Amazon AWS

AWS Certified Advanced Networking – Specialty

ANS-C01
Popular

The AWS Certified Advanced Networking – Specialty (ANS-C01) exam validates your skills in designing and implementing AWS networking solutions. It is suitable for networking professionals looking to specialize in AWS.

468 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 441–450 of 468

Q441

You are configuring a load balancer for handling traffic to multiple EC2 instances across several availability zones. What happens when one availability zone goes down?

  • A Load balancer fails silently
  • B Traffic is rerouted to active zones
  • C All sessions are lost
  • D Only HTTP traffic is affected
Explanation The load balancer automatically reroutes traffic to healthy instances in other active zones.
Q442

Which AWS service is best for managing API gateways?

  • A Amazon API Gateway
  • B AWS Lambda
  • C Route 53
  • D Elastic Load Balancer
Explanation Amazon API Gateway is specifically designed for building and managing APIs, while the others serve different purposes.
Q443

A company needs its on-premises network to be securely connected to AWS. Which solution should they choose?

  • A AWS Direct Connect
  • B Amazon CloudFront
  • C AWS Lambda
  • D VPC Peering
Explanation AWS Direct Connect provides a dedicated connection for secure, high-bandwidth connections to AWS, unlike the other options.
Q444

What happens when you set a Security Group rule to deny all traffic?

  • A All inbound traffic is blocked
  • B Specific services become unreachable
  • C Security Group rules cannot deny
  • D It blocks outbound traffic only
Explanation Security Groups only allow traffic; they do not have deny rules, making option C the correct choice.
Q445

Which service allows you to automate infrastructure provisioning in AWS?

  • A AWS CloudFormation
  • B AWS CloudTrail
  • C AWS CodeBuild
  • D AWS Shield
Explanation AWS CloudFormation automates infrastructure provisioning; others do not provide that functionality.
Q446

A company needs to interconnect its multiple VPCs across AWS Regions. Which service should they use?

  • A AWS Transit Gateway
  • B AWS Direct Connect
  • C AWS VPN
  • D Amazon RDS
Explanation AWS Transit Gateway is specifically designed for interconnecting VPCs; other options serve different purposes.
Q447

What happens when you set a Security Group to allow all inbound traffic?

  • A All traffic is denied.
  • B Only verified traffic is allowed.
  • C All traffic is allowed.
  • D This causes an error.
Explanation Allowing all inbound traffic permits any connection; the other options are not accurate descriptions of this configuration.
Q448

Which service provides active-active architecture for applications across multiple AWS Regions?

  • A Amazon Route 53
  • B AWS Global Accelerator
  • C Amazon CloudFront
  • D Amazon ELB
Explanation AWS Global Accelerator improves availability and performance across regions, unlike the other options.
Q449

You are configuring VPC peering between two VPCs. What is a limitation?

  • A Cannot peer with VPC in different accounts
  • B VPCs must be in different regions
  • C Overlapping CIDR blocks not allowed
  • D Peering with default VPC is impossible
Explanation Overlapping CIDR blocks prevent routing clarity in peering connections.
Q450

A company needs to reduce latency for their web application globally. What should they use?

  • A Amazon S3
  • B Amazon CloudFront
  • C AWS Direct Connect
  • D Amazon CloudWatch
Explanation Amazon CloudFront is a Content Delivery Network (CDN) that caches content for quicker delivery.