Amazon
Avaya
Checkpoint
Cisco®
CompTIA
CrowdStrike
EC-Council
EXIN
Fortinet
Google
ISC
ISC2
ITIL®
Juniper
Microsoft
Okta
Palo Alto Networks
Salesforce
All Vendors
  1. Home
  2. Alibaba
  3. ACP-CLOUD1

Alibaba ACP-CLOUD1 Exam (page: 6)
Alibaba ACP Cloud Computing Certification
Updated on: 25-Dec-2025

Viewing Page 6 of 37
ACP-CLOUD1 PDF 176 Questions

An online education website is built based on ECS. SLB and Auto Scaling, which greatly reduces resource cost, O&M cost and without compromising system stability and user experience.

Now. the website admin wants to keep the user information (such as source IP, accessed URLs, and duration on each page) for analysis to support their upcoming campaign events In this case, which of the following statements is NOT correct?

  1. Let each ECS instance in the scaling group keeps the user access information it processes Thus, the data saved by these ECS instances can be accessed and analyzed at any time, making the solution not only simple, but also efficient reliable, and cost-effective.
  2. Save user-related access information to ApsaraDB for RDS in real time or quasi real time, which can then be used for performing query and analysis.
  3. Synchronize user-Synchronize user-related access information to ApsaraDB for Memcache in real time or quasi real time. Then, access Memcache using an application or make the data in Memcache persistent based on certain rules and then can use the persistent data for further analysis.
  4. Synchronize user-related access information to OSS in real time or quasi real time for further use

Answer(s): A

Explanation:

This statement is not correct because it is not a good practice to store user access information on each ECS instance in the scaling group. This is because the ECS instances are dynamic and can be added or removed by the Auto Scaling service based on the load and demand. Therefore, the data stored on the ECS instances may be lost or inconsistent if the instances are terminated or replaced. Moreover, this approach does not provide a centralized and unified way to access and analyze the data, which may affect the accuracy and efficiency of the analysis. Therefore, it is better to use other services such as ApsaraDB for RDS, ApsaraDB for Memcache, or OSS to store the user access information in a persistent and scalable manner.


Reference:

Auto Scaling, ApsaraDB for RDS, ApsaraDB for Memcache, OSS



SLB is a load balancing service that distributes traffic to multiple cloud servers It provides a wide range of functions to meet the needs of various business scenarios If a user wants to use SLB and ECS instances to deploy two-way authenticated HTTPS websites, the following statement is correct_______.

  1. SLB can only host SSL certificates, not CA certificates.
  2. You need to host server SSL certificates and client CA certificates on SLB
  3. SLB can only host CA certificates, not SSL certificate
  4. SLB can only support HTTPS one-way authentication

Answer(s): B

Explanation:

SLB (Server Load Balancer) is a service that distributes network traffic across groups of backend servers to improve the service capability and application availability. SLB supports HTTPS listeners, which allow you to encrypt the data transmission between clients and SLB instances. HTTPS is a secure version of HTTP that uses SSL/TLS protocols to provide data encryption, integrity, and authentication.

To use HTTPS listeners, you need to upload SSL certificates to SLB. SSL certificates are digital certificates that use public key cryptography to verify the identity of a website and encrypt the data exchanged between the website and the visitors. There are two types of SSL certificates: server certificates and client certificates. Server certificates are issued by trusted certificate authorities (CAs) to verify the identity of the website owner and the domain name. Client certificates are issued by the website owner to verify the identity of the visitors.

SLB supports both one-way and two-way authentication for HTTPS listeners. One-way authentication means that only the server identity is verified by the client. Two-way authentication means that both the server and the client identities are verified by each other. To use one-way authentication, you only need to upload the server SSL certificate to SLB. To use two-way authentication, you need to upload both the server SSL certificate and the client CA certificate to SLB. The client CA certificate is the root certificate or intermediate certificate of the CA that issues the client certificates.

Therefore, if you want to use SLB and ECS instances to deploy two-way authenticated HTTPS websites, you need to host server SSL certificates and client CA certificates on SLB. SLB can host both SSL certificates and CA certificates, and it supports HTTPS two-way authentication. The other statements are incorrect.


Reference:

Server Load Balancer(SLB) - Alibaba Cloud, Add an HTTPS listener - Server Load Balancer - Alibaba Cloud Documentation Center, What is HTTPS? - SSL.com, What is an SSL Certificate? - SSL.com, What is a Client Certificate? - SSL.com, [Configure two-way authentication for an HTTPS listener - Server Load Balancer - Alibaba Cloud Documentation Center]



When using Alibaba Cloud SLB. you can set different weights for backend ECS instances The higher the weight of a backend ECS instance the more load will be assigned to it An SLB instance has 5 ECS instances in the backend server pool, all of which are healthy Among these 5 ECS instances, the weight of ecs_inst1 is set to 100.
Which of the following statements is correct?

  1. Based on request level parameters of external requests, all requests with a request level parameter of 100 will be transferred to ecs_inst1
  2. Based on SLB's working mechanism, approximately 20% of loads will be assigned to ecs_inst1
  3. We do not know the weight settings of the remaining 4 ECS instances, so we cannot tell what would happen
  4. 100% of loads will be assigned to ecs__inst1, and the remaining 4 ECS instances will stay idle

Answer(s): C

Explanation:

When using Alibaba Cloud SLB, you can set different weights for backend ECS instances. The higher the weight of a backend ECS instance, the more load will be assigned to it. However, the load distribution is not based on the absolute value of the weight, but on the proportion of the weight in the total weight of all healthy backend ECS instances. For example, if there are two healthy backend ECS instances with weights of 100 and 200 respectively, the first instance will receive 33.3% of the load, and the second instance will receive 66.7% of the load. Therefore, to determine the load distribution of the 5 ECS instances in the question, we need to know the weight settings of the remaining 4 ECS instances. Without this information, we cannot tell what would happen. The other options are incorrect because they are based on wrong assumptions or misunderstandings of the SLB weight setting mechanism.



You are designing a solution for a startup company, the proposed solution is like this You suggest they use ECS instances to process requests from mobile App clients, and use SLB to distribute data traffic and ensure the load across each backend ECS instance is balanced.

Moreover to deal with volatile fluctuations in business volume (page views are much higher on the weekends), you also suggest they use Auto Scaling to dynamically increase or reduce computing resources.

The company is satisfied with the solution you proposed. However, they have one concern that when removing an idle instance from the scaling group: if Auto Scaling shuts the instance down directly, the service running on that instance will be abruptly terminated, resulting in poor user experience.

In order to eliminate your customer's concern, which of the following solutions should you recommend them?

  1. Find the ECS instance that is going to be removed from the backend server pool of the SLB instancer and automatically set the weight of this ECS instance to 0. This instance will not be assigned with new requests, and will be automatically removed from the backend server pool after existing tasks are completed.
  2. First, insert a script into the image for creating the ECS instance Second, make the script run automatically when the operating system in this ECS instances is about to shut down. This script contains the processing logic that can ensure the instance finish all the remaining tasks before shutting down.
  3. Find the ECS instance that is going to be removed from the backend server pool of the SLB instance, and manually remove this instance from the backend server pool Applications running on this ECS instance will normally return results, but this instance will not be assigned with new requests.
  4. Use the Lifecycle Hook function embedded m Auto Scaling Define a suitable timeout and a web hook to do the necessary work before the instance is removed.

Answer(s): D

Explanation:

According to the Alibaba Cloud Auto Scaling documentation1, the Lifecycle Hook feature allows you to perform custom operations on instances that are added to or removed from a scaling group. You can define a lifecycle hook to specify a timeout period and a web hook URL.
When an instance is about to be removed, Auto Scaling sends a notification to the web hook URL and waits for a response. During the timeout period, you can perform the necessary operations on the instance, such as gracefully shutting down the service, backing up the data, or sending a custom notification. After the operations are completed, you can send a response to the web hook URL to confirm the removal of the instance. This way, you can ensure that the instance is removed without affecting the user experience or causing data loss. Therefore, option D is the best solution to eliminate the customer's concern.


Reference:

Lifecycle hooks and Alibaba Cloud Auto Scaling.



You have created two Alibaba Cloud VPCs in two different regions To establish communication between these two VPCs via the Intranet, you can________.

  1. Use the VRouter to create a new route table to enable the communication
  2. Use CEN to establish communication between VPCs
  3. Create a new access rule through the Security Group to enable the communication
  4. No operation is needed, as VPCs under the same account are connected through the Intranet by default

Answer(s): B

Explanation:

CEN is a service that allows you to create a global network for rapidly building a distributed business system with a hybrid cloud computing solution. CEN enables you to build a secure, private, and enterprise-class interconnected network between VPCs in different regions and your local data centers. CEN uses transit routers deployed in different regions to build a full-mesh network on top of the Alibaba Cloud global transmission network. CEN enables global network communication: The two transit routers can be connected through multiple highly available and highly reliable lines. To establish communication between two VPCs in different regions via the intranet, you can use CEN to attach the VPCs to the transit routers in their respective regions, and then create a bandwidth plan to allocate bandwidth resources for inter-region connections. This way, you can avoid the complexity and cost of setting up VPN or Express Connect connections between the VPCs, and enjoy the benefits of CEN, such as large-scale and on-demand networking, simplified network topology, flexible management, globally connected network, shortest-path algorithm, high redundancy, automatic route learning and advertisement, and bandwidth sharing and management.


Reference:

Introduce Cloud Enterprise Network CEN and how ... - Alibaba Cloud Academy, Cloud Enterprise Network (CEN)
- Alibaba Cloud, Attach a network instance to a CEN instance - Cloud Enterprise Network - Alibaba Cloud



Viewing Page 6 of 37



Share your comments for Alibaba ACP-CLOUD1 exam with other users:

Ko Htet 10/17/2023 1:28:00 AM

thanks for your support.
Anonymous


Tai 8/28/2023 5:28:00 AM

wonderful material
SOUTH AFRICA