CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Amazon
  5. AWS-SysOps

Free AWS-SysOps Exam Braindumps (page: 36)

Page 35 of 121
PDF with 477 Questions

A SysOps administrator has created a VPC that contains a public subnet and a private subnet. Amazon EC2 instances that were launched in the private subnet cannot access the internet. The default network ACL is active on all subnets in the VPC, and all security groups allow all outbound traffic.
Which solution will provide the EC2 instances in the private subnet with access to the internet?

  1. Create a NAT gateway in the public subnet. Create a route from the private subnet to the NAT gateway.
  2. Create a NAT gateway in the public subnet. Create a route from the public subnet to the NAT gateway.
  3. Create a NAT gateway in the private subnet. Create a route from the public subnet to the NAT gateway.
  4. Create a NAT gateway in the private subnet. Create a route from the private subnet to the NAT gateway.

Answer(s): A



A company plans to run a public web application on Amazon EC2 instances behind an Elastic Load Balancer (ELB). The company’s security team wants to protect the website by using AWS Certificate Manager (ACM) certificates. The ELB must automatically redirect any HTTP requests to HTTPS.
Which solution will meet these requirements?

  1. Create an Application Load Balancer that has one HTTPS listener on port 80. Attach an SSL/TLS certificate to listener port 80. Create a rule to redirect requests from HTTP to HTTPS.
  2. Create an Application Load Balancer that has one HTTP listener on port 80 and one HTTPS protocol listener on port 443. Attach an SSL/TLS certificate to listener port 443. Create a rule to redirect requests from port 80 to port 443.
  3. Create an Application Load Balancer that has two TCP listeners on port 80 and port 443. Attach an SSL/TLS certificate to listener port 443. Create a rule to redirect requests from port 80 to port 443.
  4. Create a Network Load Balancer that has two TCP listeners on port 80 and port 443. Attach an SSL/TLS certificate to listener port 443. Create a rule to redirect requests from port 80 to port 443.

Answer(s): B



A company wants to track its AWS costs in all member accounts that are part of an organization in AWS Organizations. Managers of the member accounts want to receive a notification when the estimated costs exceed a predetermined amount each month. The managers are unable to configure a billing alarm. The IAM permissions for all users are correct.
What could be the cause of this issue?

  1. The management/payer account does not have billing alerts turned on.
  2. The company has not configured AWS Resource Access Manager (AWS RAM) to share billing information between the member accounts and the management/payer account.
  3. Amazon GuardDuty is turned on for all the accounts.
  4. The company has not configured an AWS Config rule to monitor billing.

Answer(s): A



A company is using Amazon Elastic Container Service (Amazon ECS) to run a containerized application on Amazon EC2 instances. A SysOps administrator needs to monitor only traffic flows between the ECS tasks.
Which combination of steps should the SysOps administrator take to meet this requirement? (Choose two.)

  1. Configure Amazon CloudWatch Logs on the elastic network interface of each task.
  2. Configure VPC Flow Logs on the elastic network interface of each task.
  3. Specify the awsvpc network mode in the task definition.
  4. Specify the bridge network mode in the task definition.
  5. Specify the host network mode in the task definition.

Answer(s): B,C






Post your Comments and Discuss Amazon AWS-SysOps exam with other Community members:

AWS-SysOps Discussions & Posts