Amazon AWS

AWS Certified Advanced Networking – Specialty

ANS-C01
Popular

The AWS Certified Advanced Networking – Specialty (ANS-C01) exam validates your skills in designing and implementing AWS networking solutions. It is suitable for networking professionals looking to specialize in AWS.

468 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 421–430 of 468

Q421

Which AWS service allows you to create virtual private networks?

  • A AWS VPN
  • B AWS IAM
  • C AWS Elastic Load Balancer
  • D AWS Direct Connect
Explanation AWS VPN specifically enables the creation of secure networks, while the others serve different purposes.
Q422

A company needs to manage and control permissions for AWS resources. Which service should they use?

  • A AWS Config
  • B AWS S3
  • C AWS IAM
  • D AWS CloudTrail
Explanation AWS IAM allows for detailed permission management, while the others monitor or store data, not manage permissions.
Q423

You are configuring a VPC peering connection between two VPCs. What must you ensure?

  • A Overlapping IP CIDR blocks
  • B Public subnets only
  • C Unique IP CIDR blocks
  • D Same region required
Explanation VPC peering connections require non-overlapping CIDR blocks to function correctly, while the others represent misconceptions.
Q424

Which service allows inter-VPC communication with a private link?

  • A AWS PrivateLink
  • B AWS Direct Connect
  • C AWS Transit Gateway
  • D Amazon VPC Peering
Explanation AWS PrivateLink enables secure access to services across VPCs, whereas others serve different connectivity purposes.
Q425

A company needs to configure a secure communication method for sharing sensitive data across regions. What should they use?

  • A S3 Transfer Acceleration
  • B AWS Managed VPN
  • C AWS CloudFront
  • D AWS Global Accelerator
Explanation AWS Managed VPN provides encrypted communication, while other options are for optimization or acceleration, not security.
Q426

You are configuring AWS credentials for an application. What happens when the associated IAM policy is removed?

  • A Access remains unchanged
  • B Access is immediately revoked
  • C Access is limited only for new actions
  • D Access is granted for 24 hours
Explanation Removing the IAM policy instantly revokes access permissions, while others misinterpret the policy's effect duration or scope.
Q427

Which service allows you to connect on-premises networks to AWS?

  • A AWS Direct Connect
  • B AWS Lambda
  • C Amazon S3
  • D Amazon RDS
Explanation AWS Direct Connect facilitates private network connections, unlike the other services listed.
Q428

A company needs to route traffic based on HTTP headers. Which AWS service should they use?

  • A AWS CloudFront
  • B Elastic Load Balancing
  • C Amazon Route 53
  • D AWS WAF
Explanation Elastic Load Balancing supports routing based on HTTP headers, while others do not.
Q429

You are configuring VPC peering between two AWS accounts. What happens when there are overlapping CIDR ranges?

  • A Connection is allowed
  • B Connection is denied
  • C Traffic is routed incorrectly
  • D Connection needs manual approval
Explanation VPC peering fails if there are overlapping CIDR ranges; other options propose unrealistic scenarios.
Q430

Which service integrates with AWS CloudFormation for managing DNS records?

  • A Route 53
  • B CloudFront
  • C VPC
  • D S3
Explanation Route 53 is specifically designed for DNS management and integrates with CloudFormation, while others do not serve this purpose.