AWS Certified Advanced Networking Specialty (ANS-C01)

The AWS Certified Advanced Networking Specialty (ANS-C01) were last updated on today.
  • Viewing page 8 out of 110 pages.
  • Viewing questions 36-40 out of 550 questions
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.and Azure
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.and Azure

Topic 1 - Exam A

Question #36 Topic 1

To connect to public AWS products such as Amazon EC2 and Amazon S3 through the AWS Direct Link, which step is NOT required?

  • A Provide public IP address (/31) for each Border Gateway Protocol (BGP) session.
  • B Allocate a Private IP address to your network in 172.x.x.x range.
  • C Provide the public routes that you will advertise over Border Gateway Protocol (BGP).
  • D Provide a public Autonomous System Number (ASN) that you own or a private one to identify your network on the Internet.
Suggested Answer: B
NOTE: To connect to public AWS products such as Amazon EC2 and Amazon S3 through the AWS Direct Connect, you need to provide the following: A public Autonomous System Number (ASN) that you own (preferred) or a private ASN. Public IP addresses (/30) (that is, one for each end of the BGP session) for each BGP session. The public routes that you will advertise over BGP. Reference: http://docs.aws.amazon.com/directconnect/latest/UserGuide/Welcome.html
Question #37 Topic 1

Your Amazon Kinesis application receives data streams from thousands of devices. The data is then stored in an on-premises Hadoop cluster. You are concerned about historical data that shows periods of sustained traffic between 1 Gbps and 2 Gbps during peaks. You must ensure that you have secure, fault- tolerant connectivity between Amazon Kinesis and your data center. What should you implement to address these needs?

  • A Deploy a single 1-Gbps Direct Connect connection with a VPN backup.
  • B Deploy three 1-Gbps Direct Connect connections.
  • C Deploy two 1-Gbps Direct Connect connections.
  • D Set up an IPsec VPN connection over Direct Connect with two tunnels.
Suggested Answer: B
NOTE: Three connections are required to provide fault tolerance. All of the other options would be unable to handle the peak loads over 1 Gbps without exceeding the available bandwidth.
Question #38 Topic 1

In the "start using the AWS Direct Connect steps," when can you complete the Cross Connect step?

  • A After verifying your virtual interface
  • B After you have received your Letter of Authorization and Connecting Facility Assignment (LOA-CFA) from AWS
  • C 72 hours after submitting your request for AWS Direct Connect Connection
  • D Immediately after submitting your request for AWS Direct Connect Connection
Suggested Answer: B
NOTE: To complete the steps of "start using the AWS Direct Connect," after submitting your request for AWS Direct Connect connection, AWS will send you an email within 72 hours with a Letter of Authorization and Connecting Facility Assignment (LOA-CFA). After you have received your LOA-CFA, you need to complete your cross-network connection, also known as a cross connect. Reference: http://docs.aws.amazon.com/directconnect/latest/UserGuide/Colocation.html
Question #39 Topic 1

Your company has two DX locations. You need to configure one link as passive. What should you configure in your router to set that link as the passive link.

  • A Set a higher MED.
  • B Configure AS_PATH Prepending on the link.
  • C Advertise a network with a higher CIDR.
  • D Call your service provider and have the ASN changed for that link.
Suggested Answer: B
NOTE: You should configure AS_PATH prepending on the link. A higher CIDR is the same as a more specific prefix, which will make the link more preferred. A higher MED will make the path less preferred, but this is not the preferred method to accomplish this. Changing your ASN will not help. Configuring AS_PATH Prepending is the preferred method of AWS to configure an Active-Passive configuration with Direct Connect.
Question #40 Topic 1

Your company has a DX connection and you just added a new VPC and Private VIF to which you have connected to your DX link. You copied the settings from the other VPC to ensure it's the same. Once you connected the new VIF, you began seeing problems with connectivity to both VPCs. You checked to make sure you didn't use the same CIDR with each VPC, so what could be the problem?

  • A You used the same VLAN ID for both connections.
  • B You overloaded your DX circuit.
  • C Your MPLS provider does not allow traffic to two VPCs.
  • D You can only connect one VIF to a DX circuit.
Suggested Answer: A
NOTE: You can only have 1 instance of any VLAN ID.
Previous Questions Next Questions