Oracle Cloud Infrastructure 2019 Developer Associate — Question 6

You have an application server that needs to copy data on Oracle Cloud Infrastructure (OCI) object storage in the same region. You have created a service gateway for OCI object storage in your virtual cloud network (VCN) and modified security lists associated with the subnet to allow traffic to the service gateway.
You are able to connect to the OCI object storage, however, you notice that the connectivity is over the internet instead of the service gateway.
What is the reason for this behavior?

Answer options

• A. The route table associated with the subnet has no route rule where the destination is object storage service
• B. The service gateway created in the VCN resides in a different availability domain
• C. The security list associated with the subnet has an egress rule that allows all traffic to be forwarded to a destination CIDR 0.0.0.0/0
• D. Identity and Access Management (IAM) policies restrict the access to the object storage bucket

Correct answer: B

Explanation

The correct answer is B because if the service gateway is in a different availability domain, it cannot be used for traffic routing to the object storage, causing the connection to default to the internet. Option A is incorrect as the route table could still be configured properly for the object storage. Option C does not affect the connectivity directly unless specific egress rules override the service gateway. Option D is irrelevant to the connectivity issue since IAM policies pertain to access control rather than routing.