Amazon AWS

AWS Certified Advanced Networking – Specialty

ANS-C01
Popular

The AWS Certified Advanced Networking – Specialty (ANS-C01) exam validates your skills in designing and implementing AWS networking solutions. It is suitable for networking professionals looking to specialize in AWS.

468 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 21–30 of 468

Q21

What happens when two VPCs from different regions are peered?

  • A They can communicate freely
  • B They can't communicate
  • C They share routing tables
  • D Data transfer costs double
Explanation VPC peering only allows communication between VPCs in the same region, not cross-region.
Q22

Which service allows the creation of private networks in AWS?

  • A Amazon VPC
  • B Amazon S3
  • C AWS IAM
  • D AWS Lambda
Explanation Amazon VPC enables users to set up isolated networks in AWS; the others are unrelated to networking.
Q23

A company needs to connect its on-premises network to AWS securely. Which VPN option offers static routing?

  • A AWS Site-to-Site VPN
  • B AWS Client VPN
  • C AWS Direct Connect
  • D AWS Transit Gateway
Explanation AWS Site-to-Site VPN supports static routing, while others focus on different use cases.
Q24

You are configuring a Route 53 record set, which scenario would result in an alias access being the only viable option?

  • A Link to an EC2 instance
  • B Route traffic to a CloudFront distribution
  • C Point domain to an S3 bucket
  • D Use a CNAME record for root domain
Explanation You cannot use CNAME for root domains, making alias records necessary; the other options are valid for different records.
Q25

Which AWS service automates network traffic management across multiple VPCs?

  • A AWS Transit Gateway
  • B AWS Direct Connect
  • C Amazon Route 53
  • D AWS VPN
Explanation AWS Transit Gateway facilitates interconnectivity between VPCs, while the others serve different purposes.
Q26

A company needs to segment its network for security. Which feature should they use in their VPC configuration?

  • A Security Groups
  • B Routes Tables
  • C NAT Gateways
  • D Subnets
Explanation Subnets enable network segmentation, whereas the others do not primarily serve that function.
Q27

You are configuring BGP on Direct Connect. What happens if the local preference value is set too low?

  • A Traffic prefers incoming paths.
  • B Traffic returns to the partner.
  • C Reduced traffic flow over this path.
  • D Increased on-premises traffic.
Explanation A lower local preference value decreases the attractiveness of the route, leading to reduced traffic.
Q28

Which service facilitates direct network connections to AWS?

  • A AWS Direct Connect
  • B VPC Peering
  • C AWS VPN
  • D AWS Transit Gateway
Explanation AWS Direct Connect provides a dedicated network connection, while others do not offer direct physical connections.
Q29

A company needs to control access to S3 buckets based on IP address. Which feature should they use?

  • A Bucket Policy
  • B IAM Policy
  • C Security Groups
  • D NACLs
Explanation Bucket Policy allows IP-based access control for S3, while others are not applicable to S3 specifically.
Q30

You are configuring a VPC with two private subnets and one public subnet. What is the most efficient way to allow outbound internet access?

  • A NAT Gateway in public subnet
  • B IGW in private subnet
  • C NAT Instance in private subnet
  • D VPN Gateway in public subnet
Explanation A NAT Gateway in the public subnet allows private subnets to access the internet efficiently.