1. Home
  2. Amazon
  3. ANS-C00

Amazon ANS-C00 Online Practice Questions and Exam Preparation

ANS-C00 Exam Details

  • Exam Code
    :ANS-C00
  • Exam Name
    :AWS Certified Advanced Networking - Specialty (ANS-C00)
  • Certification
    :Amazon Certifications
  • Vendor
    :Amazon
  • Total Questions
    :414 Q&As
  • Last Updated
    :May 30, 2026

Amazon ANS-C00 Online Questions & Answers

  • Question 271:

    You are designing an AWS Direct Connect solution into your VPC. You need to consider requirements for the customer router to terminate the Direct Connect link at the Direct Connect location. Which three factors that must be supported should you consider when choosing the customer router? (Choose three.)

    A. 802.1Q VLAN encapsulation
    B. 802.1ax or 802.3ad link aggregation
    C. OSPF
    D. BGP
    E. single-mode optical fiber connectivity
    F. 1-Gbps copper connectivity

  • Question 272:

    Your network utilizes jumbo frames on its servers and your router. You are trying to access your AWS resources, and you are having issues with packet loss. What is the best solution?

    A. Remove the "Do not Fragment" flag on the packets.
    B. Lower the MTU for your network.
    C. Call AWS support.
    D. You will have to upgrade to Direct Connect.

  • Question 273:

    You have 3 VPCs that need to be able to pass traffic. In what two ways can you achieve this? (Choose two.)

    A. Peer each VPC to every other VPC to create a full mesh peering.
    B. Peer them, VPC peering allows transitive peering as of December 2017.
    C. Call AWS to enable transitive peering.
    D. Create VPNs between them and adjust the routing tables accordingly.

  • Question 274:

    Your organization's corporate website must be available on www.acme.com and acme.com. How should you configure Amazon Route 53 to meet this requirement?

    A. Configure acme.com with an ALIAS record targeting the ELB. www.acme.com with an ALIAS record targeting the ELB.
    B. Configure acme.com with an A record targeting the ELB. www.acme.com with a CNAME record targeting the acme.com record.
    C. Configure acme.com with a CNAME record targeting the ELB. www.acme.com with a CNAME record targeting the acme.com record.
    D. Configure acme.com using a second ALIAS record with the ELB target. www.acme.com using a PTR record with the acme.com record target.

  • Question 275:

    After setting an AWS Direct Connect, which of the following cannot be done with an AWS Direct Connect Virtual Interface?

    A. You can delete a virtual interface; if its connection has no other virtual interfaces, you can delete the connection.
    B. You can change the region of your virtual interface.
    C. You can create a hosted virtual interface.
    D. You can exchange traffic between the two ports in the same region connecting to different Virtual Private Gateways (VGWs) if you have more than one virtual interface.

  • Question 276:

    You work for a company that has several instances running with automatically assigned public IPs. You performed an upgrade that required you to restart the instances from the console and your DNS records don't work anymore. What happened?

    A. Your network interfaces need to be reinitialized
    B. You need to restart Route 53
    C. Restarting too many instances at once overloads the system
    D. The instances changed their public IP addresses on restart

  • Question 277:

    An organization will be extending its existing on-premises infrastructure into the cloud. The design consists of a transit VPC that contains stateful firewalls that will be deployed in a highly available configuration across two Availability Zones for automatic failover.

    What MUST be configured for this design to work? (Choose two.)

    A. A different Autonomous System Number (ASN) for each firewall.
    B. Border Gateway Protocol (BGP) routing
    C. Autonomous system (AS) path prepending
    D. Static routing
    E. Equal-cost multi-path routing (ECMP)

  • Question 278:

    A company has 20 AWS accounts and has hundreds of VPCs within those accounts. Each account has several security groups. Most of the security groups share a common set of CIDR range rules.

    The company wants to simplify the management of these CIDR ranges that the security groups use. The company's network team does not have full access to all the accounts. The common CIDR ranges are 10.10.0.0/16, 10.8.0.0/16, and

    192.168.128.0/24.

    Which solution should a network engineer recommend to meet these requirements?

    A. Use AWS CloudFormation and AWS CloudFormation StackSets to configure all the accounts and VPCs with the same security groups.
    B. Use a CLI and a shell script to configure all the accounts and VPCs with the same security groups.
    C. Use AWS CloudFormation to configure a VPC prefix list, and share the prefix list with all the accounts in AWS Resource Access Manager.
    D. Use a CLI and a shell script to configure all the accounts and VPCs with the same network ACLs.

  • Question 279:

    Which of the following physical layer standards is required for connection to AWS Direct Connect over a standard 1 gigabit or 10 gigabit Ethernet fiber-optic cable?

    A. Single mode fiber, 1000BASE-LX for 1 gigabit Ethernet, or 10GBASE-ER for 10 gigabit Ethernet
    B. Multi mode fiber, 1000BASE-LX for 1 gigabit Ethernet, or 10GBASE-ER for 10 gigabit Ethernet
    C. Single mode fiber, 1000BASE-LX for 1 gigabit Ethernet, or 10GBASE-LR for 10 gigabit Ethernet
    D. Multi mode fiber, 1000BASE-SX for 1 gigabit Ethernet, or 10GBASE-SR for 10 gigabit Ethernet

  • Question 280:

    Your company decides to use Amazon S3 to augment its on-premises data store. Instead of using the company's highly controlled, on-premises Internet gateway, a Direct Connect connection is ordered to provide high bandwidth, low latency

    access to S3. Since the company does not own a publically routable IPv4 address block, a request was made to AWS for an AWS-owned address for a Public Virtual Interface (VIF).

    The security team is calling this new connection a "backdoor", and you have been asked to clarify the risk to the company.

    Which concern from the security team is valid and should be addressed?

    A. AWS advertises its aggregate routes to the Internet allowing anyone on the Internet to reach the router.
    B. Direct Connect customers with a Public VIF in the same region could directly reach the router.
    C. EC2 instances in the same region with access to the Internet could directly reach the router.
    D. The S3 service could reach the router through a pre-configured VPC Endpoint.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Amazon exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your ANS-C00 exam preparations and Amazon certification application, do not hesitate to visit our Vcedump.com to find your solutions here.