Amazon AWS

AWS Certified Advanced Networking – Specialty

ANS-C01
Popular

The AWS Certified Advanced Networking – Specialty (ANS-C01) exam validates your skills in designing and implementing AWS networking solutions. It is suitable for networking professionals looking to specialize in AWS.

468 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 231–240 of 468

Q231

What happens when you configure an Amazon EC2 instance with a public IP and terminate it?

  • A IP address is permanently lost
  • B IP address is reassigned immediately
  • C IP address is retained for future use
  • D IP address is kept for 1 hour
Explanation Public IPs are released when instances terminate, while the others misuse the addressing behavior.
Q232

Which service is best for data transfer across regions?

  • A AWS Snowball
  • B Amazon IAM
  • C AWS Lambda
  • D Amazon CloudFront
Explanation AWS Snowball is designed for large data transfers, while others serve different purposes.
Q233

A company needs to increase bandwidth for a VPC. What should they configure?

  • A Security Group
  • B NAT Gateway
  • C VPC Peering
  • D VPN Connection
Explanation VPC Peering allows direct interaction and increased bandwidth between VPCs.
Q234

What happens when you delete a subnet in a VPC?

  • A All resources are deleted
  • B Route tables are deleted
  • C Remaining resources remain intact
  • D VPC gets permanently deleted
Explanation Deleting a subnet removes the subnet only; other resources in the VPC remain intact.
Q235

Which service helps to analyze VPC traffic flow?

  • A VPC Flow Logs
  • B CloudTrail
  • C CloudWatch
  • D AWS Config
Explanation VPC Flow Logs specifically capture network traffic, while others focus on logs or monitoring.
Q236

A company needs to ensure their AWS resources are isolated per environment (dev, test, prod). What is the best approach?

  • A Use Tags on resources
  • B Create separate VPCs
  • C Leverage IAM Roles
  • D Implement Security Groups
Explanation Separate VPCs provide the best isolation among environments.
Q237

What happens when you enable DDoS protection with AWS Shield Advanced?

  • A It automatically reduces latency.
  • B Traffic is always rerouted.
  • C You receive additional metrics.
  • D All DDoS types are blocked.
Explanation AWS Shield Advanced provides additional metrics and insights, not automatic blocking of all attacks.
Q238

Which service allows you to directly interconnect data centers to AWS?

  • A AWS Direct Connect
  • B AWS VPN
  • C AWS CloudFront
  • D AWS Storage Gateway
Explanation AWS Direct Connect provides a dedicated network connection, whereas others do not offer direct interconnects.
Q239

A company needs to route traffic from multiple accounts through a single VPC. What should they use?

  • A VPC Peering
  • B AWS Transit Gateway
  • C Direct Connect
  • D NAT Gateway
Explanation AWS Transit Gateway allows inter-VPC and inter-account routing efficiently, while the others do not support this directly.
Q240

What happens when a security group is applied to an EC2 instance?

  • A Blocks all inbound traffic
  • B Allows all outbound traffic
  • C Denies access to public IPs
  • D Defaults to unrestricted access
Explanation Security groups allow all outbound traffic by default, while inbound traffic is restricted unless explicitly allowed.