AWS Certified Advanced Networking Specialty (ANS-C01)

The AWS Certified Advanced Networking Specialty (ANS-C01) were last updated on today.
  • Viewing page 6 out of 110 pages.
  • Viewing questions 26-30 out of 550 questions
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.and Azure
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.and Azure

Topic 1 - Exam A

Question #26 Topic 1

You have a web application (app.mycompany.com) running on an EC2 instance with a single elastic network interface in a subnet in a VPC. Because of a network redesign, you need to move the web application to a different subnet in the same Availability Zone. Which of the following migration strategies meets the requirements?

  • A Create an elastic network interface in the new subnet. Attach this interface to the instance, and detach the old interface.
  • B Launch a new instance in the subnet via an AMI created from the instance, and redirect new connections to this new instance using DNS. Decommission the old instance.
  • C Make an API call to change the subnet association of the elastic network interface.
  • D Change the IP addresses manually to another subnet within the server operating system.
Suggested Answer: B
NOTE: Instances cannot change subnets, so a new instance must be created (Response B). A is wrong because you cannot remove the original elastic network interface. C is not possible. D is wrong because the OS has no ability to affect the AWS assigned IP addresses.
Question #27 Topic 1

You would like to ensure that all Amazon S3 buckets going forward, current and newly created ones, have logging enabled. What type of trigger(s) should you use?

  • A only a periodic trigger
  • B only a configuration change trigger
  • C both configuration change and periodic triggers
  • D only a transitioning trigger
Suggested Answer: B
NOTE: This case requires only a configuration change trigger because you only need to trigger when S3 buckets are created and changed. There is no time component to when the trigger needs to fire. Reference: http://docs.aws.amazon.com/config/latest/developerguide/evaluate-config-rules.html
Question #28 Topic 1

Which CloudWatch attributes are used for the statistics generation?

  • A All the options are used
  • B Dimension
  • C Data point unit
  • D NameSpace
Suggested Answer: A
NOTE: Statistics represents data aggregation of the metric data values over a specific period of time. These aggregations are made using the namespace, metric name, dimensions and the data point unit of measure within the time period that the user has specified. Reference: http://docs.aws.amazon.com/AmazonCloudWatch/latest/APIReference/API_MetricDatum.html
Question #29 Topic 1

Convert the following IPv4 address in presented in binary form, into dotted decimal form 10101100.01111011.00001101.10011101.

  • A 172.123.13.157
  • B 173.13.13.157
  • C 172.122.13.15
  • D 172.124.13.57
Suggested Answer: A
NOTE: An IPv4 address in dotted decimal format is constructed using binary arithmetic. In binary arithmetic, each bit within a group represents a power of two. Specifically, the first bit in a group represents 2 to the power of 0, the second bit represents 2 to the power of 1, the third bit represents 2 to the power of 2, and so on. Binary format is simple because each successive bit in a group is exactly twice the value of the previous bit. The first octet is 128 + 32 + 8 + 4 = 172 The second octet 64 + 32 + 16 + 8 + 2 + 1 = 123 The third octet 8 + 4 + 1 = 13 - The fourth octet is 128 + 16 + 8 + 4 + 1 = 157 Reference: https://en.wikipedia.org/wiki/IPv4
Question #30 Topic 1

Which service would you use to see the DSCP value in a packet header?

  • A CloudTrail
  • B Config
  • C Flow Logs
  • D None of the above
Suggested Answer: D
NOTE: To perform deep packet inspection, you would need a specialized tool such as Wireshark.
Previous Questions Next Questions