CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Amazon
  5. AWS-Certified-Advanced-Networking-Specialty

Free AWS-Certified-Advanced-Networking-Specialty Exam Braindumps (page: 50)

Page 49 of 102
PDF with 407 Questions

What is the name of the label applied to packets to allow routers to know where to forward in an MPLS network?

  1. BFD
  2. BGP
  3. FEC
  4. ABC

Answer(s): C

Explanation:

Forward Equivalency Class is how routers know where to send packets.



What port and protocol is used by DNS?

  1. 80/TCP
  2. 22/TCP
  3. 80/TCP and UDP
  4. 53/TCP and UDP

Answer(s): D

Explanation:

DNS uses port 53 and either TCP or UDP depending on what type of DNS message is being sent.



Which port range must be allowed through a NACL to ensure all return traffic is successful?

  1. 1024 − 65,535
  2. 22
  3. 65,000 − 65,535
  4. 80 − 443

Answer(s): A

Explanation:

1024 − 65,535 is the full "ephemeral port" range.



To allow all traffic to access an instance in "Subnet 1" that uses "Security Group 1", what two options need to be configured? (Choose two.)

  1. NACL rule allowing 0.0.0.0/0 to access "Subnet 1"
  2. Security Group rule in "Security Group 1" that allows 0.0.0.0/0 inbound
  3. Security Group rule in "Security Group 1" that allows outbound traffic to 0.0.0.0/0
  4. NACL rule allowing 0.0.0.0/0 to access "Security Group 1"

Answer(s): A,B

Explanation:

You must allow traffic through the NACL and through the Security Group to access the instance. If there is not an Outbound allow setup in the NACL, you may need to set that, but an outbound rule for Security Group 1 is not necessary as security groups are stateful.






Post your Comments and Discuss Amazon AWS-Certified-Advanced-Networking-Specialty exam with other Community members:

AWS-Certified-Advanced-Networking-Specialty Discussions & Posts