Want to pass your AWS Certified Advanced Networking - Specialty (ANS-C00) ANS-C00 exam in the very first attempt? Try Pass2lead! It is equally effective for both starters and IT professionals.
VCE
An organization has multiple applications running in VPCs across multiple AWS accounts. The network engineer has deployed a central VPC with a pair of software VPN instances that run IPSec tunnels with dynamic routing to VGWs of all application VPCs. This central VPC is connected to on-premises resources via a Direct Connect connection using a private VIF.
What additional configuration is required to enable the applications in VPCs to communicate with each other and access on-premises resources?
A. Configure each application VPC with a static route entry pointing the on-premises CIDR block to the software VPN instances.
B. Configure the central VPC with a static route entry pointing the on-premises CIDR block to local VGWs.
C. Advertise all application VPC CIDR blocks to on-premises resources via the VGW in the central VPC.
D. Configure IPSec tunnels from the on-premises router into the software VPN instances with dynamic routing.
Over which of the following Ethernet standards does AWS Direct Connect link your internal network to an AWS Direct Connect location?
A. Copper backplane cable
B. Twisted pair cable
C. Single mode fiber-optic cable
D. Shielded balanced copper cable
You have a hybrid environment in which your VPC queries your on-premises DNS server for up resources in your environment. The EC2 instances in your VPC are unable to resolve on-premises resources.
What are two possible reasons for this problem? (Choose two.)
A. Your NACL is blocking UDP port 53 outbound
B. Your security group is blocking port 53 inbound
C. Your NACL is blocking TCP port 53 outbound.
D. Your on-premises firewall is blocking port 443