Amazon AWS

AWS Certified Advanced Networking – Specialty

ANS-C01
Popular

The AWS Certified Advanced Networking – Specialty (ANS-C01) exam validates your skills in designing and implementing AWS networking solutions. It is suitable for networking professionals looking to specialize in AWS.

468 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 71–80 of 468

Q71

A company needs to connect multiple VPCs securely. What is the best AWS solution?

  • A NAT Gateway
  • B VPC Peering
  • C AWS Lambda
  • D EC2 Instances
Explanation VPC Peering allows secure communication between VPCs, while the others do not provide direct connectivity.
Q72

What happens when a VPN connection drops in a HA architecture?

  • A Traffic automatically rerouted to another tunnel
  • B VPN connection will reconnect automatically
  • C All traffic is blocked until resolved
  • D No effect on existing connections
Explanation In HA setups, traffic reroutes to maintain continuity, while the other options do not accurately reflect the behavior during a drop.
Q73

Which AWS service provides a managed DNS service?

  • A Route 53
  • B CloudFront
  • C Elastic Load Balancing
  • D VPC
Explanation Route 53 is designed for managing DNS, whereas others serve different purposes.
Q74

A company needs to connect their on-premises data center to AWS securely. Which service should they use?

  • A AWS Direct Connect
  • B AWS VPN
  • C AWS Transit Gateway
  • D Amazon VPC
Explanation AWS Direct Connect provides a dedicated network connection, whereas VPN is over the internet.
Q75

What happens when you delete a security group that is associated with an EC2 instance?

  • A Instances are terminated automatically.
  • B Instances lose network connectivity.
  • C Instances remain but are unprotected.
  • D Instances are unaffected.
Explanation Instances remain but without the deleted group's rules, thus could become unprotected.
Q76

Which service is used for managing AWS resources efficiently?

  • A AWS CloudFormation
  • B AWS Lambda
  • C AWS EC2
  • D AWS S3
Explanation AWS CloudFormation automates resource management, while others do not manage resources directly.
Q77

A company needs to securely manage access to AWS resources for their employees. What should they implement?

  • A IAM roles
  • B AWS Direct Connect
  • C AWS VPN
  • D S3 bucket policies
Explanation IAM roles provide secure access management, unlike other options which provide connectivity or storage policies.
Q78

You are configuring route tables for a VPC. What happens when a route has a destination of 0.0.0.0/0?

  • A Data is sent to the Internet
  • B Data is sent to local instances
  • C Data is blocked entirely
  • D Data routes to other VPCs
Explanation A 0.0.0.0/0 route directs traffic to the Internet Gateway.
Q79

Which service can help with DDoS attack prevention?

  • A AWS Shield
  • B AWS Lambda
  • C Amazon RDS
  • D AWS S3
Explanation AWS Shield is specifically designed for DDoS protection; the others serve different functions.
Q80

A company needs to connect its on-premises network securely to AWS. Which option should they choose?

  • A AWS Direct Connect
  • B AWS CloudFront
  • C AWS Route 53
  • D AWS Lambda
Explanation AWS Direct Connect provides a secure connection; others do not meet this requirement.