Amazon AWS

AWS Certified Advanced Networking – Specialty

ANS-C01
Popular

The AWS Certified Advanced Networking – Specialty (ANS-C01) exam validates your skills in designing and implementing AWS networking solutions. It is suitable for networking professionals looking to specialize in AWS.

468 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 31–40 of 468

Q31

Which service provides a managed data warehouse solution?

  • A Amazon Redshift
  • B Amazon RDS
  • C Amazon DynamoDB
  • D Amazon S3
Explanation Amazon Redshift is designed specifically for data warehousing, while others serve different database needs.
Q32

You are configuring VPC peering between two VPCs. What must be true regarding their CIDR blocks?

  • A They must be overlapping.
  • B They must be identical.
  • C They must not overlap.
  • D They must be within the same region.
Explanation VPC peering requires non-overlapping CIDR blocks to avoid routing conflicts.
Q33

A company needs to ensure its data is retained for compliance for ten years. What would be the best S3 storage class for cost efficiency?

  • A S3 Standard
  • B S3 Intelligent-Tiering
  • C S3 Glacier Deep Archive
  • D S3 One Zone-IA
Explanation S3 Glacier Deep Archive is the most cost-effective for long-term storage requirements.
Q34

Which service allows for real-time analysis of streaming data?

  • A Amazon Kinesis
  • B AWS Lambda
  • C Amazon RDS
  • D Amazon SQS
Explanation Amazon Kinesis is designed for real-time data streaming, while the others serve different functions.
Q35

A company needs to launch a new VPC with multiple public and private subnets. What should they use to allow communication between the public and private subnets?

  • A Public IP Addresses
  • B NAT Gateway
  • C Direct Connect
  • D Route 53
Explanation A NAT Gateway facilitates outbound internet access for private subnets, while the others do not provide this ability.
Q36

You are configuring an AWS application to handle sudden spikes in traffic. What should you include to manage the load effectively?

  • A CloudFormation
  • B Elastic Load Balancer
  • C T2 Instance Type
  • D S3 Storage
Explanation An Elastic Load Balancer distributes incoming application traffic, unlike the other options.
Q37

Which service provides DDoS protection for AWS applications?

  • A AWS Shield
  • B AWS CloudTrail
  • C AWS WAF
  • D Amazon GuardDuty
Explanation AWS Shield specifically mitigates DDoS attacks, while others serve different purposes.
Q38

You are configuring a VPC with route tables. What happens when a route is configured to a private IP within the VPC?

  • A Traffic flows only to that subnet.
  • B Traffic is not routed.
  • C Traffic will fail to connect.
  • D Traffic flows to all subnets.
Explanation Traffic flows only to the specified subnet, allowing private communication.
Q39

A company needs to securely connect its on-premises network to an AWS VPC. What is the recommended approach?

  • A AWS Direct Connect
  • B VPN CloudHub
  • C AWS Managed VPN
  • D VPC Peering
Explanation AWS Direct Connect provides a dedicated connection, offering higher bandwidth and security than VPN alternatives.
Q40

Which service provides centralized management for AWS resources?

  • A AWS Organizations
  • B AWS Shield
  • C AWS CloudFormation
  • D AWS Transit Gateway
Explanation AWS Organizations allows for better resource management across multiple accounts, while others serve different purposes.