Premium

AWS Certified Solutions Architect – Associate Questions and Answers (Dumps and Practice Questions)



Question : A VPC can contain multiple subnets. Each subnet can span multiple Availability Zones.

: A VPC can contain multiple subnets. Each subnet can span multiple Availability Zones.
1. True
2. False
 3. Access Mostly Uused Products by 50000+ Subscribers
4. Only for US regions


Correct Answer : Get Lastest Questions and Answer :

Explanation: A VPC can span several Availability Zones. In contrast a subnet must be located within a single Availability Zone.




Question : You have kept a Windows EC instance in a private subnet and configured NACL to allow traffic on Internet, and deny on any incoming traffic from internet. Now, you need to install a patch which can only be downloaded from vendor website. Please select the correct statement which applies.


: You have kept a Windows EC instance in a private subnet and configured NACL to allow traffic on Internet, and deny on any incoming traffic from internet. Now, you need to install a patch which can only be downloaded from vendor website. Please select the correct statement which applies.
1. You have logged in from windows EC2 instance which send request over internet however, patch download will fail. Because, you can send request on internet but incoming is denied.

2. You have logged in from windows EC2 instance which send request over internet, patch download will success.

3. Access Mostly Uused Products by 50000+ Subscribers

4. No, you cannot install Patch your own. You have to raise AWS support request.


Correct Answer : Get Lastest Questions and Answer :
Explanation: NACL are stateless. Hence, you have to define separate rule for both incoming and outgoing internet traffic. So incoming request can only be accepted if you have explicitly allowed.




Question :

You can implement additional ______ solutions to block network communication with link-local addresses for the instances inside of your VPC
:
1. IP
2. Firewall
 3. Access Mostly Uused Products by 50000+ Subscribers
4. IAM

Correct Answer : Get Lastest Questions and Answer :

Explanation: If you wish to block the traffic generated by link-local addresses (used to support DNS and DHCP services) in your VPC instances, you can implement
additional firewall solutions, since neither security groups nor network ACLs can block this kind of traffic



Related Questions

Question :

When stopping an EC2 classic instance, which ONE is true?

 :
1. Ephemeral storage is lost.
2. An attached Elastic IP Address is detached from the instance.
3. Access Mostly Uused Products by 50000+ Subscribers
4. None of the above



Question : You are creating an Auto Scaling group whose Instances need to insert a custom metric into CloudWatch.
Which method would be the best way to authenticate your CloudWatch PUT request?
 : You are creating an Auto Scaling group whose Instances need to insert a custom metric into CloudWatch.
1. Create an IAM role with the PutMetricData permission and modify the Auto Scaling launch configuration to launch instances in that role
2. Create an IAM user with the PutMetricData permission and modify the Auto Scaling launch configuration to inject the userscredentials into
the instance User Data
 3. Access Mostly Uused Products by 50000+ Subscribers
4. Create an IAM user with the PutMetricData permission and put the credentials in a private repository and have applications on the server
pull the credentials as needed


Question :

Which types of applications, when running on an EC2 instance, would you consider using provisioned IOPS for?

 :
1. Web Servers
2. File Servers
 3. Access Mostly Uused Products by 50000+ Subscribers
4. All of the above


Question : In VPC, as per the requirements of your customer gateway is to utilize the ______ hashing function
to authenticate both IKE and IPsec Security Associations.

 : In VPC, as per the requirements of your customer gateway is to utilize the ______ hashing function
1. HMAC
2. SHA-224
 3. Access Mostly Uused Products by 50000+ Subscribers
4. MD5


Question : You have a web application leveraging an Elastic Load Balancer (ELB) In front of the web servers
deployed using an Auto Scaling Group Your database is running on Relational Database Service
(RDS) The application serves out technical articles and responses to them in general there are
more views of an article than there are responses to the article. On occasion, an article on the site
becomes extremely popular resulting in significant traffic Increases that causes the site to go
down.
What could you do to help alleviate the pressure on the infrastructure while maintaining availability
during these events?
Choose 3 answers

A. Leverage CloudFront for the delivery of the articles.
B. Add RDS read-replicas for the read traffic going to your relational database
C. Leverage ElastiCache for caching the most frequently used data.
D. Use SQS to queue up the requests for the technical posts and deliver them out of the queue.
E. Use Route53 health checks to fail over to an S3 bucket for an error page.

 : You have a web application leveraging an Elastic Load Balancer (ELB) In front of the web servers
1. A,B,C
2. B,C,D
 3. Access Mostly Uused Products by 50000+ Subscribers
4. A,B,D
5. B,C,E


Question :

At which frequency of updates will Amazon CloudWatch monitor your EC2 instances for free?

 :
1. 1
2. 5
 3. Access Mostly Uused Products by 50000+ Subscribers
4. 10