CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Amazon
  5. AWS-SysOps

Free AWS-SysOps Exam Braindumps (page: 40)

Page 39 of 121
PDF with 477 Questions

A SysOps administrator is attempting to download patches from the internet into an instance in a private subnet. An internet gateway exists for the VPC, and a NAT gateway has been deployed on the public subnet; however, the instance has no internet connectivity. The resources deployed into the private subnet must be inaccessible directly from the public internet.
Public Subnet (10.0.1.0/24) Route Table
Destination Target
10.0.0.0/16 local
0.0.0.0/0 IGW
Private Subnet (10.0.2.0/24) Route Table
Destination Target
10.0.0.0/16 local
What should be added to the private subnet’s route table in order to address this issue, given the information provided?

  1. 0.0.0.0/0 IGW
  2. 0.0.0.0/0 NAT
  3. 10.0.1.0/24 IGW
  4. 10.0.1.0/24 NAT

Answer(s): B



A company is undergoing an external audit of its systems, which run wholly on AWS. A SysOps administrator must supply documentation of Payment Card Industry Data Security Standard (PCI DSS) compliance for the infrastructure managed by AWS.
Which set of actions should the SysOps administrator take to meet this requirement?

  1. Download the applicable reports from the AWS Artifact portal and supply these to the auditors.
  2. Download complete copies of the AWS CloudTrail log files and supply these to the auditors.
  3. Download complete copies of the AWS CloudWatch logs and supply these to the auditors.
  4. Provide the auditors with administrative access to the production AWS account so that the auditors can determine compliance.

Answer(s): A



A company has an initiative to reduce costs associated with Amazon EC2 and AWS Lambda.
Which action should a SysOps administrator take to meet these requirements?

  1. Analyze the AWS Cost and Usage Report by using Amazon Athena to identify cost savings.
  2. Create an AWS Budgets alert to alarm when account spend reaches 80% of the budget.
  3. Purchase Reserved Instances through the Amazon EC2 console.
  4. Use AWS Compute Optimizer and take action on the provided recommendations.

Answer(s): D



A company wants to use only IPv6 for all its Amazon EC2 instances. The EC2 instances must not be accessible from the internet, but the EC2 instances must be able to access the internet. The company creates a dual-stack VPC and IPv6-only subnets.
How should a SysOps administrator configure the VPC to meet these requirements?

  1. Create and attach a NAT gateway. Create a custom route table that includes an entry to point all IPv6 traffic to the NAT gateway. Attach the custom route table to the IPv6-only subnets.
  2. Create and attach an internet gateway. Create a custom route table that includes an entry to point all IPv6 traffic to the internet gateway. Attach the custom route table to the IPv6-only subnets.
  3. Create and attach an egress-only internet gateway. Create a custom route table that includes an entry to point all IPv6 traffic to the egress-only internet gateway. Attach the custom route table to the IPv6-only subnets.
  4. Create and attach an internet gateway and a NAT gateway. Create a custom route table that includes an entry to point all IPv6 traffic to the internet gateway and all IPv4 traffic to the NAT gateway. Attach the custom route table to the IPv6-only subnets.

Answer(s): C






Post your Comments and Discuss Amazon AWS-SysOps exam with other Community members:

AWS-SysOps Discussions & Posts