1. Home
  2. Amazon
  3. ANS-C00

Amazon ANS-C00 Online Practice Questions and Exam Preparation

ANS-C00 Exam Details

  • Exam Code
    :ANS-C00
  • Exam Name
    :AWS Certified Advanced Networking - Specialty (ANS-C00)
  • Certification
    :Amazon Certifications
  • Vendor
    :Amazon
  • Total Questions
    :414 Q&As
  • Last Updated
    :May 30, 2026

Amazon ANS-C00 Online Questions & Answers

  • Question 291:

    For _______ distributions, CloudFront does not cache cookies in edge caches.

    A. AMI
    B. Web
    C. RTMP
    D. Web and RTMP

  • Question 292:

    Which service would you use to see who changed your infrastructure?

    A. Config
    B. CloudTrail
    C. Flow Logs

  • Question 293:

    You manage a website that uses a load balancer. You are noticing one of the servers is receiving more traffic than the other. What is probably the cause of this?

    A. An Elastic Load Balancer sends traffic based on server load. One server must be a larger instance.
    B. You have DNS latency routing set, so it is diverting traffic to a different instance.
    C. You have sticky sessions configured and there are several power users that happen to be on the other server.
    D. The server has more connections available.

  • Question 294:

    You are configuring multiple Direct Connect links for your organization and need them to be in an HA Active/Passive configuration with extreme sensitivity to outages in order to encourage very quick failover times. You also need to be able to control which link is active.

    What two configuration changes should you implement? (Choose two.)

    A. MPLS
    B. BFD
    C. AS_PATH Prepending
    D. BGP

  • Question 295:

    Which element of AWS Config can be used to help maintain internal and external compliance controls?

    A. Configuration Item
    B. Configuration Recorder
    C. Configuration Streams
    D. Config Rules

  • Question 296:

    Your organization needs to resolve DNS entries stored in an Amazon Route 53 private zone "awscloud:internal" from the corporate network. An AWS Direct Connect connection with a private virtual interface is configured to provide access to a VPC with the CIDR block 192.168.0.0/16. A DNS Resolver (BIND) is configured on an Amazon Elastic Compute Cloud (EC2) instance with the IP address 192.168.10.5 within the VPC. The DNS Resolver has standard root server hints configured and conditional forwarding for "awscloud.internal" to the IP address 192.168.0.2.

    From your PC on the corporate network, you query the DNS server at 192.168.10.5 for www.amazon.com. The query is successful and returns the appropriate response. When you query for "server.awscloud.internal", the query times out. You receive no response.

    How should you enable successful queries for "server.awscloud.internal"?

    A. Attach an internet gateway to the VPC and create a default route.
    B. Configure the VPC settings for enableDnsHostnames and enableDnsSupport as True
    C. Relocate the BIND DNS Resolver to the corporate network.
    D. Update the security group for the EC2 instance at 192.168.10.5 to allow UDP Port 53 outbound.

  • Question 297:

    A company has applications running in a single AWS Region and its on-premises data center in a hybrid mode. The company has a 1 Gbps AWS Direct Connect connection from the data center to AWS that is 65% utilized. The company has

    an AWS Enterprise Support plan.

    The company is planning to deploy a new critical application on AWS that will connect with existing applications running in the data center. The application SLA requires a minimum of 99.9% network uptime between the data center and AWS.

    What is the MOST cost-effective way to meet this SLA requirement?

    A. Create a second virtual interface (VIF) on the existing Direct Connect connection, and terminate this VIF in the existing VPC. Use BGP for load balancing between the VIFs in active/active mode.
    B. Purchase an additional 1 Gbps Direct Connect connection from AWS in a different cross-connect location terminated in the associated Region. Provision a new virtual interface (VIF) to the existing VPC, and use BGP for load balancing.
    C. Set up two new hosted Direct Connect connections of 500 Mbps each through an AWS Direct Connect partner. Provision two virtual interfaces (VIFs) to the existing VPC on both Direct Connect connections, and use BGP for load balancing. Terminate the existing 1 Gbps Direct Connect connection.
    D. Purchase an additional 1 Gbps Direct Connect connection from AWS in the existing cross-connect location. Ask AWS to terminate this new connection in a different router. Provision two virtual interfaces (VIFs) to the same VPC on both Direct Connect connections, and use BGP for load balancing.

  • Question 298:

    A company is deploying a new web application that uses a three-tier model with a public-facing Network Load Balancer and web servers in an Amazon VPC. The application servers are hosted in the company's data center. There is an AWS

    Direct Connect connection between the VPC and the company's data center. Load testing results indicate that up to 100 servers, equally distributed across multiple Availability Zones, are required to handle peak loads.

    The Network Engineer needs to design a VPC that has a /24 CIDR assigned to it.

    How should the Engineer allocate subnets across three Availability Zones for each tier?

    A. Network Load Balancer: /29 per subnet Web: /26 per subnet
    B. Network Load Balancer: /28 per subnet Web: /25 per subnet
    C. Network Load Balancer: /28 per subnet Web: /27 per subnet
    D. Network Load Balancer: /28 per subnet Web: /26 per subnet

  • Question 299:

    To connect to public AWS products such as Amazon EC2 and Amazon S3 through the AWS Direct Link, which step is NOT required?

    A. Provide public IP address (/31) for each Border Gateway Protocol (BGP) session.
    B. Allocate a Private IP address to your network in 172.x.x.x range.
    C. Provide the public routes that you will advertise over Border Gateway Protocol (BGP).
    D. Provide a public Autonomous System Number (ASN) that you own or a private one to identify your network on the Internet.

  • Question 300:

    A company's website is hosted on an Amazon EC2 instance. The website delivers dynamic content through Amazon CloudFront to users. After instance maintenance, users receive HTTP 502 (Bad Gateway) errors while attempting to access the website.

    What is the MOST likely cause of this issue?

    A. The security group configuration on the origin is blocking traffic from CloudFront.
    B. The origin does not support the ciphers or protocols in the SSL/TLS exchange with CloudFront.
    C. There are resource constraints, and CloudFront cannot route requests to an available edge location.
    D. The origin does not have enough capacity to support the request rate.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Amazon exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your ANS-C00 exam preparations and Amazon certification application, do not hesitate to visit our Vcedump.com to find your solutions here.