1. Home
  2. Amazon
  3. ANS-C00

AWS Certified Advanced Networking - Specialty (ANS-C00)

Exam Details

  • Exam Code
    :ANS-C00
  • Exam Name
    :AWS Certified Advanced Networking - Specialty (ANS-C00)
  • Certification
    :Amazon Certifications
  • Vendor
    :Amazon
  • Total Questions
    :414 Q&As
  • Last Updated
    :May 03, 2025

Amazon Amazon Certifications ANS-C00 Questions & Answers

  • Question 261:

    You wish to have a sub-1G connection to AWS to save on costs. How can you achieve this?

    A. Just set your router to the speed you want and AWS will charge you based on the actual speed of the port.

    B. Contact AWS, they will put you in contact with a technical account manager who can help you get this setup.

    C. You can't. The only speeds available for Direct Connect are 1G and 10G.

    D. Contact an AWS partner, AWS does not provide sub-1G connection speeds.

  • Question 262:

    Your company needs to directly update an S3 bucket that serves as a CloudFront origin with the most reliability possible. Your company also has a set of private EC2 servers that it needs to access with the same reliability. Which combination will provide the best solution?

    A. A Virtual Gateway and a Public VIF

    B. A Private VIF is all you need to access all AWS resources.

    C. A Hosted VIF and a Private VIF

    D. A Public VIF and a Private VIF

  • Question 263:

    You have just configured an Elastic Load Balancer. Assuming all settings are configured properly, about how long will it take an instance to become healthy with a 6 second HealthCheck Interval, an unhealthy threshold of 5 and a healthy threshold of 10?

    A. 120 seconds

    B. 30 seconds

    C. 6 seconds

    D. 60 seconds

  • Question 264:

    Your company has two DX locations. You need to configure one link as passive. What should you configure in your router to set that link as the passive link.

    A. Set a higher MED.

    B. Configure AS_PATH Prepending on the link.

    C. Advertise a network with a higher CIDR.

    D. Call your service provider and have the ASN changed for that link.

  • Question 265:

    Your company has just completed a transition to IPv6 and has deployed a website on a server. You were able to download software on the instance without an issue. This website is deployed using IPv6, but the public is not able to access it. What should you do to fix this problem?

    A. Add an internet gateway for the instance.

    B. Add an egress-only internet gateway.

    C. Add an inbound rule to your security group that allows inbound traffic on port 80 for ::/0.

    D. Add an inbound rule to your security group that allows inbound traffic on port 80 for 0.0.0.0/0.

  • Question 266:

    You need to quickly view inbound traffic to an instance to determine why it isn't reaching the instance properly. What is the best tool for this?

    A. Wireshark

    B. CloudWatch

    C. CloudTrail

    D. Flow Logs

  • Question 267:

    Your organization has placed a project on hold and has stopped 30 public EC2 instances. These instances use instance store volumes and do not have custom AMIs associated. You are still being charged every month.

    What is the charge probably for?

    A. AWS charges for dormant accounts.

    B. You have Elastic IPs associated with those instances.

    C. There is a "stopped instance" fee that AWS charges every month.

    D. You are being charged for the EBS volumes.

  • Question 268:

    You are auditing an AWS infrastructure after you noticed some abnormal charges on the bill. You use AWS Config to monitor your changes. What else is required to find out who made the change?

    A. There is no information to find this. You will need to sign up for Config Premium.

    B. Use the eventID of the change and reference it with your Flow Logs.

    C. Use the eventId of the change and reference it with CloudTrail to find the culprit.

    D. Use the eventID of the change and reference it with CloudWatch to find the culprit.

  • Question 269:

    You have a website hosted on EC2 that is not serving web pages. You have ensured that the server is running and the site is configured properly. What could be the problem?

    A. Your NACL does not allow port 80 outbound.

    B. Your NACL does not allow ports 1024 - 65535 outbound.

    C. Your NACL does not allow ports 1024 - 65535 inbound. D. Your security group does not allow outbound traffic.

  • Question 270:

    Your company is building a new data center. You currently have an on-premises data center that accesses your single VPC via VPN. You need to provide access to your single VPC to your new data center. Since your new data center build is already over budget, you need to keep costs low.

    How should you accomplish this?

    A. Add a Private VIF and create a Direct Connect connection.

    B. Create a new Customer Gateway and add it to your VPN using a CloudHub infrastructure model.

    C. Add a Public VIF and create a Direct Connect connection.

    D. Create a new Virtual Gateway and add it to your VPN using a CloudHub infrastructure model.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Amazon exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your ANS-C00 exam preparations and Amazon certification application, do not hesitate to visit our Vcedump.com to find your solutions here.