Oracle Cloud Infrastructure 2022 Architect Professional — Question 49

The finance department of your company has reached out to you. They have customer sensitive data on compute instances in Oracle Cloud Infrastructure (QC), which they want to store in OCI Object Storage for long-term retention and archival.

In keeping with their security requirements, they want to ensure this data is NOT transferred over the public Internet, even if encrypted.

Which option meets this requirement?

Answer options

• A. Use the NAT gateway with appropriate route table when transferring data. Then use NAT gateway’s toggle (on/off), once data transfer is complete.
• B. Use the Storage gateway with appropriate firewall rule.
• C. Use the Service gateway with the appropriate route table.

Correct answer: B

Explanation

The correct answer is B because the Storage gateway allows for secure data transfer directly to OCI Object Storage without using the public Internet. Option A is incorrect as the NAT gateway still relies on public routing, and C is not suitable as the Service gateway is primarily for connecting to services in the same region, not specifically for secure data transfer.