AWS Certified Solutions Architect - Professional Questions and Answers (Dumps and Practice Questions)

Question : QuickTechie.com is running an application on an EBS backed EC instance for hours a day across days.
The application is a scalable web application which uses RDS for fetching data. Which of the below mentioned options
is a better scalable and cost effective solution for this scenario?

1. Use RDS with heavy utilized Reserved Instances and EC2 with medium utilized Reserved Instances.
2. Use both RDS and EC2 with heavy utilized Reserved Instances.
3. Access Mostly Uused Products by 50000+ Subscribers
4. Use RDS with a medium utilized Reserved Instance and EC2 with low utilized Reserved Instances.



Correct Answer : Get Lastest Questions and Answer : Exp: Reserved Instances provide you with a significant discount (up to 75%) compared to On-Demand Instance pricing.
Flexible : Reserved Instances provide you the ability to maximize your level of savings by purchasing the Reserved Instance that meets your business's needs.
Term: AWS offers Reserved Instances for 1 or 3 year terms. Reserved Instance Marketplace Sellers also offer Reserved Instances that have all the same operating qualities as AWS's
Reserved Instances, but terms that can range from 1 month to 36 months (depending on available selection).
Region: Reserved Instances are available in all AWS regions. Reserved Instances are also available in Amazon VPC and Dedicated Instances.
Operating System: Reserved Instances can be purchased for Amazon EC2 running Linux/UNIX, SUSE Linux, Red Hat Enterprise Linux, Microsoft Windows Server, and Microsoft SQL Server
platforms.
Payment Options: You can choose between three payment options when you purchase a Reserved Instance. With the All Upfront option, you pay for the entire Reserved Instance with
one upfront payment. This option provides you with the largest discount compared to On-Demand Instance pricing. With the Partial Upfront option, you make a low upfront payment
and are then charged a discounted hourly rate for the instance for the duration of the Reserved Instance term. The No Upfront option does not require any upfront payment and
provides a discounted hourly rate for the duration of the term.

Modifiable : If your needs change, you can request to move your Reserved Instance to another Availability Zone within the same region, change its Network Platform, or, for Linux/UNIX
RIs, modify the instance size of your reservation to another size of the same instance type at no additional cost. (Certain conditions apply, click here for more details.)
Reliable

Reserved Instances provide a capacity reservation so that you can have confidence in your ability to launch the number of instances you have reserved when you need them.
Easy to Use : Reserved Instances are easy to use and require no change to how you use EC2. When computing your bill, our system will automatically apply Reserved Instance rates first
to minimize your costs. An instance hour will only be charged at the On-Demand rate when your total quantity of instances running that hour exceeds the number of applicable Reserved
Instances you own.






Question : QuickTechie.com has launched two applications: one for polling and one for review on the same AWS Linux EC instance running in the AWS VPC.
And has attached two private IPs (primary and secondary) to the above mentioned instance also wants the instance OS to recognize the secondary IP address.
How can the organization configure this?

1. Use the ec2-net-utility package which updates routing tables, uses DHCP to refresh the secondary IP and adds the network interface.
2. Use the ec2-ip-update package which can configure the network interface as well as update the secondary IP with DHCP.
3. Access Mostly Uused Products by 50000+ Subscribers
4. Use the ec2-ip-utility package which can update the routing tables as well as refresh the secondary IP using DHCP.



Correct Answer : Get Lastest Questions and Answer :
Exp: n EC2-VPC, you can specify multiple private IP addresses for your instances. The number of network interfaces and private IP addresses that you can specify for an instance
depends on the instance type. For more information, see Private IP Addresses Per ENI Per Instance Type.

It can be useful to assign multiple private IP addresses to an instance in your VPC to do the following:
Host multiple websites on a single server by using multiple SSL certificates on a single server and associating each certificate with a specific IP address.
Operate network appliances, such as firewalls or load balancers, that have multiple private IP addresses for each network interface.
Redirect internal traffic to a standby instance in case your instance fails, by reassigning the secondary private IP address to the standby instance.
The following list explains how multiple IP addresses work with network interfaces:
You can assign a secondary private IP address to any network interface. The network interface can be attached to or detached from the instance.
You must choose a secondary private IP address that's in the CIDR block range of the subnet for the network interface.
Security groups apply to network interfaces, not to IP addresses. Therefore, IP addresses are subject to the security group of the network interface in which they're specified.
Secondary private IP addresses can be assigned and unassigned to elastic network interfaces attached to running or stopped instances.
Secondary private IP addresses that are assigned to a network interface can be reassigned to another one if you explicitly allow it.
When assigning multiple secondary private IP addresses to a network interface using the command line tools or API, the entire operation fails if one of the secondary private IP
addresses can't be assigned.
Primary private IP addresses, secondary private IP addresses, and any associated Elastic IP addresses remain with the network interface when it is detached from an instance or
attached to another instance.
Although you can't move the primary network interface from an instance, you can reassign the secondary private IP address of the primary network interface to another network
interface.
You can move any additional network interface from one instance to another.
The following list explains how multiple IP addresses work with Elastic IP addresses:
Each private IP address can be associated with a single Elastic IP address, and vice versa.
When a secondary private IP address is reassigned to another interface, the secondary private IP address retains its association with an Elastic IP address.
When a secondary private IP address is unassigned from an interface, an associated Elastic IP address is automatically disassociated from the secondary private IP address.






Question : QuickTechie.com has setup a web application in the AWS VPC and also running a database on the EC instance and the application server connects to the
DB server only on the internal IP. QuickTechie is looking for HA and DR for the database. Which of the below mentioned options fulfils the QuickTechie's need for a DB backup?


1. Setup the database in the private subnet and keep a hot standby running in the public subnet for immediate failover.
2. Use the AWS storage gateway with VPC to switchover from the primary to secondary DB in separate zones.
3. Access Mostly Uused Products by 50000+ Subscribers
with a different subnet.
4. Setup the database on the instance with an elastic network interface which will have a fixed private IP address and also keep a hot standby running in a separate zone
with a different subnet.



Correct Answer : Get Lastest Questions and Answer :
Exp: An elastic network interface (ENI) is a virtual network interface that you can attach to an instance in a VPC. An ENI can include the following attributes:
a primary private IP address
one or more secondary private IP addresses
one Elastic IP address per private IP address
one public IP address, which can be auto-assigned to the network interface for eth0 when you launch an instance, but only when you create a network interface for eth0 instead of
using an existing network interface
one or more security groups
a MAC address
a source/destination check flag
a description

You can create a network interface, attach it to an instance, detach it from an instance, and attach it to another instance. The attributes of a network interface follow the network
interface as it is attached or detached from an instance and reattached to another instance. When you move a network interface from one instance to another, network traffic is
redirected to the new instance.

Each instance in a VPC has a default network interface. The default network interface has a primary private IP address in the IP address range of its VPC. You can create and attach
additional network interfaces. The maximum number of network interfaces that you can use varies by instance type. For more information, see Private IP Addresses Per ENI Per Instance
Type.

Attaching multiple network interfaces to an instance is useful when you want to:
Create a management network.
Use network and security appliances in your VPC.
Create dual-homed instances with workloads/roles on distinct subnets.
Create a low-budget, high-availability solution.

Related Questions

---

Question : QuickTechie.com website is deployed on Weblogic App Server. And they are also using AWS VPC with high availability. Select the correct statement
which will help to deploy application with HA


1. Create two VPCs in two separate zones and setup failover with ELB such that if one VPC fails it will divert traffic to another VPC.

2. Create VPC with only one private subnet and launch instances in different AZs using that subnet.
3. Create VPC subnets in two separate availability zones and launch instances in different subnets.

4. Create VPC with only one public subnet and launch instances in different AZs using that subnet.



Question : You have created a public subnet and one private subnet to host your website and databases. Select the most correct statement which applies


1. Regardless of the type of subnet, the internal IP address range of the subnet is always private
2. In public subnet, the internal IP address range of the subnet is always private
3. Regardless of the type of subnet, the internal IP address range of the subnet is always public
4. In public subnet, the internal IP address range of the subnet is always private


Question : You have hosted QuickTechie.com website in AWS VPC, and also configured the security with below

1. Security groups
2. Network access control lists (ACLs)

a. Act as a firewall for associated Amazon EC2 instances, controlling both inbound and outbound traffic at the instance level
b. Act as a firewall for associated subnets, controlling both inbound and outbound traffic at the subnet level
c. a second layer of defense

Please map the above


1. 1-a,2-b, 2-c
2. 1-b, 2-a, 1-c
2. 1-a, 1-b, 2-c,



Question : : Select the in-correct statement for Network ACL

1. Operates at the subnet level (second layer of defense)
2. Supports allow rules and deny rules
3. Is stateless: Return traffic must be explicitly allowed by rules
4. Automatically applies to all instances in the subnets it's associated
5. None of above


Question : When you launch an instance in a VPC, you can assign the instance to up to___________ security groups.

1. 1
2. 2
3. 3
4. 4
5. 5


Question : You have created a VPC for your website and launched one EC instance in it. However, you forgot to assign security group to this instance, please
select the correct statement which applies.

1. Allow inbound traffic from instances assigned to the same security group
2. Allow all outbound traffic
3. Allow inbound traffic from instances assigned from any security group
4. 1 and 2
5. 2 and 3