Amazon AWS

AWS Certified Advanced Networking – Specialty

ANS-C01
Popular

The AWS Certified Advanced Networking – Specialty (ANS-C01) exam validates your skills in designing and implementing AWS networking solutions. It is suitable for networking professionals looking to specialize in AWS.

468 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 461–468 of 468

Q461

A company needs to create a VPN connection. Which service should they use?

  • A AWS Direct Connect
  • B AWS VPN
  • C Amazon Route 53
  • D Amazon CloudFront
Explanation AWS VPN directly facilitates secure VPN connections, while Direct Connect links to on-premises networks and the other options are unrelated.
Q462

What happens when you associate an Elastic IP with a stopped EC2 instance?

  • A The IP is released
  • B The binding is maintained
  • C The instance can't use it
  • D The IP is terminated
Explanation The Elastic IP remains associated with the stopped EC2 instance until it is explicitly disassociated or terminated.
Q463

Which service provides a managed desktop experience on AWS?

  • A Amazon WorkSpaces
  • B AWS Lambda
  • C Amazon S3
  • D Amazon EC2
Explanation Amazon WorkSpaces provides virtual desktops, while others serve different purposes.
Q464

A company needs to ensure data is encrypted in transit for all communications. Which AWS service should they implement?

  • A AWS CloudTrail
  • B AWS Shield
  • C AWS Certificate Manager
  • D Amazon Route 53
Explanation AWS Certificate Manager manages certificates for encryption in transit, while the others do not provide this functionality.
Q465

You are configuring a VPC with public and private subnets. What happens when a subnet is marked as private?

  • A Public IPs are automatically assigned
  • B No direct internet access
  • C Data stored is permanently private
  • D Subnet cannot access VPC resources
Explanation A private subnet does not have a route to the internet, while the other options are incorrect based on subnet functionality.
Q466

Which service offers managed DDoS protection in AWS?

  • A AWS Shield
  • B AWS Firewall Manager
  • C Amazon CloudFront
  • D AWS WAF
Explanation AWS Shield provides dedicated DDoS protection, while others are security-related services without specific DDoS focus.
Q467

A company needs to connect on-premises networks to AWS. Which service is ideal?

  • A AWS Direct Connect
  • B Amazon VPC Peering
  • C AWS Site-to-Site VPN
  • D AWS Transit Gateway
Explanation AWS Direct Connect is used for private connections to AWS, whereas the other options serve different purposes.
Q468

You are configuring an AWS Transit Gateway. What must you ensure about the attached VPCs?

  • A They must have the same CIDR block
  • B They must be in different regions
  • C They must use same VPC endpoint
  • D They must not overlap in IP ranges
Explanation IP ranges of attached VPCs must not overlap to avoid routing conflicts, while the other options are incorrect requirements for attaching VPCs.