Oracle Exam 1Z0-1124-25 Topic 8 Question 4 Discussion

Actual exam question for Oracle's 1Z0-1124-25 exam

Question #: 4
Topic #: 8

When analyzing Flow Logs for a subnet, how can you filter logs to isolate traffic that was rejected due to a specific security list rule?

ABy filtering on the 'action' field with the value 'REJECT' and the 'securityListRule' field with the rule ID

BBy filtering on the 'status' field with the value 'DENIED' and the 'securityRule' field with the rule name

CBy filtering on the 'direction' field with the value 'EGRESS' and the 'port' field with the rule port

DBy filtering on the 'type' field with the value 'SECURITY' and the 'rule' field with the rule number

Show Suggested Answer

Suggested Answer: A

Goal: Filter Flow Logs for traffic rejected by a specific security list rule.

Option A: ''action'' = ''REJECT'' identifies rejected traffic; ''securityListRule'' with rule ID pinpoints the exact rule---correct.

Option B: ''status'' and ''securityRule'' aren't standard Flow Log fields (''action'' and ''securityListRule'' are)---incorrect.

Option C: ''direction'' and ''port'' filter traffic but don't specify rejection or rule---incorrect.

Option D: ''type'' and ''rule'' aren't valid Flow Log fields---incorrect.

Conclusion: Option A is the precise filtering method.

Oracle states:

'In Flow Logs, use the 'action' field ('REJECT') and 'securityListRule' field (rule ID) to filter traffic rejected by a specific security list rule.''

This validates Option A. Reference: Flow Logs Fields - Oracle Help Center (docs.oracle.com/en-us/iaas/Content/Network/Concepts/flowlogs.htm#fields).

by Lon at Apr 09, 2025, 09:43 PM

Limited Time Offer

25%

Off

Get Premium 1Z0-1124-25 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Anglea

14 days ago

Hmm, that makes sense too. Let's review the question again before the exam.

upvoted 0 times

...

Leonie

17 days ago

I disagree, I believe the correct answer is B. We should filter based on the status field and securityRule field.

upvoted 0 times

...

I think option A is the correct way to filter the Flow Logs. The 'action' field specifies whether the traffic was accepted or rejected, and the 'securityListRule' field will give you the specific rule that caused the rejection.

upvoted 0 times

Alberto

13 hours ago

User1: I think option A is the correct way to filter the Flow Logs.

upvoted 0 times

...

Anglea

27 days ago

I think the answer is A, because we need to filter based on the action field and securityListRule field.

upvoted 0 times

...

Oracle Exam 1Z0-1124-25 Topic 8 Question 4 Discussion

Contribute your Thoughts:

Anglea

Leonie

Solange

Alberto

Anglea