AWS Academy Cloud Architecting Module 6 Answers

by

AWS Academy Cloud Architecting Module 4, AWS Academy Cloud Architecting Module 5, AWS Academy Cloud Architecting Module 6, AWS Academy Cloud Architecting Module 7, AWS Academy Cloud Architecting Module 8. AWS Academy Cloud Architecting Module 9, AWS Academy Cloud Architecting Module 10, AWS Academy Cloud Architecting Module 11, AWS Academy Cloud Architecting Module 12, AWS Academy Cloud Architecting Module 13, AWS Academy Cloud Architecting Module 14.

Which definition describes a VPC?

A. A VPN in the AWS Cloud
B. An extension of an on-premises network into AWS
C. A logically isolated virtual network that you define in the AWS Cloud
D. A fully managed service that extends the AWS Cloud to customer premises

Ans- C

Which actions are best practices for designing a VPC? (Select THREE).

A. Match the size of the VPC CIDR block to the number of hosts that are required for a workload.
B. Use the same CIDR block as your on-premises network.
C. Divide the VPC network range evenly across all Availability Zones available.
D. Create one subnet per Availability Zone for each group of hosts that have unique routing requirements.
E. Reserve some address space for future use.

Ans- C, D, E

A company wants to run a highly available web tier by using two EC2 instances and a load balancer. Which design is valid and provides the highest availability?

A. One subnet in one Availability Zone. The subnet contains two EC2 instances.
B. One subnet, which spans two Availability Zones. Each Availability Zone contains one EC2 instance.
C. Two different subnets in the same Availability Zone. Each subnet contains one EC2 instance.
D. Two different subnets, one per Availability Zone. Each subnet contains one EC2 instance.

Ans- D

Related: Best Top 10 Google Interview Questions

Related: Best Top 10 Microsoft Interview Questions

Related: Best Top 10 Amazon Interview Questions

A company’s VPC has the CIDR block 172.16.0.0/21 (2048 addresses). It has two subnets (A and B). Each subnet must support 100 usable addresses now, but this number is expected to rise to as most 254 usable addresses soon. Which subnet addressing scheme meets the requirements and follows AWS best practices?

A. Subnet A: 172.16.0.0/25 (128 addresses) Subnet B: 172.16.0.128/25 (128 addresses)
B. Subnet A: 172.16.0.0/25 (128 addresses) Subnet B: 172.16.0.128/25 (128 addresses)
C. Subnet A: 172.16.0.0/23 (512 addresses) Subnet B: 172.16.2.0/23 (512 addresses)
D. Subnet A: 172.16.0.0/22 (1042 addresses) Subnet B: 172.16.4.0/22 (1024 addresses)

Ans- C

Which combination of actions enables direct internet access for IPv4 hosts in a VPC? (Select THREE).

A. Enabling DNS resolution for the VPC
B. Configuring the VPC domain name in a DHCP options set
C. Configuring hosts to have or obtain an internet-routable address
D. Creating a default route that points to the virtual private gateway
E. Creating a route for 0.0.0.0/0 that points to the internet gateway
F. Configuring security groups and network ACLs to permit internet traffic

Ans- C, E, F

A group of consultants requires access to an EC2 instance from the internet, for 3 consecutive days each week. The instance is shut down the rest of the week. The VPC has internet access. How should you assign the IPv4 address to the instance to give the consultants access?

A. Associate an Elastic IP with the EC2 instance
B. Enable automatic address assignment for the subnet
C. Enable automatic address assignment for the EC2 instance
D. Assign the address in the operating system (OS) boot configuration

Ans- A

Several EC2 instances launch in a VPC that has internet access. These instances should not be accessible from the internet, but they must be able to download updates from the internet. How should the instances launch?

A. With Elastic IP addresses, in a subnet with a default route to an internet gateway
B. With public IP addresses, in a subnet with a default route to an internet gateway
C. Without public IP addresses, in a subnet with a default route to an internet gateway
D. Without public IP addresses, in a subnet with a default route to a NAT gateway

Ans- D

You are configuring a bastion host to access EC2 instances in a VPC. What must you do to the security groups? (Select TWO).

A. Add a rule to the bastion host to deny all traffic from the internet.
B. Add a rule to the bastion host to allow traffic from your source IP address.
C. Add a rule to the bastion host to allow return traffic to your source IP address.
D. Add a rule to the private subnet EC2 instances to allow traffic from the bastion host security group.
E. Add a rule to the private subnet EC2 instances to allow return traffic to the bastion host security group.

Ans-

You have a VPC with a public subnet and a secure subnet. All EC2 instances in the secure subnet must be able to communicate with specific internet addresses. How can you control traffic with a network ACL?

A. Add rules to the default network ACL to allow traffic from and to allowed internet addresses.
B. Add rules to the default network ACL to allow traffic from and to allowed internet addresses. Deny all other traffic.
C. Add rules to the custom network ACL to allow traffic from and to allowed internet addresses.
D. Add rules to the custom network ACL to allow traffic from and to allowed internet addresses. Deny all other traffic.

Ans- C

All of the EC2 instances in a subnet can communicate with a certain IPv4 network on the internet. How should you modify the security groups or current custom network ACL to deny traffic to and from several restricted addresses in that network?

A. In the network ACL, deny traffic to and from the restricted addresses.
B. In the security groups, deny traffic to and from the restricted addresses.
C. In the network ACL, allow traffic only to and from address ranges that exclude the restricted addresses.
D. In the security groups, allow traffic only to and from addresses ranges that exclude the restricted addresses.

Ans- A

Important Interview Questions

AMCAT Interview Questions

Cocubes Interview Questions

eLitmus Interview Questions

Leave a Comment

fifteen − thirteen =