Question : A user has created a VPC with the public and private subnets using the VPC wizard. The VPC has CIDR 20.0.0.0/16. The public subnet uses CIDR 20.0.1.0/24. The user is planning to host a web server in the public subnet with port 80 and a DB server in the private subnet with port 3306. The user is configuring a security group for the public subnet WebSecGrp and the private subnet DBSecGrp. Which of the below mentioned entries is required in the private subnet database security group DBSecGrp.? 1. Allow Inbound on port 3306 for Source Web Server Security Group WebSecGrp. 2. Allow Inbound on port 3306 from source 20.0.0.0/16 3. Access Mostly Uused Products by 50000+ Subscribers 4. Allow Outbound on port 80 for Destination NAT Instance IP
Explanation: A user can create a subnet with VPC and launch instances inside that subnet. If the user has created a public private subnet to host the web server and DB server respectively, the user should configure that the instances in the private subnet can receive inbound traffic from the public subnet on the DB port. Thus, configure port 3306 in Inbound with the source as the Web Server Security Group WebSecGrp. The user should configure ports 80 and 443 for Destination 0.0.0.0/0 as the route table directs traffic to the NAT instance from the private subnet.
Question : A user has created a VPC with CIDR .../ using the wizard. The user has created public and VPN only subnets along with hardware VPN access to connect to the user's data centre. The user has not yet launched any instance as well as modified or deleted any setup. He wants to delete this VPC from the console. Will the console allow the user to delete the VPC? 1. Yes, the console will delete all the setups and also delete the virtual private gateway 2. No, the console will ask the user to manually detach the virtual private gateway first and then allow deleting the VPC 3. Access Mostly Uused Products by 50000+ Subscribers 4. No, since the NAT instance is running
Correct Answer : Get Lastest Questions and Answer : Exp: The user can create subnets as per the requirement within a VPC. If the user wants to connect VPC from his own data centre, he can setup a public and VPN only subnet which uses hardware VPN access to connect with his data centre. When the user has configured this setup with Wizard, it will create a virtual private gateway to route all traffic of the VPN subnet. If the virtual private gateway is attached with VPC and the user deletes the VPC from the console it will first detach the gateway automatically and only then delete the VPC.
Question : What is the below cloudwatch command mean
1. To send an Amazon Simple Notification Service email message when LoadBalancer Latency Exceeds 100 milliseconds and 100 times 2. To send an Amazon Simple Notification Service email message when LoadBalancer Latency Exceeds 100 milliseconds and 10 times 3. Access Mostly Uused Products by 50000+ Subscribers
Correct Answer : Get Lastest Questions and Answer : To send an Amazon Simple Notification Service email message when LoadBalancer Latency Exceeds 100 milliseconds 1. Create an Amazon Simple Notification Service topic. 2. Create the alarm. Prompt>aws cloudwatch put-metric-alarm --alarm-name lb-mon --alarm-description "Alarm when Latency exceeds 100ms" --metric-name Latency --namespace AWS/ELB --statistic Average --period 60 --threshold 100 --comparison-operator GreaterThanThreshold --dimensions Name=LoadBalancerName,Value=my-server --evaluation-periods 3 --alarm-actions s arn:aws:sns:us-east-1:1234567890:my-topic --unit Milliseconds The AWS CLI returns to the command prompt if the command succeeds. 3. Access Mostly Uused Products by 50000+ Subscribers " Force an alarm state change to ALARM: " Prompt>aws cloudwatch set-alarm-state --alarm-name lb-mon --state-reason "initializing" --state OK Prompt>aws cloudwatch set-alarm-state --alarm-name lb-mon --state-reason "initializing" --state ALARM The AWS CLI returns to the command prompt if the command succeeds. " Check that an email has been received.