1. Home
  2. Amazon
  3. ANS-C00

Amazon ANS-C00 Online Practice Questions and Exam Preparation

ANS-C00 Exam Details

  • Exam Code
    :ANS-C00
  • Exam Name
    :AWS Certified Advanced Networking - Specialty (ANS-C00)
  • Certification
    :Amazon Certifications
  • Vendor
    :Amazon
  • Total Questions
    :414 Q&As
  • Last Updated
    :May 30, 2026

Amazon ANS-C00 Online Questions & Answers

  • Question 121:

    You need to create a subnet in a VPC that supports 14 hosts. You need to be as accurate as possible since you run a very large company. What CIDR should you use?

    A. /28
    B. /24
    C. /25
    D. /27

  • Question 122:

    Your company has a highly-available Direct Connect solution that utilizes two datacenters. Each datacenter was initially configured with one four-connection LAG and one standard DX connection. How many LOA documents have been requested and completed for this configuration?

    A. 1
    B. 4
    C. 2
    D. 10

  • Question 123:

    An insurance company is planning the migration of workloads from its on-premises data center to the AWS Cloud. The company requires end-to-end domain name resolution. Bi-directional DNS resolution between AWS and the existing on-premises environments must be established. The workloads will be migrated into multiple VPCs. The workloads also have dependencies on each other, and not all the workloads will be migrated at the same time.

    Which solution meets these requirements?

    A. Configure a private hosted zone for each application VPC, and create the requisite records. Create a set of Amazon Route 53 Resolver inbound and outbound endpoints in an egress VPC. Define Route 53 Resolver rules to forward requests for the on-premises domains to the on-premises DNS resolver. Associate the application VPC private hosted zones with the egress VPC, and share the Route 53 Resolver rules with the application accounts by using AWS Resource Access Manager. Configure the on-premises DNS servers to forward the cloud domains to the Route 53 inbound endpoints.
    B. Configure a public hosted zone for each application VPC, and create the requisite records. Create a set of Amazon Route 53 Resolver inbound and outbound endpoints in an egress VPC. Define Route 53 Resolver rules to forward requests for the on-premises domains to the on-premises DNS resolver. Associate the application VPC private hosted zones with the egress VPC, and share the Route 53 Resolver rules with the application accounts by using AWS Resource Access Manager. Configure the on-premises DNS servers to forward the cloud domains to the Route 53 inbound endpoints.
    C. Configure a private hosted zone for each application VPC, and create the requisite records. Create a set of Amazon Route 53 Resolver inbound and outbound endpoints in an egress VPC. Define Route 53 Resolver rules to forward requests for the on-premises domains to the on-premises DNS resolver. Associate the application VPC private hosted zones with the egress VPC, and share the Route 53 Resolver rules with the application accounts by using AWS Resource Access Manager. Configure the on-premises DNS servers to forward the cloud domains to the Route 53 outbound endpoints.
    D. Configure a private hosted zone for each application VPC, and create the requisite records. Create a set of Amazon Route 53 Resolver inbound and outbound endpoints in an egress VPC. Define Route 53 Resolver rules to forward requests for the on-premises domains to the on-premises DNS resolver. Associate the Route 53 outbound rules with the application VPCs, and share the private hosted zones with the application accounts by using AWS Resource Access Manager. Configure the on-premises DNS servers to forward the cloud domains to the Route 53 inbound endpoints.

  • Question 124:

    Which one of the following options is not true about WorkSpaces?

    A. WorkSpaces allows integration with Microsoft AD.
    B. WorkSpaces is great for running Linux applications.
    C. WorkSpaces is a fully managed, secure desktop computing service.
    D. WorkSpaces can query on-premises domains for authentication.

  • Question 125:

    What are two reasons to have multiple IP addresses or interfaces on one server? (Choose two.)

    A. You can host multiple SSLs
    B. Create management networks
    C. Direct Connect connections
    D. Teaming multiple NICs for more throughput

  • Question 126:

    You run a well-architected, multi-AZ application in the eu-central-1 (Frankfurt) AWS region. The application is hosted in a VPC and is only accessed from the corporate network. To support large volumes of data transfer and administration of the application, you use a single 10-Gbps AWS Direct Connect connection with multiple private virtual interfaces. As part of a review, you decide to improve the resilience of your connection to AWS and make sure that any additional connectivity does not share the same Direct Connect routers at AWS. You need to provide the best levels of resilience to meet the application's needs.

    Which two options should you consider? (Choose two.)

    A. Install a second 10-Gbps Direct Connect connection to the same Direct Connection location.
    B. Deploy an IPsec VPN over a public virtual interface on a new 10-Gbps Direct Connect connection.
    C. Install a second 10-Gbps Direct Connect connection to a Direct Connect location in eu-west-1.
    D. Deploy an IPsec VPN over the Internet to the eu-west-1 region for diversity.
    E. Install a second 10-Gbps Direct Connect connection to a second Direct Connect location for eu-central-1.

  • Question 127:

    You ping an Amazon Elastic Compute Cloud (EC2) instance from an on-premises server. VPC Flow Logs record the following:

    2 123456789010 eni-1235b8ca 10.123.234.78 172.11.22.33 0 0 1 8 672 1432917027 1432917142 ACCEPT OK 2 123456789010 eni-1235b8ca 172.11.22.33 10.123.234.78 0 0 1 4 336 1432917027 1432917082 ACCEPT OK 2 123456789010 eni-1235b8ca 172.11.22.33 10.123.234.78 0 0 1 4 336 1432917094 1432917142 REJECT OK

    Why are ICMP responses not received by the on-premises system?

    A. The inbound network access control list is blocking the traffic
    B. The outbound network access control list is blocking the traffic
    C. The inbound security group is blocking the traffic.
    D. The outbound security group is blocking the traffic.

  • Question 128:

    You can use the ____ command of the AWS Config service CLI to see the compliance state for each AWS resource of a specific type.

    A. describe-compliance-by-resource
    B. get-compliance-details-by-config-rule
    C. describe-compliance-by-config-rule
    D. get-compliance-details-by-resource

  • Question 129:

    Your company was recently acquired and a Direct Connection connection was extended from your new parent corporation to your AWS VPC using a hosted VIF. What data charges are billed to your account for that connection?

    A. You are only responsible for the port hours of the VIF.
    B. You are not charged anything.
    C. You are responsible for all data transfer out.
    D. You are responsible for all data transfer in.

  • Question 130:

    You wish to access all European regions using your Direct Connect connection. How should you accomplish this?

    A. Peer VPCs in the different regions and connect DX to one of the regions to communicate with the other.
    B. Use a DX Gateway.
    C. Find the prefix list for the other region and add it to your route table.
    D. One DX connection will connect you to all regions.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Amazon exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your ANS-C00 exam preparations and Amazon certification application, do not hesitate to visit our Vcedump.com to find your solutions here.