Amazon AWS

AWS Certified Advanced Networking – Specialty

ANS-C01
Popular

The AWS Certified Advanced Networking – Specialty (ANS-C01) exam validates your skills in designing and implementing AWS networking solutions. It is suitable for networking professionals looking to specialize in AWS.

468 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 281–290 of 468

Q281

A company needs to analyze large streams of data from IoT devices in real time. Which service should they use?

  • A Amazon RDS
  • B Amazon Kinesis
  • C AWS Lambda
  • D Amazon S3
Explanation Amazon Kinesis is ideal for real-time IoT data analytics.
Q282

You are configuring a VPN connection between a VPC and an on-premises data center. What happens if the on-premises customer gateway fails?

  • A Traffic is automatically rerouted.
  • B The VPN connection fails.
  • C All data is lost.
  • D Latency is reduced instantly.
Explanation If the customer gateway fails, the VPN fabric is interrupted, causing the connection to fall.
Q283

Which service provides reliable, low-latency connections between regions?

  • A AWS Direct Connect
  • B Amazon VPC
  • C Amazon CloudFront
  • D AWS Global Accelerator
Explanation AWS Global Accelerator optimizes network paths for low latency, while others do not optimize inter-region latency.
Q284

A company needs to implement a VPN connection to secure communications. What should they use?

  • A AWS Direct Connect
  • B Amazon S3
  • C AWS Site-to-Site VPN
  • D Elastic Load Balancing
Explanation AWS Site-to-Site VPN specifically creates the secure tunnels for VPN connections, unlike others.
Q285

You are configuring a Network ACL in a VPC. What happens when you deny all inbound traffic?

  • A Only HTTP traffic will be allowed
  • B No traffic will be allowed
  • C Outbound traffic is also denied
  • D Only allowed IPs are granted access
Explanation Denying all inbound traffic blocks all connections to that resource regardless of type.
Q286

Which AWS service allows you to automate network traffic routing decisions?

  • A AWS App Mesh
  • B AWS Direct Connect
  • C AWS VPC Peering
  • D AWS CloudFormation
Explanation AWS App Mesh provides traffic control and allows intelligent routing, while the others are not focused on traffic automation.
Q287

A company needs to ensure low latency for a global application. What should they configure?

  • A Regional VPCs
  • B Global Accelerator
  • C Elastic Load Balancer
  • D S3 Transfer Acceleration
Explanation Global Accelerator optimizes routes for global applications, while the other options don't address low latency globally.
Q288

You are configuring security groups for an EC2 instance. What happens if you allow all outbound traffic?

  • A Only specific outbound traffic is allowed.
  • B All outbound traffic is denied.
  • C All outbound traffic is allowed.
  • D It causes a firewall error.
Explanation Allowing all outbound traffic means that there are no restrictions, while the other options misstate how security groups operate.
Q289

Which service provides automatic scaling for applications?

  • A AWS Lambda
  • B Amazon EC2 Auto Scaling
  • C Amazon S3
  • D AWS CloudFormation
Explanation Amazon EC2 Auto Scaling automatically adjusts the number of EC2 instances; AWS Lambda is for serverless computing, S3 is storage, and CloudFormation is for infrastructure as code.
Q290

A company needs to connect their on-premises network to AWS with a secure connection. What solution is best?

  • A AWS Direct Connect
  • B AWS Transit Gateway
  • C AWS VPN
  • D VPC Peering
Explanation AWS Direct Connect provides a dedicated secure connection; Transit Gateway is for multi-VPC connections, VPN is for encrypted internet connections, and VPC Peering is for VPC interconnections.