Amazon AWS

AWS Certified Advanced Networking – Specialty

ANS-C01
Popular

The AWS Certified Advanced Networking – Specialty (ANS-C01) exam validates your skills in designing and implementing AWS networking solutions. It is suitable for networking professionals looking to specialize in AWS.

468 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 11–20 of 468

Q11

A company needs to securely connect on-premises applications to AWS services. Which service should they use?

  • A AWS VPN
  • B AWS CloudFormation
  • C Amazon S3
  • D Elastic Load Balancer
Explanation AWS VPN allows secure connections between on-premises and AWS; others do not provide secure link functionality.
Q12

What happens when you enable AWS Global Accelerator?

  • A Improves application availability
  • B Adds data encryption automatically
  • C Enables direct access to S3
  • D Provides fixed IP addresses only
Explanation AWS Global Accelerator improves application availability by routing traffic optimally; others describe features not related to its primary function.
Q13

Which AWS service provides a dedicated network connection to AWS?

  • A AWS Direct Connect
  • B AWS VPN
  • C Amazon Route 53
  • D AWS Transit Gateway
Explanation AWS Direct Connect establishes dedicated connections, while the others do not.
Q14

A company needs to share a VPC between multiple accounts securely. Which solution should they use?

  • A VPC Peering
  • B AWS Transit Gateway
  • C CloudFront
  • D VPN Gateway
Explanation AWS Transit Gateway allows VPC sharing across accounts securely, while VPC Peering is account-specific.
Q15

You are configuring security groups for an application. What happens when multiple rules match?

  • A Deny rules take precedence
  • B Allow rules take precedence
  • C Only the first rule is applied
  • D Last rule added is applied
Explanation In security groups, any matching allow rule grants access; deny rules don’t exist.
Q16

Which service allows private connections to AWS resources without exposing them to the public Internet?

  • A AWS Direct Connect
  • B AWS Internet Gateway
  • C AWS VPN
  • D Amazon Route 53
Explanation AWS Direct Connect provides a private, dedicated connection, while others do not.
Q17

A company needs to route requests based on specific path patterns; which AWS service should they use?

  • A AWS API Gateway
  • B Amazon Route 53
  • C Elastic Load Balancing
  • D AWS Lambda
Explanation Elastic Load Balancing can route based on path patterns; others do not.
Q18

What happens when an EC2 instance is in a VPC with a default security group but doesn't have inbound rules configured?

  • A All traffic is allowed
  • B No inbound traffic is allowed
  • C Traffic is only allowed from localhost
  • D Traffic is filtered by NACLs
Explanation By default, no inbound traffic is allowed without specified rules in the security group.
Q19

Which service allows you to define network traffic policies?

  • A AWS Firewall Manager
  • B AWS Shield
  • C Amazon VPC
  • D AWS CodeDeploy
Explanation AWS Firewall Manager allows defining network traffic policies, while others focus on different functionalities.
Q20

A company needs a private connection to AWS resources without using the public internet. Which service should they use?

  • A AWS Direct Connect
  • B Amazon Route 53
  • C Amazon VPN
  • D AWS CloudTrail
Explanation AWS Direct Connect provides a dedicated connection, unlike the other options.