Amazon ANS-C00 Practice Test - Questions Answers, Page 30

List of questions
Question 291

Your company has a high-availability hybrid solution that utilizes a two Direct Connect connections and a backup VPN connection. For some reason, traffic is preferring the VPN connection instead of the direct connection. You have prepended a longer AS_PATH on the VPN connection, but AWS still prefers it over the Direct Connect connections.
What might you be able to do to fix this issue?
Question 292

You have set up an S3 endpoint, and you want to restrict some instances from being able to access it. These instances are all in the same subnet, so you cannot simply remove the prefix list from the route table.
What two approaches can you take to solve this? (Choose two.)
Question 293

You have 99 routes in your dynamic BGP propagated route table and you wish to add 2 more: 10.1.0.0 and 10.3.0.0. You cannot modify or remove routes that have already been announced. What should you do?
Question 294

A company needs to allow its remote users to access company resources in the AWS Cloud. The company has two VPCs that are connected through VPC peering. The remote users must be able to access resources in both VPCs by using secure connections from their laptop computers. The company does not want to implement an access management solution that requires additional costs or effort. Which solution meets these requirements?
Question 295

What is the name of the label applied to packets to allow routers to know where to forward in an MPLS network?
Question 296

What number does the binary number 10101000 correspond to?
Question 297

Which other AWS service is used to track `Related Events' within the Configuration Item?
Question 298

With respect to Amazon CloudFront, which one of the following statements is correct?
Question 299

You have multiple Amazon Elastic Compute Cloud (EC2) instances running a web server in a VPC configured with security groups and NACL. You need to ensure layer 7 protocol level logging of all network traffic (ACCEPT/REJECT) on the instances. What should be enabled to complete this task?
Question 300

A company's network engineering team is solely responsible for deploying VPC infrastructure using AWS CloudFormation.
The company wants to give its developers the ability to launch applications using CloudFormation templates so that subnets can be created using available CIDR ranges. What should be done to meet these requirements?
Question