Time up. You can restart the Quiz
Sample Exam : AWS Certified Advanced Networking Specialty (15 Questions)
This is free Sample Practice Test. You will have 30 mins to complete this test. Please purchase to get lifetime access to all 400 Real exam questions.
Please fill your Name and Email address and click on next to Start the Exam
1 / 15
You have configured a dynamic VPN between your datacenter and your VPC. But you are not able to see the routes for the connection. What could be the possible reason for this?
For routes to be dynamically setup , you neeed to have route propogation setup on your routing table The AWS documentation in addition mentions the following If you've attached a virtual private gateway to your VPC and enabled route propagation on your route table, routes representing your VPN connection automatically appear as propagated routes in your route table For more information on Route tables please refer to the below URL: http://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/VPC_Route_Tables.html
2 / 15
Your company currently has 5 EC2 Instances that use Instance store volumes. The Instances have been placed in the stopped state for a week now. But you notice that you are still being charged for the instances. Which of the following could be a possible reason for this.
The AWS documentation mentions the following on Elastic IP addressesAn Elastic IP address doesn’t incur charges as long as the following conditions are true:· The Elastic IP address is associated with an Amazon EC2 instance.· The instance associated with the Elastic IP address is running.· The instance has only one Elastic IP address attached to it.If you’ve stopped or terminated an EC2 instance with an associated Elastic IP address and you don’t need that Elastic IP address any more, consider disassociating or releasing the Elastic IP addressHence the most feasible reason will be that there were Elastic IP’s associated with these instances.For more information, please visit the below URL:https://aws.amazon.com/premiumsupport/knowledge-center/elastic-ip-charges/
3 / 15
In Cloudfront what is the Origin Protocol policy that must be chosen to ensure that the communication with the origin is done either via http or https. Choose an answer from the options below
Its clearly given in the aws documentation that the Origin Protocol Policy should be set accordingly. For more information on Cloudfront CDN please see the below link: http://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/distribution-web-values-specify.html
4 / 15
Your company currently has a Link Aggregation Group to AWS with two 1Gbps connections. What is the best way to increase throughput on this Link Aggregation Group?
As per the AWS documentation , the Link Aggregation Group has the following rules , hence only option C can be used in this instanceYou can create a LAG from existing connections or provide new connections. After creating the LAG, you can assign existing connections (independent as well as connections that are part of another LAG).The following rules apply:· All connections in the LAG must have the same bandwidth. The following bandwidths are supported: 1 Gbit / s and 10 Gbit / s.· A LAG can contain a maximum of 4 connections. Each link in the LAG must be considered individually for the overall connection limit for the region.· All connections in the LAG must run at the same AWS DirectConnect endpoint. For more information on Link Aggregation Group, please refer to below URL:http://docs.aws.amazon.com/directconnect/latest/UserGuide/lags.html
5 / 15
Which of the following is true with regards to configuration of https for cloudfront with S3 as the origin. Choose 3 answers from the options given below.
The AWS documentation provides the following informationNote the following about using HTTPS when the origin is an Amazon S3 bucket:· If your Amazon S3 bucket is configured as a website endpoint, you can't configure CloudFront to use HTTPS to communicate with your origin because Amazon S3 doesn't support HTTPS connections in that configuration.· Amazon S3 provides the SSL/TLS certificate, so you don't have to.When your origin is an Amazon S3 bucket, CloudFront always forwards requests to S3 by using the protocol that viewers used to submit the requestsIf you want to require HTTPS for communication between CloudFront and Amazon S3, you must change the value of Viewer Protocol Policy to Redirect HTTP to HTTPS or HTTPS Only.For more information on using https with cloudfront as S3 as the origin, please visit the below URL:http://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/using-https-cloudfront-to-s3-origin.html
6 / 15
How many tunnels are provided for a VPN connection created between AWS and an on-premise infrastructure?
The AWS documentation mentions the following on VPN connections You use a VPN connection to connect your network to a VPC. Each VPN connection has two tunnels, with each tunnel using a unique virtual private gateway public IP address. It is important to configure both tunnels for redundancy. When one tunnel becomes unavailable (for example, down for maintenance), network traffic is automatically routed to the available tunnel for that specific VPN connection. For more information on VPC connections, please visit the below URL: http://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/VPC_VPN.html
7 / 15
Which of the following are advantages to use multiple IP addresses on an EC2 Instance in AWS.
The AWS documentation mentions the following on multiple IP addressesIt can be useful to assign multiple IP addresses to an instance in your VPC to do the following:· Host multiple websites on a single server by using multiple SSL certificates on a single server and associating each certificate with a specific IP address.· Operate network appliances, such as firewalls or load balancers, that have multiple IP addresses for each network interface.· Redirect internal traffic to a standby instance in case your instance fails, by reassigning the secondary IP address to the standby instance. For more information on multiple IP addresses, please visit the below URL:http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/MultipleIP.html
8 / 15
Which of the following situations will cause a charge to be incurred when using an Elastic IP address
The AWS documentation mentions the following on Elastic IP addressesAn Elastic IP address doesn’t incur charges as long as the following conditions are true:· The Elastic IP address is associated with an Amazon EC2 instance.· The instance associated with the Elastic IP address is running.· The instance has only one Elastic IP address attached to it.If you’ve stopped or terminated an EC2 instance with an associated Elastic IP address and you don’t need that Elastic IP address any more, consider disassociating or releasing the Elastic IP addressFor more information, please visit the below URL:https://aws.amazon.com/premiumsupport/knowledge-center/elastic-ip-charges/
9 / 15
You currently manage a set of web servers hosted on EC2 Servers with public IP addresses. These IP addresses are mapped to domain names. There was an urgent maintenance activity that had to be carried out on the servers and the servers had to be restarted. Now the web application hosted on these EC2 Instances is not accessible via the domain names configured earlier. Which of the following could be a reason for this.
By default the public IP address of an EC2 Instance is released after the instance is stopped and started. Hence the earlier IP address which were mapped to the domain names would have become invalid now. For more information on public IP addressing, please visit the below URL: http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/using-instance-addressing.html#concepts-public-addresses
10 / 15
You work for a company that has around 2,000 employees. There is a decision from senior management to start using AWS Workspaces. The data for the employees is already stored in the on-premise Active Directory. How can you ensure that authentication is applied in an effective manner , ensuring that the on-premise AD is used for authentication. Choose 2 answers form the options given below
The AWS Documentation mentions the following on AD ConnectorsAD Connector is a directory gateway with which you can redirect directory requests to your on-premises Microsoft Active Directory without caching any information in the cloud. AD Connector comes in two sizes, small and large. A small AD Connector is designed for smaller organizations of up to 500 users. A large AD Connector can support larger organizations of up to 5,000 users.Once set up, AD Connector offers the following benefits:· Your end users and IT administrators can use their existing corporate credentials to log on to AWS applications such as Amazon WorkSpaces, Amazon WorkDocs, or Amazon WorkMail.
For more information on the AD Connector, please refer to below URL:http://docs.aws.amazon.com/directoryservice/latest/admin-guide/directory_ad_connector.html
For better performance and reliability consider using the Direct Connect Connection between AWS and the on-premise infrastructure.For more information on Direct Connect, please refer to below URL:https://aws.amazon.com/directconnect/
11 / 15
Which of the following protocols are used for dynamically routed VPN Connections
The AWS Documentation mentions the following Dynamically routed VPN connections use the Border Gateway Protocol (BGP) to exchange routing information between your customer gateways and the virtual private gateways. Statically routed VPN connections require you to enter static routes for the network on your side of the customer gateway For more information on VPN Connections, please refer to below URL: http://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/VPC_VPN.html
12 / 15
Your company has just set up a new document server on it's AWS VPC, and it has four very important clients that it wants to give access to. These clients also have VPCs on AWS and it is through these VPCs that they will be given accessibility to the document server. In addition, each of the clients should not have access to any of the other clients' VPCs. Choose the correct answer from the options below
A VPC peering connection is a networking connection between two VPCs that enables you to route traffic between them using private IPv4 addresses or IPv6 addresses. Instances in either VPC can communicate with each other as if they are within the same network. You can create a VPC peering connection between your own VPCs, or with a VPC in another AWS account within a single region.There is no need to setup client VPC peering between each other because this is a clear requirement in the question, hence option C is wrong.There is no need to block IP’s hence Option B is wrong.VPC peering needs to have the basic functionality that the CIDR’s should not overlap, hence option D is wrong.For more information on VPC Peering please see the below link:http://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/vpc-peering.html
13 / 15
Your company needs an inexpensive solution to host their AD data in the cloud. They do not need all of the features of AD but do need to be able to use it with WorkSpaces. Which of the following is the best recommended solution
The AWS documentation mentions the following on Simple AD Simple AD provides a subset of the features offered by Microsoft AD, including the ability to manage user accounts and group memberships, create and apply group policies, securely connect to Amazon EC2 instances, and provide Kerberos-based single sign-on (SSO). For more information on Simple AD please see the below link: http://docs.aws.amazon.com/directoryservice/latest/admin-guide/directory_simple_ad.html
14 / 15
Your company currently has a 100 Mbps line and needs to have a Direct Connect connection in place. How can the company achieve this?
The AWS Documentation mentions the following 1Gbps and 10Gbps ports are available. Speeds of 50Mbps, 100Mbps, 200Mbps, 300Mbps, 400Mbps, and 500Mbps can be ordered from any APN partners supporting AWS Direct Connect. For more information on AWS Direct Connect, please refer to below URL: https://aws.amazon.com/directconnect/faqs/
15 / 15
Which of the following are configuration recommendations when configuring high availability for VPN connections to AWS. Choose 2 answers from the options given below
The AWS Documentation mentions the following Many AWS customers choose to implement VPN connections because they can be a quick, easy, and cost-effective way to set up remote connectivity to a VPC. To enable redundancy, each AWS Virtual Private Gateway (VGW) has two VPN endpoints with capabilities for static and dynamic routing. Although statically routed VPN connections from a single customer gateway are sufficient for establishing remote connectivity to a VPC, this is not a highly available configuration. The best practice for making VPN connections highly available is to use redundant customer gateways and dynamic routing for automatic failover between AWS and customer VPN endpoints. For more information on high availability for network connections please see the below link: https://aws.amazon.com/answers/networking/aws-multiple-data-center-ha-network-connectivity/
Your score is
– July 4, 2020
Very helpful for practice. I cleared my AWS Advanced Networking Specialty today, used this quiz as a practice material after winding up my entire syllabus to get a gist of questions. Kudos to you guys 🙂
– September 13, 2020
Top notch practice exams! After you go through the exam take your time to review all the answers and explanations both right or wrong as it will greatly expand your knowledge!
I found these practice exams harder than the actual real exam. but prepared me well for the exam and passed 🙂
– October 20, 2020
Just cleared my Exam today. Got 33 questions, I can say 25 q was from practice tests. Great complement material before taking the exam. Thanks !!!
– January 4, 2021
Taking this test was a really good experience. The questions are framed amazingly. It seems that while designing the test difficulty levels are taken into consideration by the instructor and it is designed the way that candidates might feel he or she needs to revisit some of the fundamentals to provide the correct answers. Also, I personally like all the courses that I have undertaken by Skillcertpro. He never misses out on giving you the reality check of your knowledge. Kudos to the instructor for designing such an amazing and interesting tests !!
– January 19, 2021
Today I passed my exam. Great course really prepared me for the test.
These sample questions are really good and documented with appropriate information and explanations. These practice exams added value to my knowledge and I would recommend others to use these sample papers as a reference.
I completed the my training and then used these papers to check my readiness for the exam. I like the format of these practice tests and I especially like the feedback.
Your email address will not be published. Required fields are marked *
Your review *
Save my name, email, and website in this browser for the next time I comment.
We have helped over thousands of working professionals to achieve their certification goals with our practice tests.