Amazon AWS

AWS Certified Advanced Networking – Specialty

ANS-C01
Popular

The AWS Certified Advanced Networking – Specialty (ANS-C01) exam validates your skills in designing and implementing AWS networking solutions. It is suitable for networking professionals looking to specialize in AWS.

468 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 311–320 of 468

Q311

A company needs low-latency, private access to AWS services. What should they use?

  • A AWS VPN
  • B AWS Direct Connect
  • C Elastic Load Balancer
  • D Route 53
Explanation AWS Direct Connect provides low-latency, private connectivity to AWS services, while VPNs are typically less performant and the other options serve different purposes.
Q312

You are configuring a security group in AWS. What happens if you do not explicitly allow traffic?

  • A All traffic is allowed.
  • B Traffic is denied by default.
  • C Traffic is automatically approved.
  • D Only HTTP traffic is allowed.
Explanation AWS security groups are stateful and deny all traffic by default unless explicitly allowed; the other options incorrectly state default behavior.
Q313

Which service allows creating virtual private clouds (VPCs)?

  • A Amazon VPC
  • B AWS Lambda
  • C AWS CloudFormation
  • D Amazon S3
Explanation Amazon VPC is specifically designed for creating virtual private clouds, while others serve different purposes.
Q314

A company needs to ensure its EC2 instances are automatically re-launched if they fail. Which service should they use?

  • A Auto Scaling
  • B Elastic Load Balancing
  • C AWS CloudTrail
  • D Amazon RDS
Explanation Auto Scaling ensures instances are automatically replaced upon failure, unlike the other options.
Q315

What happens when a subnet in a VPC is assigned a default route?

  • A Ignores all traffic
  • B Sends all traffic to the internet
  • C Allows inter-subnet traffic only
  • D Reroutes to AWS Direct Connect
Explanation A default route directs traffic to the Internet Gateway, while other options misinterpret routing behavior.
Q316

Which service helps automate network configuration changes in AWS?

  • A AWS CloudFormation
  • B AWS Lambda
  • C AWS Config
  • D AWS Systems Manager
Explanation AWS CloudFormation automates AWS resource provisioning; others manage configurations or automate tasks.
Q317

You are configuring a VPN connection. What must be matched on both sides?

  • A IP Addresses
  • B Routing Protocols
  • C Encryption Algorithms
  • D VPN Gateways
Explanation Encryption algorithms must match for secure communication; others may differ.
Q318

What happens when you exceed the bandwidth limit of an AWS Direct Connect connection?

  • A Traffic is automatically rerouted
  • B Additional charges are incurred
  • C Connection speed remains unchanged
  • D Traffic is limited to a lower speed
Explanation Exceeding bandwidth incurs additional charges, unlike other options that misrepresent connection behavior.
Q319

Which service provides automatic scaling based on demand?

  • A Amazon EC2 Auto Scaling
  • B AWS Lambda
  • C Amazon RDS
  • D Amazon S3
Explanation Amazon EC2 Auto Scaling adjusts instance counts automatically, unlike the others.
Q320

A company needs to encrypt data in transit between services. Which AWS feature should they use?

  • A AWS Key Management Service
  • B AWS PrivateLink
  • C Amazon CloudFront
  • D AWS Certificate Manager
Explanation AWS Certificate Manager simplifies management of SSL/TLS, unlike the other options.