnet (10.0.2.0/24) needs a route table entry to send traffic to

10.0.1.0/24. Without this, replies are dropped, causing the IPv4 ping to fail. The IPv6 success

indicates that IPv6 routing is correctly configured both ways, possibly via SLAAC or default routes.

Evaluate Options:

A: Incorrect. IPv6 is enabled, as Instance A pings Instance B’s IPv6 address.

B: Correct. Missing route for 10.0.1.0/24 in Instance B’s subnet prevents IPv4 replies.

C: Incorrect. Security lists and NSGs can filter IPv6 traffic in OCI.

D: Incorrect. Ping supports IPv6, as evidenced by the successful IPv6 ping.

The most probable cause is a missing route in Instance B’s subnet route table. In OCI, each subnet

has its own route table, and for instances in different subnets within the same VCN to communicate,

both subnets must have appropriate routes. The successful IPv6 ping suggests that IPv6 routing is

intact (likely due to default behavior or SLAAC), but IPv4 requires explicit routing. Per the Oracle

Networking Professional study guide, "Route tables must be configured to direct traffic to the

appropriate next hop for inter-subnet communication within a VCN" (OCI Networking

Documentation, Section: Virtual Cloud Networks).

Reference: Oracle Cloud Infrastructure Documentation - Networking Overview, Route Tables.

Q: 4

Your company utilizes a hybrid cloud architecture, connecting its on-premises network to an OCI VCN using a FastConnect private peering connection. You need to ensure that instances within a specific subnet in the VCN can only communicate with resources in a designated IP address range within the on-premises network. What is the MOST effective way to achieve this specific network isolation?

Options

Discussion

Jamie C. Feb 25, 2026 6:34 am

C . B is tempting but default security lists lack the fine-grained control NSGs have for subnet-level isolation.

Daniel C. Mar 4, 2026 9:03 am

Would modifying just the default security list in B meet Oracle best practices for subnet isolation here? Exam guide details would help.

Jordan Feb 27, 2026 8:22 am

Probably C. B’s tempting but default security list is less granular, reports on similar exams point to NSGs + custom route as best fit here.

Ajay Feb 20, 2026 7:25 am

I don't think it's C, I'd pick B since the default security list can restrict ranges too. Trap might be NSGs here.

Riley J. Feb 20, 2026 3:13 am

C makes sense since custom route tables plus NSGs let you scope access down to the exact IP range for the specific subnet, which is what they want. Pretty sure that's how OCI best practices recommend it. Used similar logic in lab practice, but open to corrections if I missed anything.

Nora P. Feb 24, 2026 7:07 pm

B is wrong, C. Only custom route tables plus NSGs give you that specific subnet-to-IP control, not default security lists or gateways.

Robin A. Feb 20, 2026 2:03 pm

Its C. Official guide and Oracle labs both push using NSGs with custom route tables for granular subnet restrictions like this.

Mia O. Feb 22, 2026 2:09 am

C , saw similar in an exam report and it was all about NSGs plus custom route table for that subnet. That way you isolate just what you need, pretty sure that's what Oracle wants here. Disagree?

Karan L. Feb 24, 2026 6:48 pm

Bit of a catch here: if the question was about restricting traffic from every subnet, B would probably fit better. But since it's about just one subnet needing isolation, C covers that case most precisely. Pretty sure C is what Oracle expects for this scenario.

Ravi H. Feb 24, 2026 1:21 am

C or B? Practice test says C but official docs are a must check for OCI network isolation.

Be respectful. No spam.

Q: 5

You are designing a multicloud architecture where your customer wants to leverage OCI for its cost- effective compute and storage, while utilizing Microsoft Azure’s AI/ML services and AWS’s extensive serverless capabilities. The application requires low latency and high bandwidth between the clouds. Which of the following approaches provides the LEAST optimal solution for interconnecting these three cloud providers for production workloads?

Options

Discussion

AvaO Feb 23, 2026 3:16 pm

B is right here. VPN tunnels (option B) just aren't going to cut it for production when you want low latency and high bandwidth, since they're over the public internet. Pretty sure that's what makes B the least optimal, but open if someone sees it differently.

Maya U. Feb 19, 2026 11:17 pm

Option B again, honestly tired of these VPN tunnel traps on Oracle style questions. They always want dedicated links for production.

Ethan A. Feb 16, 2026 7:57 am

Option B. VPN is the trap since it's public internet, not good for production latency and bandwidth. Anyone disagree?

Owen N. Feb 17, 2026 3:30 pm

B . IPSec VPNs just don't meet the low latency and bandwidth requirements you'd want in a real multicloud production workload. Similar questions always ding VPN-based designs for performance, even if they're secure.

Layla X. Feb 28, 2026 4:24 am

Its B, seen similar in some practice sets. Official Oracle documentation and exam guides highlight why dedicated connections are much better than basic VPN for latency/bandwidth.

Priya S. Feb 15, 2026 5:55 am

B , seen this type in practice questions and the official guide backs it up for latency concerns.

CalmArchitect7169 Feb 18, 2026 9:56 am

A is wrong, B. VPN tunnels between all three clouds are way slower and less reliable for high bandwidth apps.

Ishaan Feb 17, 2026 5:29 pm

D is actually better than B here, VPNs between all clouds hit latency and bandwidth the hardest. B.

Luke F. Feb 17, 2026 5:58 am

Not sure D is worse than B for latency here, so I'd go with D.

Karan G. Feb 14, 2026 5:03 pm

Why not just skip VPN tunnels (B)? Public internet gives way too much jitter and unpredictable latency for production workloads.

Be respectful. No spam.

Q: 6

You are troubleshooting a network connectivity issue between a compute instance in a private subnet within your VCN and a service on the public internet using Cloud Shell. You suspect a problem with the network security group (NSG) rules associated with the instance's VNIC. Which Cloud Shell command and appropriate tool combination allows you to directly inspect the NSG configuration impacting the VNIC?

Options

Discussion

Meera C. Feb 17, 2026 3:53 pm

Curious what folks think about using jq vs awk here. B seems most accurate because it goes from instance to NSG and actually lets you see the config, not just grab IDs. Pretty sure that's what you'd want for rule troubleshooting.

Rowan U. Feb 20, 2026 3:37 am

Don’t think it’s D, B is the better pick here. B actually drills down from instance to VNIC to the NSG with jq, so you really get to see all the config details that could be impacting connectivity. D is a bit of a trap since awk parsing can miss stuff if JSON changes. Anyone disagree?

AlexG Feb 20, 2026 12:58 am

OwenM, agree with you that jq is more reliable when parsing JSON from the CLI. D looks tempting if you're used to quick shell scripting, but OCI's responses can get messy. Pretty sure B is the safest choice for structured output here, but open to other tricks if someone has a real-world edge case.

Luna M. Mar 5, 2026 5:57 am

Its D, because awk is quick for pulling NSG IDs right from the VNIC. I know jq is more robust, but if you just want the NSG details fast, D seems good enough. Maybe missing something small though.

Amelia Feb 16, 2026 7:43 pm

A is wrong, B. Awk in D won’t catch nested JSON right.

Luke Y. Mar 1, 2026 4:50 am

I don’t think it’s D. B works better since jq actually handles the nested JSON for VNIC NSG mapping, while D can break if OCI CLI changes output. Trap is thinking awk will always parse right. Correct me if I missed something.

CalmMentor7757 Feb 21, 2026 5:04 pm

Option B is the way I'd go. Parsing with jq handles structured OCI JSON much better than awk, so it's less likely to break if the format changes. D looks close but falls for that classic brittle parsing trap.

OwenM Feb 19, 2026 10:22 am

B tbh. Awk parsing like D feels too brittle, jq is safer for JSON. Trap here is thinking D works every time.

Ravi Feb 25, 2026 9:49 pm

Reese Feb 23, 2026 9:44 am

Anyone else notice on some exam reports that B is the one used for actual rule inspection?

Be respectful. No spam.

Q: 7

You're automating the creation of multiple VCNs across different OCI regions using Cloud Shell scripting. Which authentication method within Cloud Shell is best suited to programmatically authenticate with OCI, ensuring both security and scalability for this automation task?

Options

Discussion

Daniel T. Feb 21, 2026 12:47 pm

Option C for sure. Instance Principals mean you don't have to mess with API keys or worry about storing creds in Cloud Shell, which is a big win for security and scaling scripts across regions. Pretty confident that's what Oracle wants here since it's their recommended way for automation. Disagree?

Sam Feb 18, 2026 11:34 pm

C . Official Oracle docs and the study guide both say Instance Principals with dynamic groups are best for secure, scalable automation in Cloud Shell. No key management, less risk of leaks. Pretty sure that's what they want here, but open to other takes.

Ravi U. Feb 25, 2026 11:05 pm

Ugh, Oracle always overcomplicates this. C imo

SkepticalLead3805 Feb 20, 2026 3:46 pm

C . Instance Principals with dynamic groups is what Oracle recommends for Cloud Shell, no key storage needed so better on security and scales easily. B looks tempting but storing API keys is a risk, especially for multi-region automation.

LaylaX Feb 21, 2026 11:33 pm

C . Instance Principals mean you avoid handling keys, which is way safer and scales for Cloud Shell automation. B tempts people but storing API keys isn't great. D's more suited to full IaC pipelines, not straightforward scripting.

FriendlyLead511 Feb 15, 2026 2:32 am

C imo

PracticalConsultant5083 Feb 17, 2026 4:01 pm

Man, Oracle always loves to push their own flavor of identity management. Option C is what they're looking for. Instance Principals with dynamic groups let Cloud Shell sessions authenticate without ever touching API keys, so you don't have to manage or rotate credentials manually. Pretty sure that's the most secure and scalable way for automation like this. Anyone think B with API keys is actually safer?

Alex X. Feb 22, 2026 10:56 pm

C or D? I was thinking D since Vault helps with secret management, but maybe that's too much for scripting.

CameronV Feb 14, 2026 11:22 pm

Not sure D really fits here, C is the one you want. Instance Principals let you skip managing API keys and just assign permissions through dynamic groups, which is more secure and scales well for automation in Cloud Shell. D would make sense if this were a full Infrastructure-as-Code scenario, but it's more complex than needed for shell scripting. I think option B trips people up but keeping API keys in storage brings risk.

Morgan R. Feb 18, 2026 7:43 pm

C imo. Instance Principals are the way to go for this, since they let you avoid storing or managing API keys entirely and OCI Cloud Shell supports them through dynamic groups. B is tempting but brings risk if keys leak, and D suits bigger IaC workflows not straight shell scripting. Pretty sure Oracle recommends C for scripting automations like this, but happy to hear other arguments if I'm missing something.

Be respectful. No spam.

Q: 8

When configuring inter-tenancy VCN peering, what is the purpose of the "peer ID" provided by the requesting tenancy to the accepting tenancy?

Options

Discussion

Drew K. Mar 1, 2026 1:38 pm

Going With B, is correct here. Had something like this in a mock and the peer ID always meant the unique OCID for the Remote Peering Connection, not for auth or CIDR. Pretty sure they use it to link both sides during setup. Anyone disagree?

Parker F. Mar 5, 2026 12:41 pm

I see why some pick D, since security configuration can be confusing here. D.

Ryan G. Feb 21, 2026 12:32 pm

A is wrong, B. The peer ID’s whole job is to uniquely identify the requesting tenancy’s RPC so peering can be set up. D is tempting but that’s handled by security lists and NSGs, not this ID. I’ve seen similar wording in Oracle docs before, so pretty confident it’s B, but let me know if someone found an edge case.

Ajay Q. Feb 24, 2026 8:57 pm

B. not D. The peer ID is just for uniquely identifying RPCs, D is a trap since security rules are handled elsewhere.

Chris O. Feb 28, 2026 7:09 am

Yeah, B is the right call. The peer ID lets the accepting tenancy know exactly which Remote Peering Connection to connect to in the other tenancy-it's basically the OCID pointer. It's not for auth or CIDR and definitely not about security rules. I've double-checked Oracle docs on this, so 99% sure here. Anyone see it used differently?

Ben Q. Feb 13, 2026 6:52 am

B , peer ID is just how the RPC from the requesting tenancy is identified so the connection can be established. Security rules (like D) are managed separately. Pretty sure this lines up with Oracle docs but let me know if I missed anything.

Nora U. Feb 19, 2026 5:09 pm

D looks tempting since security rules are key for peering setups, and I assumed peer ID might relate to granting access. But on second thought, maybe that's handled elsewhere in OCI. Not totally sure so open to correction if I'm off here.

Robin J. Feb 18, 2026 5:28 am

I don’t think it’s D. B fits because the peer ID is only for uniquely identifying the requesting tenancy's RPC, not for security rules-that’s handled elsewhere. Seen similar confusion on other exams.

MasonN Feb 21, 2026 4:40 am

Isn't D the correct one if you're thinking about configuring security for the peering connection?

Luke X. Feb 22, 2026 11:21 am

Had something like this show up on a practice test, went with D because I thought peering configuration meant setting security rules too. Pretty sure now it's more about identifying the RPC, but at the time D seemed plausible. Anyone else think D?

Be respectful. No spam.

Q: 9

A financial services company is implementing a multicloud strategy, storing sensitive customer data in OCI due to its enhanced security features, running analytics workloads in AWS, and utilizing a SaaS application hosted in Google Cloud Platform (GCP). To comply with stringent data sovereignty regulations, the company requires that all traffic between OCI and AWS must transit exclusively within the United States. Which is the MOST critical consideration when choosing a connectivity solution to ensure compliance?

Options

Discussion

Jack Mar 4, 2026 5:03 pm

A. Saw a similar question before, and B is a common trap since just using DRG/VGW or VPN setup doesn’t actually guarantee the traffic remains US-only. Only a FastConnect provider with a written assurance will meet strict data sovereignty regs. Happy to discuss if I missed something here.

Taylor W. Feb 22, 2026 9:15 pm

Honestly Oracle exams love their FastConnect compliance scenarios, so A.

Jason F. Feb 26, 2026 7:36 am

Its A, since only FastConnect partners can guarantee traffic stays within US borders. B is a trap here.

Nora Mar 3, 2026 12:01 pm

Not B. Even if the VPN endpoints are both in the US, you can't really control how public internet routes the packets. Only A gives an actual guarantee that your OCI-AWS traffic stays within US borders, which is what matters for compliance.

CuriousCandidate9054 Feb 23, 2026 2:55 pm

Its A because only a FastConnect partner can actually guarantee all traffic stays within US borders. B is a classic trap, since VPNs over public internet might still route internationally even with US endpoints. Pretty sure that's what the exam's looking for, agree?

Ava F. Mar 3, 2026 9:57 am

A is the key one here. Only a FastConnect partner can actually guarantee traffic stays within US borders for compliance reasons. VPN or public internet options can't fully enforce geographic routing, even if the endpoints are in the US. Pretty sure about this but open to other views if I'm missing a nuance.

NinaM Feb 26, 2026 12:32 pm

For strict data sovereignty, A is the safest bet since only FastConnect partners can actually guarantee all OCI-AWS transit stays within US borders. VPNs or internet-based options like B, C, D can't really enforce that routing. If I'm missing something let me know.

ThoughtfulReviewer2748 Mar 3, 2026 12:32 am

OCI always slips these compliance gotchas in, super picky about data sovereignty. A

Avery O. Mar 4, 2026 2:22 pm

A for sure

Sam Feb 25, 2026 6:38 pm

Maybe C, since both VPN gateways are in the US and that should restrict routing, but not totally sure.

Be respectful. No spam.

Q: 10

You are managing a critical application hosted on OCI. To enhance security, you have enabled DNSSEC for your domain using OCI DNS. You want to automate the process of monitoring the health and validity of your DNSSEC configuration and receive alerts if any issues are detected. Which OCI service can be MOST effectively used for this DNSSEC monitoring purpose?

Options

Discussion

Nora Feb 19, 2026 1:13 am

Pretty sure it's B here. OCI Monitoring lets you track DNSSEC-related metrics and set up alerts automatically if something goes wrong. Not 100% but that's what I'd pick based on how Oracle sets up their monitoring tools. Agree?

Chloe G. Feb 28, 2026 7:34 pm

Why not just use D for direct DNS log analysis? Does B really cover DNSSEC specifics?

Jamie V. Mar 3, 2026 10:24 am

Nah, I think it's B for sure. Monitoring Service is built exactly for setting up alarms on metrics like DNSSEC health, while Logging Analytics is better for digging into logs but not as direct with alerting. Easy to mix them up since both use log data, but B lines up more with Oracle's alerting setup. Anyone disagree?

Reese E. Feb 22, 2026 8:31 am

B , official docs and OCI practice tests both push Monitoring for automated health checks with alerting. Logging Analytics is more for deep-dive log analysis, but not the best call here.

Parker O. Feb 22, 2026 10:50 pm

Maybe D. Seen similar questions in some practice exams and Logging Analytics often comes up for log-driven alerting.

Adam Feb 17, 2026 3:36 am

I'm not convinced B is the best pick. I think D would fit better since Logging Analytics can analyze DNS logs and flag anomalies, including DNSSEC issues, and you could set up queries to alert you. Audit and Vulnerability Scanning feel off-topic here. Maybe I'm missing something but D seems a valid choice too, unless there's a caveat with alerting. Thoughts?

Piya X. Mar 1, 2026 8:34 pm

I don't think it's D. Logging Analytics is great for in-depth log searches but doesn't really do automated DNSSEC health alerts out of the box. B fits if you want to set alarms and get proactive notifications, which is what the question asks. I think B is it, though D does trip people up sometimes.

Owen A. Mar 3, 2026 10:50 pm

I don’t think it’s B. D is a trap option but Logging Analytics feels closer for DNSSEC log insights.

Ryan D. Mar 5, 2026 7:00 am

B makes sense here since OCI Monitoring is what you'd use for actual metric tracking and alerting, not just analyzing logs. D (Logging Analytics) is more about digging into log patterns but doesn't do the automated health/alarm piece as directly. Pretty sure Monitoring is what Oracle recommends for this.

Zoe T. Feb 24, 2026 12:55 pm

D , had something like this in a mock and Logging Analytics seemed the right pick for DNSSEC log monitoring.

Be respectful. No spam.

Question 1 of 20 · Page 1 / 2

Premium Access Includes

✓ Quiz Simulator
✓ Exam Mode
✓ Progress Tracking
✓ Question Saving
✓ Flash Cards
✓ Drag & Drops
✓ 3 Months Access
✓ PDF Downloads

Get Premium Access

Premium Access Includes

FLASH OFFER

avail 10% DISCOUNT on YOUR PURCHASE