1. Home
  2. Amazon
  3. ANS-C00

Amazon ANS-C00 Online Practice Questions and Exam Preparation

ANS-C00 Exam Details

  • Exam Code
    :ANS-C00
  • Exam Name
    :AWS Certified Advanced Networking - Specialty (ANS-C00)
  • Certification
    :Amazon Certifications
  • Vendor
    :Amazon
  • Total Questions
    :414 Q&As
  • Last Updated
    :May 30, 2026

Amazon ANS-C00 Online Questions & Answers

  • Question 171:

    A bank built a new version of its banking application in AWS using containers that connect to an on-premises database over a VPN connection. This application version requires users to also update their client application. The bank plans to deprecate the earlier client version. However, the company wants to keep supporting earlier clients through their on-premises version of the application to serve a small portion of the customers who haven't yet upgraded.

    What design will allow the company to serve both newer and earlier clients in the MOST efficient way?

    A. Use an Amazon Route 53 multivalue answer routing policy to route older client traffic to the on-premises application version and the rest of the traffic to the new AWS based version.
    B. Use a Classic Load Balancer for the new application. Route all traffic to the new application by using an Elastic Load Balancing (ELB) load balancer DNS. Define a user-agent-based rule on the backend servers to redirect earlier clients to the on-premises application.
    C. Use an Application Load Balancer for the new application. Register both the new and earlier applications as separate target groups and use path-based routing to route traffic based on the application version.
    D. Use an Application Load Balancer for the new application. Register both the new and earlier application backends as separate target groups. Use host header-based routing to route traffic based on the application version.

  • Question 172:

    A corporate network routing table contains 624 individual RFC 1918 and public IP prefixes. You have two AWS Direct Connect connectors. You configure a private virtual interface on both connections to a virtual private gateway. The virtual private gateway is not currently attached to a VPC. Neither BGP session will maintain the Established state on the customer router. The AWS Management Console reports the private virtual interfaces as Down.

    What could you do to address the problem so that the AWS Management Console reports the private virtual interface as Available?

    A. Attach the virtual private gateway to a VPC and enable route propagation.
    B. Filter the public IP pre?xes on the corporate network from the private virtual interface.
    C. Change the BGP advertisements from the corporate network to only be a default route.
    D. Attach the second virtual interface to an alternative virtual private gateway.

  • Question 173:

    In Amazon CloudFront, if you need to quickly remove objects from a distribution, you can:

    A. delete the objects from cache.
    B. invalidate the objects.
    C. remove your Amazon S3 bucket.
    D. delete your distribution and recreate it.

  • Question 174:

    A financial services company receives real-time stock quotes in its ingestion VPC. The company plans to perform customer-specific data analysis on the stock quotes in various VPCs. The stock quotes must be distributed simultaneously from Amazon EC2 instances in the ingestion VPC to EC2 instances in the data analysis VPCs.

    Which set of configuration steps should the company lake to meet these requirements?

    A. Configure EC2 instances m f he ingestion VPC as IP unicast senders Configure a transit gateway to serve as a unicast router for instances that send traffic destined for the EC2 instances in the data analysis VPCs.
    B. Configure VPC peering between the ingestion VPC and the data analysis VPCs Configure an Application Load Balancer to distribute Virtual Extensible LAN (VXLAN)-encapsulated traffic from the sender EC2 instances to the receiver EC2 instances.
    C. Configure EC2 instances m the ingestion VPC as IP multicast senders Configure a transit gateway to serve as a multicast router for instances that send traffic destined for the EC2 instances m the data analysis VPCs
    D. Configure Amazon Kinesis Data Forehose to capture streaming data from the ingestion VPC and load the data into Amazon S3 Configure the instances in the data analysis VPCs to download the data from Amazon S3 for processing

  • Question 175:

    You have two public applications on different domains that use two front-end servers and two back-end servers each. You wish to achieve high availability for both applications. What two options should you configure? (Choose two.)

    A. Route 53: 2 public zones and 2 private zones.
    B. Route 53: 2 public zones and 1 private zone.
    C. 3 load balancers: 2 public and 1 internal.
    D. 4 load balancers: 2 public and 2 internal.

  • Question 176:

    You need to ensure the files served by your CloudFront distribution are only accessible to authorized users. You hope to serve thousands of users. What two steps should you take? (Choose two.)

    A. Configure signed cookies.
    B. Configure a WAF.
    C. Configure a bucket policy restricting the bucket to only CloudFront OAI.
    D. Configure an SSL on the distribution.

  • Question 177:

    You manage a web service that is used by client applications deployed in 300 offices worldwide. The web service architecture is an Elastic Load balancer (ELB) distributing traffic across four application servers deployed in an autoscaling

    group across two availability zones.

    The ELB is configured to use round robin, and sticky sessions are disabled. You have configured the NACLs and Security Groups to allow port 22 from your bastion host, and port 80 from 0.0.0.0/0. The client configuration is managed by

    each regional IT team.

    Upon inspection you find that a large amount of requests from incorrectly configured sites are causing a single application server to degrade. The remainder of the requests are equally distributed across all servers with no negative effects.

    What should you do to remedy the situation and prevent future occurrences?

    A. Mark the affected instance as degraded in the ELB and raise it with the client application team.
    B. Update the NACL to only allow port 80 to the application servers from the ELB servers.
    C. Update the Security Groups to only allow port 80 to the application servers from the ELB.
    D. Terminate the affected instance and allow Auto Scaling to create a new instance.

  • Question 178:

    What are two reasons that could cause an HTTP health check to fail? (Choose two.)

    A. Security group blocking port 80 to the instance
    B. HTTP server not running
    C. No Internet Gateway
    D. NACL blocking port 443 to the instance

  • Question 179:

    A company has established an AWS Direct Connect connection between its customer gateway at its on- premises data center and a virtual private gateway m the AWS Cloud The BGP routing protocol configuration includes the Autonomous System Number {ASN) of 7224 on the AWS end of the connection and the BGP ASN of 65004 on the company end of the connection.

    The company's IT administrators report that servers that run at the on-premises data center are not able to communicate with the company's web application that runs on a fleet of Amazon EC2 Instances A network engineer performs initial troubleshooting The network engineer finds that the private VIF is operational and that there is a fully established BGP peering session However, the company still cannot route traffic over the private VIF.

    Which of the following is a possible cause of this connectivity issue?

    A. Firewall or ACL rules are blocking TCP pod 179 or are blocking high-numbered ephemeral TCP pons.
    B. The provider is advertising 50 prefixes for private VIFs.
    C. VPC route tables am lacking prefixes that point to the virtual private gateway to which the private VIF is connected.
    D. Peer IP addresses for both sides of the BGP peering session are not configured correctly.

  • Question 180:

    Your application is hosted behind an Elastic Load Balancer (ELB) within an autoscaling group. The autoscaling group is configured with a minimum of 2, a maximum of 14, and a desired value of 2. The autoscaling cooldown and the

    termination policies are set to the default value.

    CloudWatch reports that the site typically requires just two servers, but spikes at the start and end of the business day can require eight to ten servers. You receive intermittent reports of timeouts and partially loaded web pages.

    Which configuration change should you make to address this issue?

    A. Configure connection draining on the ELB.
    B. Configure the autoscaling cooldown to 600 seconds.
    C. Configure the termination policy to oldest instance.
    D. Configure a Terminating: Wait lifecycle hook on a scale in event.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Amazon exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your ANS-C00 exam preparations and Amazon certification application, do not hesitate to visit our Vcedump.com to find your solutions here.