Your company has a DX connection and you just added a new VPC and Private VIF to which you have connected to your DX link. You copied the settings from the other VPC to ensure it's the same. Once you connected the new VIF, you began seeing problems with connectivity to both VPCs.
You checked to make sure you didn't use the same CIDR with each VPC, so what could be the problem?
A. You used the same VLAN ID for both connections.
B. You overloaded your DX circuit.
C. Your MPLS provider does not allow traffic to two VPCs.
D. You can only connect one VIF to a DX circuit.
You have a server that serves www, FTP, and mail. You need to access this server using www.yourname.com, ftp.yourname.com, and mail.yourname.com. You want to ensure an IP change results in the least number of other changes.
What is the best solution?
A. Create PTR records and point the IP address of the server back to www, ftp, and mail.
B. Create an A record pointing to the server's IP address and create CNAME records for www, ftp, and mail and point those to the A record.
C. Create an A record for www, ftp and mail, and point it to the ALIAS of the server.
D. Create CNAME records for www, ftp, and mail and point those to the A record already provided to the instance by AWS.
You have 4 Direct Connect connections from your datacenter. Site A advertises 172.16.0.0/16 AS 65000, Site B advertises 172.16.0.128/25 AS 65000 65000 65000, Site C advertises 172.0.0.0/8 AS 65000 and Site D advertises 172.16.0.0/24 AS 65000. Which site will AWS choose to reach your network?
A. Site A: 172.16.0.0/16 AS 65000
B. Site B: 172.16.0.128/25 AS 65000 65000 65000
C. Site C: 172.0.0.0/8 AS 65000
D. Site D: 172.16.0.0/24 AS 65000
Your company currently has a LAG to AWS with two 1Gbps connections. What is the best way to increase throughput on this LAG?
A. Add three 1Gbps connections to the LAG.
B. Add one 10Gbps connections to the LAG.
C. Configure your router to use "jumbo frames" with an MTU of 9001.
D. Add two 1Gbps connections to the LAG.
Your company is expanding its cloud infrastructure and moving many of its flat files and static assets to S3. You currently use a VPN to access your compute infrastructure, but you require more reliability for your static files as you are offloading all of your important data to AWS. What is your best course of action while keeping costs low?
A. Create a Direct Connect connection using a Private VIF to access both compute and S3 resources.
B. Create an S3 endpoint and create a route to the endpoint prefix list for your VPN to allow access to your S3 resources.
C. Create two Direct Connect connections. Each connected to a Private VIF to ensure maximum resiliency.
D. Create a Direct Connect connection using a Public VIF and route your VPN over the DX connection to your VPN endpoint.
You work for an international corporation that uses AWS. Due to regulations, you are now required to route the US and China to two different websites. You set up the records and now no other countries can access your site.
Why is this?
A. You forgot to set a default geolocation record.
B. You probably broke your DNS.
C. You must have a geolocation in place for every country.
D. Geolocation features are only available in CloudFront.
Your company has a high-availability hybrid solution that utilizes a two Direct Connect connections and a backup VPN connection. For some reason, traffic is preferring the VPN connection instead of the direct connection. You have prepended a longer AS_PATH on the VPN connection, but AWS still prefers it over the Direct Connect connections.
What might you be able to do to fix this issue?
A. Advertise a less specific prefix on the VPN.
B. Remove the prepended AS_PATH.
C. Reconfigure the VPN as a static VPN instead of dynamic.
D. Increase the MED on the VPN.
You are a holdings company that buys many businesses and must integrate their VPCs into your network. You are constantly encountering networks with similar or overlapping subnets.
What is the best way to manage this.
A. BFD
B. VRF
C. A standby router for the overlapping subnets.
D. A strict IP addressing policy that forces new companies to change the IP addresses of their VPCs.
Your website is under attack and a malicious party is stealing large amounts of data. You have default NACL rules. Stopping the attack is the ONLY priority in this case. Which two commands should you use? (Choose two.)
A. aws ec2 delete-network-acl-entry -network-acl-id acl-5fb84d47 -ingress -rule-number 32768
B. aws ec2 delete-network-acl-entry -network-acl-id acl-5fb84d47 -egress rule-number 100
C. aws ec2 delete-network-acl-entry -network-acl-id acl-5fb84d47 -ingress rule-number 100
D. aws ec2 create-network-acl-entry -network-acl-id acl-5fb84d47 -ingress rule-number 100 -protocol -1 port-range From =-1,To =-1 -cidr-block 0.0.0.0/0 -rule-action deny
You manage a website that uses a load balancer. You are noticing one of the servers is receiving more traffic than the other. What is probably the cause of this?
A. An Elastic Load Balancer sends traffic based on server load. One server must be a larger instance.
B. You have DNS latency routing set, so it is diverting traffic to a different instance.
C. You have sticky sessions configured and there are several power users that happen to be on the other server.
D. The server has more connections available.
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Amazon exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your ANS-C00 exam preparations and Amazon certification application, do not hesitate to visit our Vcedump.com to find your solutions here.