Amazon AWS

AWS Certified Advanced Networking – Specialty

ANS-C01
Popular

The AWS Certified Advanced Networking – Specialty (ANS-C01) exam validates your skills in designing and implementing AWS networking solutions. It is suitable for networking professionals looking to specialize in AWS.

468 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 241–250 of 468

Q241

Which AWS service provides a managed Kubernetes environment?

  • A Amazon EKS
  • B Amazon EC2
  • C Amazon RDS
  • D AWS Lambda
Explanation Amazon EKS stands for Elastic Kubernetes Service; the other options are not Kubernetes management solutions.
Q242

A company needs to secure access to their VPC from on-premises servers using direct connections. Which AWS service is most suitable?

  • A AWS VPN
  • B AWS Direct Connect
  • C AWS Transit Gateway
  • D AWS PrivateLink
Explanation AWS Direct Connect provides a dedicated network connection, ideal for secure on-premises access; the other options serve different connectivity needs.
Q243

You are configuring Flow Logs for your VPC. What happens when you specify 'NONE' for the log destination?

  • A Logs are sent to CloudWatch
  • B No logs are created
  • C Logs go to S3 bucket
  • D Logs are emailed to admins
Explanation Specifying 'NONE' means flow logs will not be created, unlike the other options which imply log generation or routing.
Q244

Which service can help aggregate VPC flow logs for analysis?

  • A AWS CloudTrail
  • B Amazon Kinesis
  • C AWS Config
  • D AWS Direct Connect
Explanation Amazon Kinesis allows real-time data processing, ideal for log analysis; the others are for different functionalities.
Q245

A company needs to connect their on-premises network to AWS while minimizing latency and maximizing bandwidth. What is the best solution?

  • A AWS VPN
  • B AWS Direct Connect
  • C AWS Global Accelerator
  • D VPC Peering
Explanation AWS Direct Connect offers a dedicated connection that reduces latency and increases bandwidth; VPNs use the internet and may introduce variability.
Q246

What happens when you increase the size of an Amazon EBS volume that's currently attached to an EC2 instance?

  • A Resize is instant and data is lost.
  • B EC2 instance must be stopped first.
  • C Volume automatically expands without data loss.
  • D Only root volumes can be resized.
Explanation EBS volumes can be resized dynamically and retain data; stopping the instance is not required with recent options.
Q247

A company needs to ensure that its resources can be dynamically adjusted to handle varying loads in real time. Which AWS service should they use?

  • A AWS Lambda
  • B Amazon EC2 Auto Scaling
  • C Amazon RDS
  • D AWS IAM
Explanation Amazon EC2 Auto Scaling adjusts instance counts based on demand, while Lambda and IAM serve different purposes.
Q248

You are configuring a VPC with private and public subnets. What must you ensure for instances in private subnets to access the internet?

  • A Public IP addresses
  • B NAT Gateway or NAT Instance
  • C Internet Gateway
  • D Direct Connect
Explanation NAT Gateway or NAT Instance enables private instances to access the internet, while public IP addresses apply only to public subnet instances.
Q249

What happens when you assign an IAM policy that denies all actions to a user but also allows specific actions in an AWS service?

  • A The user can perform all actions
  • B The user is completely restricted
  • C The specific actions are allowed
  • D The IAM policy is ignored
Explanation IAM policies follow the principle of least privilege; specific allows can override denies.
Q250

Which AWS service provides a global content delivery network?

  • A Amazon CloudFront
  • B AWS Direct Connect
  • C Amazon Route 53
  • D Amazon S3
Explanation Amazon CloudFront is designed for global content delivery; the others serve different purposes.