CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Amazon
  5. AWS-Certified-Advanced-Networking-Specialty

Free AWS-Certified-Advanced-Networking-Specialty Exam Braindumps (page: 37)

Page 37 of 102
PDF with 407 Questions

Your company is building a new data center. You currently have an on-premises data center that accesses your single VPC via VPN. You need to provide access to your single VPC to your new data center. Since your new data center build is already over budget, you need to keep costs low.
How should you accomplish this?

  1. Add a Private VIF and create a Direct Connect connection.
  2. Create a new Customer Gateway and add it to your VPN using a CloudHub infrastructure model.
  3. Add a Public VIF and create a Direct Connect connection.
  4. Create a new Virtual Gateway and add it to your VPN using a CloudHub infrastructure model.

Answer(s): B

Explanation:

Create a new Customer Gateway. A Private VIF would work, but you want to keep costs low. A Public VIF is only for AWS specific resources, such as S3. A Virtual Gateway would be created if you were creating a new VPN connection in a new VPC. A Customer Gateway would allow you to add the new datacenter to your VPN.



You have a website hosted on EC2 that is not serving web pages. You have ensured that the server is running and the site is configured properly. What could be the problem?

  1. Your NACL does not allow port 80 outbound.
  2. Your NACL does not allow ports 1024 − 65535 outbound.
  3. Your NACL does not allow ports 1024 − 65535 inbound. D. Your security group does not allow outbound traffic.

Answer(s): B

Explanation:

The ephemeral ports 1024 − 65535 are required outbound for return traffic. For the server to access websites, those same ports need to be allowed inbound.



You are auditing an AWS infrastructure after you noticed some abnormal charges on the bill. You use AWS Config to monitor your changes. What else is required to find out who made the change?

  1. There is no information to find this. You will need to sign up for Config Premium.
  2. Use the eventID of the change and reference it with your Flow Logs.
  3. Use the eventId of the change and reference it with CloudTrail to find the culprit.
  4. Use the eventID of the change and reference it with CloudWatch to find the culprit.

Answer(s): C

Explanation:

CloudTrail is for finding "who" performed an action.



Your organization has placed a project on hold and has stopped 30 public EC2 instances. These instances use instance store volumes and do not have custom AMIs associated. You are still being charged every month.What is the charge probably for?

  1. AWS charges for dormant accounts.
  2. You have Elastic IPs associated with those instances.
  3. There is a "stopped instance" fee that AWS charges every month.
  4. You are being charged for the EBS volumes.

Answer(s): B

Explanation:

You have Elastic IPs associated with those instances. AWS charges for any unused Elastic IPs in your account.



Page 37 of 102



Post your Comments and Discuss Amazon AWS-Certified-Advanced-Networking-Specialty exam with other Community members:

Hello commented on September 04, 2024
awesome questions
Anonymous
upvote

Meenakshi commented on June 06, 2024
One of the best exam dumps site I have ever used. I have passed 3 of my exams with the help of this website.
INDIA
upvote