Amazon AWS

AWS Certified Advanced Networking – Specialty

ANS-C01
Popular

The AWS Certified Advanced Networking – Specialty (ANS-C01) exam validates your skills in designing and implementing AWS networking solutions. It is suitable for networking professionals looking to specialize in AWS.

468 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 131–140 of 468

Q131

A company needs to ensure their data transfers between AWS regions are secure. What should they implement?

  • A AWS CloudFront
  • B AWS PrivateLink
  • C AWS Direct Connect
  • D AWS VPN
Explanation AWS VPN provides secure connections for various transfer methods unlike the others.
Q132

You are configuring a security group that allows traffic from any IP address. What could this lead to?

  • A Increased security threats
  • B Improved application performance
  • C Firewalls are unnecessary
  • D Automatic compliance
Explanation Allowing traffic from all IPs increases vulnerability, while the other options are incorrect actions or effects.
Q133

Which service helps manage AWS resource compliance systematically?

  • A AWS Config
  • B AWS CloudTrail
  • C AWS Shield
  • D AWS Inspector
Explanation AWS Config provides compliance and configuration management, while the others focus on logging or protection.
Q134

You are configuring a VPC with a private subnet and need to enable internet access for resources. What should you implement?

  • A Internet Gateway
  • B NAT Gateway
  • C VPC Peering
  • D VPN Connection
Explanation A NAT Gateway allows private instances to access the internet, while the other options do not provide this functionality.
Q135

What happens when you enable S3 bucket versioning?

  • A Previous versions are deleted
  • B Only current versions are kept
  • C All versions are retained
  • D Version IDs are hidden
Explanation When versioning is enabled, all versions of the objects are retained, while the others do not accurately describe versioning behavior.
Q136

Which AWS service allows you to create and manage scalable domains for microservices?

  • A Amazon API Gateway
  • B AWS Lambda
  • C Amazon CloudFront
  • D Elastic Load Balancing
Explanation Amazon API Gateway allows RESTful APIs to manage microservices, while the others serve different functions.
Q137

A company needs to connect its on-premises data center to AWS with minimal latency. Which solution should they choose?

  • A VPC Peering
  • B AWS Direct Connect
  • C VPN Gateway
  • D Cloud VPN
Explanation AWS Direct Connect establishes a dedicated network connection, providing lower latency compared to the others.
Q138

What happens when you enable route propagation on a virtual private gateway?

  • A Routes are manually configured.
  • B Routes update automatically via BGP.
  • C Static routes are ignored.
  • D VPN connections are terminated.
Explanation Route propagation updates routes automatically using BGP; the others present incorrect behaviors.
Q139

Which service provides automated DDoS protection?

  • A AWS Shield
  • B AWS WAF
  • C Amazon Inspector
  • D AWS Firewall Manager
Explanation AWS Shield is specifically designed for DDoS protection; AWS WAF is for web application security, not DDoS.
Q140

A company needs to secure their EC2 instances in a VPC. Which AWS service can help control outbound traffic based on security policies?

  • A Network ACLs
  • B Route 53
  • C VPC Peering
  • D Elastic Load Balancing
Explanation Network ACLs control inbound and outbound traffic, while the others do not manage outbound traffic specifically.