AWS Certified Advanced Networking Specialty (ANS-C01)

The AWS Certified Advanced Networking Specialty (ANS-C01) were last updated on today.
  • Viewing page 1 out of 110 pages.
  • Viewing questions 1-5 out of 550 questions
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.and Azure
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.and Azure

Topic 1 - Exam A

Question #1 Topic 1

You have created a custom VPC. What are two things you may need to do in order to SSH directly into your instance? (Choose two.)

  • A Enable SSH on the instance
  • B Attach a NAT Gateway
  • C Enable Public IP addresses
  • D Attach an Internet Gateway
Suggested Answer: CD
NOTE: Public IP addresses are not enabled by default in a custom VPC. An Internet Gateway is also required.
Question #2 Topic 1

In the context of Amazon CloudFront Actions, you use the _____ when specifying APIs in IAM policies.

  • A object names
  • B class names
  • C entity names
  • D action names
Suggested Answer: D
NOTE: In an AWS IAM policy, you can specify any and all API actions that Amazon CloudFront offers. The action name must be prefixed with the lowercase string cloudfront. For example: cloudfront:GetDistributionConfig cloudfront:ListInvalidations cloudfront:* (for all CloudFront actions). In the reference link, there are tables that list the canonical names for all CloudFront actions. Use these canonical names when specifying APIs in IAM policies. Reference: http://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/UsingWithIAM.html
Question #3 Topic 1

You have two Direct Connect connections and two VPN connections to your network. Site A is VPN 10.1.0.0/24 AS 65000 65000, Site B is VPN 10.1.0.252/30 AS 65000, Site C is DX 10.0.0.0/8 AS 65000 and Site D is DX 10.0.0.0/16 AS 65000 65000 65000. Which site will AWS choose to reach your network?

  • A Site A: VPN 10.0.1.0/24 AS 65000 65000
  • B Site B: VPN 10.0.1.252/30 AS 65000 65000 65000
  • C Site C: DX 10.0.0.0/8 AS 65000
  • D Site D: DX 10.0.0.0/16
Suggested Answer: B
NOTE: Site B, the most specific prefix always wins.
Question #4 Topic 1

You are configuring multiple Direct Connect links for your organization and need them to be in an HA Active/Passive configuration with extreme sensitivity to outages in order to encourage very quick failover times. You also need to be able to control which link is active. What two configuration changes should you implement? (Choose two.)

  • A MPLS
  • B BFD
  • C AS_PATH Prepending
  • D BGP
Suggested Answer: BC
NOTE: Bidirectional-Forwarding Detection will allow for faster failover times. AS_PATH Prepending will allow you to choose the default path. BGP is already implemented and MPLS does not matter.
Question #5 Topic 1

In Amazon CloudFront, while creating a web distribution, which of the following can be used as origin servers?

  • A Any combination AWS Glacier archives and Oracle server
  • B Any combination of Amazon DB intances and XML servers
  • C Any combination of Amazon S3 buckets and HTTP servers
  • D Any combination of Amazon Data Insights and PHP servers
Suggested Answer: C
NOTE: In Amazon CloudFront, while creating a web distribution, you can create one or more Amazon S3 buckets or configure HTTP servers as your origin servers. An origin is the location where you store the original version of your web content. When CloudFront gets a request for your files, it goes to the origin to get the files that it distributes at edge locations. You can use any combination of Amazon S3 buckets and HTTP servers as your origin servers. Reference: http://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/distribution-web-creating.html
Previous Questions Next Questions