AWS ANS-C00 Certified Advanced Networking Speciality Exam Set 4

The company plans to set up applications for the following aspects of the two applications, each with its own domain name Each application is EC2 Instances Web Servers You need to ensure high availability servers and the device itself Route53. How to achieve this? Select 2 response options below?


Options are :

  • Create a public Elastic Load Balancer
  • Create a private Elastic Load Balancer
  • Determine the two private areas hosted by Route 53
  • 2 Specify the public zones hosted on Route 53

Answer : Create a public Elastic Load Balancer 2 Specify the public zones hosted on Route 53

Your company is using hosted virtual interface from the parent AWS(Amazon Web Service) account. You need to mention IT management company to buy what you download. Which of the following would you mention?


Options are :

  • The number of hours that interface
  • None
  • Ports hour costs
  • Data transfer from the interface
  • data transfer

Answer : Data transfer from the interface

AWS Develops Engineer Professional Practice Final File Exam Set 8

You are hosting nginx web server running on port 80 EC2 Instance. Users can not access server running on port 80. Which of the following could be an issue?


Options are :

  • Protection Group does not allow incoming traffic to ephemeral ports
  • NaCl donâ € YT allow incoming traffic short-term satamiin
  • Security group does not allow outgoing traffic on port 80
  • NaCl do not allow outgoing traffic ephemeral ports
  • None

Answer : NaCl do not allow outgoing traffic ephemeral ports

The company plans to experiment with Amazon workspaces account. They will show a set of workstations fixed IP addresses for this purpose. They have to ensure that only those IP addresses have access to the Amazon Workspaces. How can you achieve this?


Options are :

  • Specify P addresses the security group
  • None
  • Create access control P group
  • Specify P addresses NaCl
  • Place the front of the WAF Amazon Workspaces

Answer : Create access control P group

You have an application that consists of the following setup EC2 Instance supporting the front end of the main part of the application that the EC2 instance is used to process images you plan to use a load balancer to route requests based on the type of request, and then route them to the respective servers. How can you do this? Select 2 response options below


Options are :

  • Create different target groups
  • Create an application load balancer
  • Create a Classic Load Balancer
  • Create a TCP listener

Answer : Create different target groups Create an application load balancer

AWS Solutions Architect - Associate SAA-C01 Practice Exams Set 18

You have specified hosts the zone on Route 53. You need to have the ability to see the types of records are requested zone. How can you determine this?


Options are :

  • Use the Cloud to watch gauges
  • Specify the Amazon Route 53 entry
  • Use the Cloud trail
  • Specify the VPC Flow Logs
  • None

Answer : Specify the Amazon Route 53 entry

AWS Solutions Architect - Associate SAA-C01 Practice Exams Set 9

Your business needs to create your own VPN is based on the EC2 instances. In these cases, using 2 VPC in different regions talk to each other. You have created one subnet VPN Instance VPC in one and in another case in another subnet, the second VPC. You are establishing communication with the Internet gateway. What extra attention should be active in a configuration?


Options are :

  • By placing a Virtual Private termination endpoint gateway
  • None
  • Having multiple VPN Instances of high availability
  • Use Private hosted zone Route 53
  • By setting the NAT in front of the stage, as well as VPN connections

Answer : Having multiple VPN Instances of high availability

The company currently operates an application that consists of nginx web server, which is hosted behind a load balancer. You need to make sure that you restrict access to specific locations on the content hosted on a Web server. How can you do this?


Options are :

  • None
  • Use Nginx logs to get a web server variable, and then use the IP address to restrict content via the Cloud in front of geo-restrictions.
  • Use ELB self-restrict content via geo-restrictions
  • Use IP addresses to the X-Forwarded-HTTP header, and then restrict the content via the Cloud in front of a wrestling estrictions.
  • Use ELB logs to create a black list of restrictions

Answer : Use IP addresses to the X-Forwarded-HTTP header, and then restrict the content via the Cloud in front of a wrestling estrictions.

You work for your company as AWS(Amazon Web Service) as an administrator. You have to setup Classic Load balancer and EC2 instances of the application. You have to setup an HTTPS listener default security policy. For your security department has said, that the load does not meet the specified security policy defined in the regulations. What changes would you do to be in line with the requirements of the security department?


Options are :

  • Create a new SSL and connect it to the background EC2 Instances
  • Create a custom security policy and associate it with the classic load balancer
  • None
  • Create a custom security policy and associate it with EC2 Instance
  • Create a new SSL and connect it to the background Classic Load balancer

Answer : Create a custom security policy and associate it with the classic load balancer

AWS Solutions Architect - Associate SAA-C01 Practice Exams Set 16

You have to setup a private zone hosts the Route 53 you have setup a VPN connection between AWS(Amazon Web Service) VPC and on-premise network. You need to make sure that you resolve the DNS names of the company's premises Private records on the resources defined in the hosted zone. How can you do this?


Options are :

  • Specify the DNS resolver VPC that resolves DNS requests privatization Route 53 hosted zone.
  • Create a DNS server forwarder company premises location. Specify the VPC new DHCP settings page, which uses the DNS forwarder.
  • Configure a DNS forwarder version of VPC that cares DNS requests from Route 53 hosted a private zone
  • Create a DNS resolver server on-premises location. Specify the VPC with a new set of DHCP options that use this DNS resolver.
  • None

Answer : Configure a DNS forwarder version of VPC that cares DNS requests from Route 53 hosted a private zone

The company plans to set up AWS(Amazon Web Service) Direct Connect connection. But donâ € YT they require or have the opportunity to invest 1Gbps connection. How can they achieve sub 1-G connection? Select 2 response options below.


Options are :

  • If they have a parent AWS(Amazon Web Service) account, which can accommodate 1 G connection, see the Connection Hosted by
  • If they are older AWS(Amazon Web Service) account, which can accommodate 1 G connection. just look at a Hosted Virtual Interface
  • They may consider contacting AWS(Amazon Web Service) Partner Hosted Virtual Interface
  • They may consider contacting AWS(Amazon Web Service) Partner Hosted Connection

Answer : If they are older AWS(Amazon Web Service) account, which can accommodate 1 G connection. just look at a Hosted Virtual Interface They may consider contacting AWS(Amazon Web Service) Partner Hosted Connection

The company has many remote branches, which must be formed with the AWS(Amazon Web Service) VPC. Which of the following can help to achieve this connection in an easy way?


Options are :

  • Cloud VPN hub
  • None
  • VPC peering
  • AWS Direct Connect with the Public V1F
  • AWS Direct Connect is a private VIF

Answer : Cloud VPN hub

QA : AWS(Amazon Web Service) Certified Solutions Architect Associate

You have to setup a load balancer Classic and EC2 instances behind the load balancer. The following security groups are set for a security unit ELB - Accept incoming traffic on port 80 from the safety unit 0.0.0.0/0 EC2 Instances - the gate accept incoming traffic from 80 0.0.0.0/0 has been found that the EC2 instances receive direct requests a large amount of web. What should I do to solve the problem.


Options are :

  • None
  • Change the EC2 Instance of the group will only accept traffic safety unit ELB port 80
  • Change the ELB security group will only accept traffic to EC2 Instances port 443
  • Change the EC2 Instance of the group will only accept traffic safety unit ELB port 443
  • Change the ELB security group will only accept traffic to EC2 Instances port 80

Answer : Change the EC2 Instance of the group will only accept traffic safety unit ELB port 80

When creating a workspace AWS, which of the following is required to create a workspace?


Options are :

  • The user directory
  • None
  • NAT Instance on the client side
  • VPC is a private and a public subnet
  • AWS Direct Connect connection

Answer : The user directory

You are creating a VPN software on EC2 Instance used in VPN connections. Which of the following is an important aspect that should be given to the EC2 instance?


Options are :

  • Enables improved network mode, for example, Amazon EC2.
  • Take the route to the progress of Virtual Private Cloud (VPC) to the subnet route table.
  • None
  • Please check the source destination Amazon EC2 instance.
  • Disable source destination to check the Amazon EC2 instance;

Answer : Disable source destination to check the Amazon EC2 instance;

Certification : AWS(Amazon Web Service) Certified Solutions Architect Associate Practice Exams Set 11

You have specified hosts the zone on Route 53. You need to have the ability to see the types of records are requested zone. How can you determine this?


Options are :

  • Specify the Amazon Route 53 entry
  • Use the Cloud to watch gauges
  • Use the Cloud trail
  • Specify the VPC Flow Logs
  • None

Answer : Specify the Amazon Route 53 entry

The company currently has bought another smaller company. Both companies have their presence in the AWS. There is a requirement to ensure traffic flows VPC, VPC security A parent company B in the same parent company. And then the traffic can flow VPC C of the acquired company. How can you accomplish this transit flow?


Options are :

  • None
  • Create a VPC traffic exchange agreements connection to VPC VPC B. A and create a second VPC traffic exchange agreements connection to VPC Band VPCC
  • Create a VPC traffic exchange agreements connection A VPC and VPC C. to create a VPN connection to a VPC and VPC
  • Create VPC peering agreements VPC connection and a second VPC C. VPC traffic create swaps VPC connection B and C VPC
  • Create a VPC Peering Connection VPC VPC A and B creates a VPN connection B and VPC VPC

Answer : Create a VPC Peering Connection VPC VPC A and B creates a VPN connection B and VPC VPC

There is a requirement for all port scans to see that occurring in a couple of EC2 instances. What can be used as such a requirement of the following?


Options are :

  • None
  • AWS VPC Flow Logs
  • AWS Trusted Advisor
  • AWS Inspector
  • AWS Cloud Watch Events

Answer : AWS VPC Flow Logs

AWS Develop Engineer Professional Certified Practice Test Set 3

You are going to create a VPC endpoint own SaaS hosted on AWS. You provide a link to the customer, who uses the link to the application. The application works with the UDP protocol. You are going to offer a DNS name to the link. But the client can not access the link of their application. What could be the problem?


Options are :

  • The gateway the endpoint is a policy that denies access. This should be amended accordingly.
  • The service endpoint serves only the TCP protocol
  • The customer needs to use the NAT device to reach the end point of service
  • None
  • The customer needs to create a network load balancer to reach the end point of service

Answer : The service endpoint serves only the TCP protocol

It is installed in Cross Connect AWS(Amazon Web Service) Direct Connect. You already have the necessary equipment in place. You now need to complete the connection process. How can you achieve this?


Options are :

  • Lift the AWS(Amazon Web Service) Direct Connect request to AWS(Amazon Web Service) Console
  • Contact your service provider
  • Please contact AWS(Amazon Web Service) Partner
  • To raise a support request AWS
  • None

Answer : Contact your service provider

The company plans to set up a connection to AWS(Amazon Web Service) Direct Connect AWS(Amazon Web Service) VPC. They want maximum fault tolerance â € ˘ is the maximum bandwidth at all times. How can this be achieved?


Options are :

  • Two Virtual Private Gateway One of the AWS(Amazon Web Service) Direct Connect Location one client gateway
  • One of the VPN gateway Two AWS(Amazon Web Service) Direct Connect Two Locations Customer gateways
  • None
  • One of the VPN gateway, a single AWS(Amazon Web Service) Direct Connect Location one VPN connection
  • Two Virtual Private Gateway two AWS(Amazon Web Service) Direct Connect locations of one client gateway

Answer : One of the VPN gateway Two AWS(Amazon Web Service) Direct Connect Two Locations Customer gateways

AWS Certified Cloud Practitioner 6 full practice tests 2020 Set 14

Oman planning to set up with the VPC subnets. EC2 Instances hosted by VPC needs to get to the custom of the NTP server. How can you do this?


Options are :

  • Create DHCP Options to set and give the NTP server name
  • Specifies the NTP server subnet configuration
  • Use the Application Load Balancer and then give part of the NW ALB server configuration.
  • None
  • Define the resource record on Route 53 and provides the NTP server name

Answer : Create DHCP Options to set and give the NTP server name

You need to be successful in threat detection service that continuously monitors malicious or unauthorized activity EC2 instances. Which of the following can help such a requirement?


Options are :

  • Amazon VPC Flow Logs
  • None
  • Amazon Cloud watch Logs
  • Amazon Cloud Trail
  • Amazon guard

Answer : Amazon guard

You are going to use the VPC Flow logs to track traffic to EC2 instances within your VPC. Which of the following types of traffic will not be monitored by VPC Flow logs. Select 2 response options below


Options are :

  • Requests for example, meta data
  • In cases where a plurality of ENrs
  • None
  • Traffic that flows into the Amazon DNS servers
  • Instances elastic IPA € YS addressed to ENI

Answer : Requests for example, meta data

AWS Certified Cloud Practitioner 6 full practice tests 2020 Set 16

The company is a 3-level application, which consists of a Web Application and database tier. The application is based on REST supplements deliver services. They have the Auto Scaling groups for EC2 Instances for network and application level. Now you want to add high availability tiers, but it needs to make sure that each level can be scaled independently. How does an architect. Choose your preferred option.


Options are :

  • Create a classic load balancer and increase the number of targets the network and application level.
  • The creation of separate classic for load balancing of web and application Tiers.
  • Create an application load balancer and add a separate target groups of the network and application level
  • None
  • Create an application load balancer and the Application Tier Web Tier Load Balancer classic

Answer : Create an application load balancer and add a separate target groups of the network and application level

Company currently uses net flow software to monitor and get the details of the traffic that flows between the systems in the company's premises to the network. They want to have the same opportunity when they start to move AWS servers. Which of the following service can help them meet this requirement?


Options are :

  • AWS Cloud to view logs
  • None
  • AWS Config
  • AWS VPC Flow Logs
  • AWS Cloud to watch gauges

Answer : AWS VPC Flow Logs

You have established a VPN connection to the company's premises and AWS(Amazon Web Service) VPC. You must also ensure that incidents VPC can access the Internet so you are also attached to the Internet gateway. How to setup their route to ensure traffic can flow through the VPN and the Internet?


Options are :

  • None
  • Setting Route 2 tables. One route table default route to the Internet, and the other with a T prefix route Virtual Private Gateway. Attach Route tables VPC subnets.
  • Setting Route 2 tables. One route table default route to the Internet, and the other with a default virtual private gateway. Attach the part of the route tables with nets VPC.
  • Setup one route table. Add one route 0.0.0.0/0 to the Internet, and the second route 0.0.0.0/0 route to a Virtual Private Gateway. Attach Route subnets in the table VPC.
  • Setup one route table. Add one route 0.0.0.0/0 to the Internet and one specific prefix route Virtual Private Gateway. Attach Route subnets in the table VPC.

Answer : Setup one route table. Add one route 0.0.0.0/0 to the Internet and one specific prefix route Virtual Private Gateway. Attach Route subnets in the table VPC.

AWS CLF-C01 Certified Cloud Certification Practical Exam Set 6

The company has an application that has been transferred to the AWS(Amazon Web Service) VPC network. This application is based on multicast and must be moved with the least effort. What can be done to meet this requirement?


Options are :

  • Consider the overlay network EC2 instances and then port the application.
  • None
  • Consider encryption in the background EBS volumes used to support EC2
  • Create EC2 Cases subnet, and then move the application to EC2 Instance.
  • The application must be changed to support the dream to throw before transferring it to AWS.

Answer : Consider the overlay network EC2 instances and then port the application.

You have to setup AWS(Amazon Web Service) Cloud in front of the distribution. You're planning on doing the primary load test to see the performance in front of Cloud distribution. Which of the following factors is to keep in mind when making a load test. Select 2 response options below?


Options are :

  • Ensures client requests to start from multiple geographies
  • Set the test as each and every customer makes an independent DNS request
  • Make sure that SSL is enabled distribution
  • To ensure that client requests hit the origin server

Answer : Ensures client requests to start from multiple geographies Set the test as each and every customer makes an independent DNS request

The company has many remote branches, which must be formed with the AWS(Amazon Web Service) VPC. Which of the following can help to achieve this connection in an easy way?


Options are :

  • None
  • Cloud VPN hub
  • VPC peering
  • AWS Direct Connect is a private VIF
  • AWS Direct Connect with the Public VIF

Answer : Cloud VPN hub

AWS SCS-C01 Certified Security Speciality Practice Exam Set 2

Comment / Suggestion Section
Point our Mistakes and Post Your Suggestions