AWS Certified Advanced Networking Specialty (ANS-C01)

The AWS Certified Advanced Networking Specialty (ANS-C01) were last updated on today.
  • Viewing page 5 out of 110 pages.
  • Viewing questions 21-25 out of 550 questions
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.and Azure
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.and Azure

Topic 1 - Exam A

Question #21 Topic 1

Your network utilizes jumbo frames on its servers and your router. You are trying to access your AWS resources, and you are having issues with packet loss. What is the best solution?

  • A Remove the "Do not Fragment" flag on the packets.
  • B Lower the MTU for your network.
  • C Call AWS support.
  • D You will have to upgrade to Direct Connect.
Suggested Answer: A
NOTE: Remove the "Don't Fragment" Flag on your router. AWS will drop any data with an MTU of greater than 1500 if the "Do not Fragment" flag is set, so you need your router to indicate that data can be fragmented.
Question #22 Topic 1

Due to security requirements, all traffic must be encrypted between your VPC and your on-premises data center. You also want to maintain reliability. What two options will allow you to achieve this? (Choose two.)

  • A A Direct Connect connection with a Private VIF
  • B A VPN connection
  • C A Direct Connect connection with a Hosted VIF
  • D A Direct Connect connection with a Public VIF
Suggested Answer: BD
NOTE: To run VPN over DX, you need to have a public VIF to access the VPN endpoints.
Question #23 Topic 1

In AWS Direct Connect, which of the following is true of configuring your router to connect to the AWS Direct Connect router?

  • A After creating a virtual interface for your AWS Direct Connect connection, you can download the router configuration file from the available link
  • B After Completing the Cross Connect step, the download link for router configuration will be available
  • C After submitting your AWS Direct Connect connection request, you will receive the router configuration details by email within 72 hours
  • D In Create a Virtual Interface step, the general configuration of your router would be available for downloading.
Suggested Answer: A
NOTE: To use the AWS Direct Connect, after you have created a virtual interface for your AWS Direct Connect connection, you can download the router configuration file. This configuration helps your router connect to AWS Direct Connect router. This configuration is related to your created virtual interface details and vendor, platform, and software of your router. Reference: http://docs.aws.amazon.com/directconnect/latest/UserGuide/getstarted.html#routerconfig
Question #24 Topic 1

With AWS CloudTrail, creating multiple trails in one region allows ____ to focus on one aspect of AWS operation.

  • A callers
  • B events
  • C buckets
  • D stakeholders
Suggested Answer: D
NOTE: With multiple trails, different stakeholders such as security administrators, software developers, and IT auditors can create and manage their own trails. For example, a security administrator can create a trail that applies to all regions and configure encryption using one Key Management Service key. A developer can create a trail that applies to one region for troubleshooting operational issues. Reference: https://aws.amazon.com/cloudtrail/faqs/
Question #25 Topic 1

In order to change the name of the AWS Config ____, you must stop the configuration recorder, delete the current one, and create a new one with a new name, since there can only be one of these per AWS account.

  • A SNS topic
  • B configuration history
  • C delivery channel
  • D S3 bucket path
Suggested Answer: C
NOTE: As AWS Config continually records the changes that occur to your AWS resources, it sends notifications and updated configuration states through the delivery channel. You can manage the delivery channel to control where AWS Config sends configuration updates. You can have only one delivery channel per AWS account, and the delivery channel is required to use AWS Config. To change the delivery channel name, you must delete it and create a new delivery channel with the desired name. Before you can delete the delivery channel, you must temporarily stop the configuration recorder. The AWS Config console does not provide the option to delete the delivery channel, so you must use the AWS CLI, the AWS Config API, or one of the AWS SDKs. Reference: http://docs.aws.amazon.com/config/latest/developerguide/update-dc.html
Previous Questions Next Questions