Amazon AWS

AWS Certified Advanced Networking – Specialty

ANS-C01
Popular

The AWS Certified Advanced Networking – Specialty (ANS-C01) exam validates your skills in designing and implementing AWS networking solutions. It is suitable for networking professionals looking to specialize in AWS.

468 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 391–400 of 468

Q391

Which AWS service provides a scalable domain name system?

  • A Amazon Route 53
  • B Amazon CloudFront
  • C AWS Lambda
  • D Amazon S3
Explanation Amazon Route 53 is designed specifically for DNS.
Q392

A company needs a dedicated connection to AWS for its on-premises data center. Which service should they choose?

  • A AWS Direct Connect
  • B AWS VPN
  • C Amazon CloudFront
  • D Amazon VPC
Explanation AWS Direct Connect provides dedicated network connections.
Q393

You are configuring a VPC peering connection. What is a critical requirement?

  • A VPCs must be in different regions
  • B VPCs must have overlapping CIDR
  • C VPCs must be in the same region
  • D VPCs cannot be associated with route tables
Explanation VPCs in a peering connection must be in the same region.
Q394

Which AWS service is best for real-time data streaming?

  • A Amazon Kinesis
  • B Amazon S3
  • C Amazon RDS
  • D AWS Lambda
Explanation Amazon Kinesis is designed for real-time data streaming, whereas S3 and RDS are for storage.
Q395

A company needs to create a secure VPC peering connection between two VPCs in different AWS accounts. What must they ensure?

  • A Same CIDR block used
  • B DNS resolution enabled
  • C Security groups must overlap
  • D VPCs must be in the same region
Explanation DNS resolution should be enabled for name resolution through VPC peering, while the other options are incorrect.
Q396

What happens when an EC2 instance stops and restarts?

  • A Public IP remains unchanged
  • B Data on instance store is preserved
  • C Instance ID changes
  • D Elastic IP is released
Explanation An instance's public IP changes unless an Elastic IP is bound, and instance store data is lost upon stopping.
Q397

Which service allows for automatic IP address management in AWS?

  • A Amazon Route 53
  • B Amazon VPC
  • C AWS IAM
  • D Amazon CloudWatch
Explanation Amazon VPC provides a feature for automatic IP address management through DHCP options sets, while the others serve different primary functions.
Q398

A company needs to secure its data in Amazon S3. What is the best practice?

  • A Use bucket policies only
  • B Enable server-side encryption
  • C Make buckets public
  • D Use transfers over FTP
Explanation Enabling server-side encryption is a best practice for securing data in S3, while the other options either expose data or are ineffective.
Q399

What happens when you apply a VPC endpoint policy for an S3 connection?

  • A Requires IAM permissions only
  • B Restricts access to the endpoint
  • C Allows traffic from any IP
  • D Enables VPC peering automatically
Explanation A VPC endpoint policy restricts access to specific IAM roles or services using the endpoint, whereas the other options are inaccurate or unrelated.
Q400

Which AWS service enables you to automate the deployment of applications using containers?

  • A Amazon ECS
  • B Amazon RDS
  • C Amazon S3
  • D AWS Lambda
Explanation Amazon ECS is specifically designed for container orchestration, while the others serve different purposes.