Exam 1z0-932 topic 1 question 85 discussion

A must b the correct answer

I think it's A. https://docs.cloud.oracle.com/en-us/iaas/Content/Network/Tasks/servicegateway.htm Each Oracle service has a regional public endpoint that uses public IP addresses for access. When you set up a service gateway with access to an Oracle service, you also set up Networking service route rules and optionally security rules that control traffic with the service. That means you need to know the service's public IP addresses to set up those rules. To make it easier for you, the Networking service uses service CIDR labels to represent all the public CIDRs for a given Oracle service or a group of Oracle services.

The SG uses a service CIDR label. You use that service CIDR label when you configure the service gateway and related route rules to control traffic to the service. The key is "related route rules", you need to set route rules for fw trafic to the SG. My option is A

A is the right answer

A is right you need a route to dest service gateway

Agreed with A

I agree with A, reading through the link provided by MarianoD "The service gateway is regional and enables access only to supported Oracle services in the same region as the VCN." This would eliminate option B . A looks the correct answer to me

Agree A

The question says the bucket is accessible. Rules out A and D. On careful reading, C looks to to be right answer, with that rule in there all traffic would hit the default gateway (not the service gateway), go out via the internet to the bucket. Maybe C's the answer? I don't think inter-AD traffic goes out the internet. Inter-region does. Anyone have further ideas?