Which statements are true about network security? (Choose two)

Access can be restricted between tenancies and within the tenancy itself is a true statement regarding network security. This aspect is fundamental because it involves the management of permissions and access controls that help safeguard resources within cloud environments. By implementing restrictions, organizations can ensure that only authorized users and systems can access specific resources or communicate across different segments of the network, thereby enhancing overall security.

The choice that mentions permissions being utilized to isolate networking between compartments and VCNs is also true. Permissions play a critical role in defining how resources can communicate and interact with each other across different compartments and Virtual Cloud Networks (VCNs). Properly configured permissions ensure that only intended traffic is allowed, which is vital for maintaining the security posture of the network.

In contrast, stating that subnets can be created only within an availability domain is not true, as subnets are typically associated with a broader range of resource availability than a single domain. Similarly, the notion that tenancies cannot be completely network isolated does not accurately reflect the potential for network segmentation and isolation strategies that can be employed within cloud architectures to achieve a high level of security and separation of resources.