Free Practice Amazon ANS-C01 Exam Questions 2025

Stay ahead with 100% Free AWS Certified Advanced Networking Specialty ANS-C01 Dumps Practice Questions

Page: 1 / 47

Total 232 Questions | Updated On: Mar 03, 2025

Add To Cart

Question 1

A company is deploying a non-web application on an AWS load balancer. All targets are servers located on-premises that can be accessed by using AWS Direct Connect. The company wants to ensure that the source IP addresses of clients connecting to the application are passed all the way to the end server.

How can this requirement be achieved?

A : Use a Network Load Balancer to automatically preserve the source IP address.

B : Use a Network Load Balancer and enable the X-Forwarded-For attribute.

C : Use a Network Load Balancer and enable the ProxyProtocol v2 attribute.

D : Use an Application Load Balancer to automatically preserve the source IP address in the X-Forwarded-For header.

Answer: C

Question 2

A legacy, on-premises web application cannot be load balances effectively. There are both planned and unplanned events that cause usage spikes to millions of concurrent users. The existing infrastructure cannot handle the usage spikes. The CIO has mandated that the application be moved to the cloud to avoid further disruptions, with the additional requirement that source IP addresses be unaltered to support network traffic-monitoring needs. Which of the following designs will meet these requirements?

A : Use an Auto Scaling group of Amazon EC2 instances behind a Classic Load Balancer.

B : Use an Auto Scaling group of EC2 instances in a target group behind an Application Load Balancer.

C : Use an Auto Scaling group of EC2 instances in a target group behind a Classic Load Balancer.

D : Use an Auto Scaling group of EC2 instances in a target group behind a Network Load Balancer.

Answer: D

Question 3

An analytics company uses Amazon QuickSight (Enterprise Edition) to easily create and publish interactive BI dashboards that can be accessed from any device. For a specific requirement, the company needs to create a private connection from Amazon QuickSight to an Amazon RDS DB instance that's in a private subnet to fetch data for analysis.

Which of the following represents an optimal solution for configuring a private connection between QuickSight and Amazon RDS DB instance?

A : Amazon QuickSight Enterprise edition is fully integrated with the Amazon VPC service. Create an ENI in QuickSight that points to the VPC that hosts the RDS DB instance. However, the subnet has to be a private subnet and not a public subnet

B : Create a new private subnet in the same VPC as the Amazon RDS DB instance. Create a new network Access Control List (ACL) with necessary inbound rules for QuickSight in the same VPC. Connect from QuckSight using VPC connector

C : Create a Private Virtual Interface between VPC that hosts Amazon RDS DB instance and QuickSight. Use this connection to privately access necessary data from RDS DB

D : Create a new private subnet in the same VPC as the Amazon RDS DB instance. Create a new security group with necessary inbound rules for QuickSight in the same VPC. Sign in to QuickSight as a QuickSight admin and create a new QuickSight VPC connection. Create a new dataset from the RDS DB instance

Answer: D

Question 4

A company runs a large-scale application on a feel of Amazon EC2 instances that ate distributed across several VPCs A Network Load Balancer (NLB) in a separate VPC routes traffic to the EC2 instances The NLB's VPC is peered to all the application VPCs

The application must process millions of requests each minute during times of peak utilization Users are reporting that the connections to the application are failing during peak times Monitoring shows an increase in port allocation errors on the NLB.

Which action will solve this issue with the LEAST change to the architecture?

A : Increase the number of EC2 instances in the target group

B : Create an Application Load Balancer for the target group

C : Add a new target group to the same NLB listener

D : Change the target group type to 'instance'

Answer: C

Question 5

The networking team at a company wants to do a Simple AD deployment and use it for the company's Microsoft Exchange email server. The team is having issues finding the AD server.

What is the most probable root cause behind this issue?

A : You need to contact AWS to receive an MX record for the Microsoft Exchange email server

B : Simple AD does not support Microsoft Exchange

C : The Network Access Control List is blocking the traffic to the email server

D : TLS is not implemented

Answer: B

Page: 1 / 47

Total 232 Questions | Updated On: Mar 03, 2025

Add To Cart