AWS Practice Test 1

Question 1

Your company has asked you to investigate the use of KMS for storing and managing keys in AWS. From the options listed below, what key management features are available in KMS?

Answer 1

Import your own keys, disable and re-enable keys and define key management roles in IAM.

Question 2

You are a consultant planning to deploy DynamoDB across three AZs. Your lead DBA is concerned about data consistency. Which of the following do you advise the lead DBA to do?

Answer 2

To ask the development team to code for strongly a consistent reads. As the consultant, you will advise the VTO of the increased cost.

Question 3

Which of the following AWS services allow native encryption of data, while at rest? [Select 3]

Answer 3

Elastic File System (EFS)
Elastic Block Store (EBS)
S3

Question 4

Choose the features of Consolidated Billing. [Select 3]

Answer 4

Multiple standalone account are combined and may reduce your overall bill.
Account changes can be tracked individually.
A single bill is issued containing the changes for all AWS Accounts.

Question 5

Your company has decided to set up a new AWS account for test and dev purposes. They already use AWS for production, but would like a new account dedicated for test and dev so as to not accidentally break the production environment. You launch an exact replica of your production environment using a CloudFormation template that your company uses in production. However, CloudFormation fails. You use the exact same CloudFormation template in production, so the failure is something to do with your new AWS account. The CloudFormation template is trying to launch 60 new EC2 instances in a single availability zone. After some research, you discover that the problem is ________.

Answer 5

For all new AWS accounts, there is a soft limit of 20 EC2 instances per region. You should submit the limit increase form and retry the template after your limit has been increased.

Question 6

What is the maximum response time for a Business Level ‘production down’ Support Case?

Answer 6

1 hour

Question 7

Which of the following database technologies are supported by RDS. [Select 3]

Answer 7

MariaDB
Oracle
Aurora

Question 8

You are a solutions architect working for a biotech company who is pioneering research in immunotherapy. They have developed a new cancer treatment that may be able to cure up to 94% of cancers. They store their research data on S3. However, an intern recently deleted some critical files accidentally. You’ve been asked to prevent this from happening in the future. Which of the following solutions can be used to prevent accidental data loss?

Answer 8

Enable S3 versioning on the bucket & enable MFA Delete on the bucket.

Question 9

When it comes to Security Groups within a custom VPC, which of the following statements are correct? [Select 2]

Answer 9

Security Groups are stateful.

Updates to security groups are applied immediately.

Question 10

You are a developer at a fast-growing startup. Until now, you have used the root account to log in to the AWS console. However, as you have taken on more staff, you will need to stop sharing the root account to prevent accidental damage to your AWS infrastructure. What should you do so that everyone can access the AWS resources they need to do their jobs? [Select 2]

Answer 10

1. Create individual user accounts with minimum necessary rights and tell the staff to log in to the console using the credentials.
2. Create a customized sign-in link such as “yourcompany.signin.aws.amazon.com/console” for your new users to use to sign in with.

Question 11

You have developed a new web application in us-west-2 that requires six Amazon Elastic Compute Cloud (EC2) instances running at all times. You have three availability zones available in that region (us-west-2a, us-west-2b, and us-west-2c). You need 100 percent fault tolerance if any single Availability Zone in us-west-2 becomes unavailable. Which of the following answers offers two correct solutions to this scenario?

Answer 11

Solution 1: US-West-2a with 6 EC2 instances, US-West-2b with 6 instances and US-West-2c with no EC2 instances.

Solution 2: US-West-2a with 3 instances, US-West-2b with 3 instances and US-West-2c with 3 instances.

Why?
You need to work through each case to find which will provide you with the required number of running instances even if one AZ is lost. Hint: always assume that the AZ you lose is the one with the most instances. Remember that the client has stipulated that they must have 100% fault tolerance.

Question 12

​Your company has a policy of encrypting all data at rest. You host your production environment on EC2 in a bespoke VPC. Attached to your EC2 instances are multiple EBS volumes, and you must ensure this data is encrypted. Which of the following options will allow you to do this? [Select 3]

Answer 12

1. Use 3rd party volume encryption tools.
2. Encrypt your data inside your application, before storing it on EBS.
3. Install SSL certs on the services so as to encrypt your data.

Question 13

Which of the following data formats does Amazon Athena support? [Select 3]

Answer 13

JSON
Apache ORC
XML

Question 14

You have been engaged as a consultant by a company that generates utility bills and publishes them online. PDF images are generated, then stored on a high-performance RDS instance. Customarily, invoices are viewed by customers once per month. Recently, the number of customers has increased threefold, and the wait-time necessary to view invoices has increased unacceptably. The CTO is unwilling to alter the codebase more than necessary this quarter, but needs to return performance to an acceptable level before the end-of-the-month print run. Which of the following solutions would you feel comfortable proposing to the CTO and GM? [Select 2]

Answer 14

1. Create RDS Read-Replicas and additional Web/App instances across all the available AZs.
2. Evaluate the risks and benefits associated with an RDS instance upgrade.

Question 15

Which of the following are not valid CloudFormation template sections?

Answer 15

Options

Question 16

Which of the following DynamoDB features are chargeable, when using a single region? [Select 2]

Answer 16

1. Storage of Data

2. Read and Write Capacity

Question 17

Which of the following are valid Route 53 routing policies? [Select 3]

Answer 17

Simple
Latency
Weighted

Question 18

You work for a large software company in Seattle. They have their production environment provisioned on AWS inside a custom VPC. The VPC contains both a public and private subnet. The company tests their applications on custom EC2 instances inside a private subnet. There are approximately 500 instances, and they communicate to the outside world via a proxy server. At 3am every night, the EC2 instances pull down OS updates, which are usually 150MB or so. They then apply these updates and reboot: if the software has not downloaded within half an hour, then the update will attempt to download the following day. You notice that a number of EC2 instances are continually failing to download the updates in the allotted time. Which of the following answers might explain this failure? [Select 2]

Answer 18

1. The proxy server is in a private subnet and uses a NAT instance to connect to the internet. However, this instance is too small to handle the required network traffic. You should re-provision the NAT solution so that it’s able to handle the throughput.
2. The proxy server is on an inadequately sized EC2 instance and does not have sufficient network throughput to handle all updates simultaneously. You should increase the instance size or type of EC2 instance for the proxy server.

Question 19

Your company likes the idea of storing files on AWS. However, low-latency service of the majority of files is important to customer service. Which Storage Gateway configuration would you use to achieve both of these ends? [Select 2]

Answer 19

1. File Gateways

2. Gateway-Stored

Question 20

When using EC2 instances with Dedicated Hosting, which of the following modes are you able to transition between by stopping the instance and starting it again?

Answer 20

Dedicated and Host

Question 21

How is the Public IP address managed in an instance session via the instance GUI/RDP or Terminal/SSH session?

Answer 21

The Public IP address is not managed on the instance: It is, instead, an alias applied as a network address translation of the Private IP address.

Question 22

What is the underlying Hypervisor for EC2 ? [Select 2]

Answer 22

Xen

Nitro

Question 23

Which of the below are storage services in AWS? [Select 2]

Answer 23

EFS

S3

Question 24

You are a solutions architect at a large digital media company. The company has decided that they want to operate within the Japanese region, and they need a bucket called “testbucket” set up immediately for testing purposes. You log in to the AWS console and try to create this bucket in the Japanese region. However, you are told that the bucket name is already taken. What should you do to resolve this?

Answer 24

Bucket names are global, not regional. You know the rest.

Question 25

You have created a Direct Connect Link from your on premise data center to your Amazon VPC. The link is now active and routes are being advertised from the on-premise data center. You can connect to EC2 instances from your data center; however, you cannot connect to your on premise servers from your EC2 instances. Which of the following solutions would remedy this issue? [Select 2]

Answer 25

1. Edit the VPC subnet route table, adding a route back to the on-premise data center.
2. Enable route propagation on your Virtual Private Gateway.

Question 26

You are working in the media industry, and you have created a web application where users will be able to upload photos they create to your website. This web application must be able to call the S3 API in order to be able to function. Where should you store your API credentials whilst maintaining the maximum level of security.

Answer 26

Don’t save your API credentials. Instead, create a role in IAM and assign this tole to an EC2 instance when you first create it.

Question 27

Which of the following strategies does AWS use to deliver the promised levels of DynamoDB performance? [Select 2]

Answer 27

Data is stored on Solid State Disks

The DB is partitioned across a number of nodes.

Question 28

A user of your web-site makes an HTTP request to access a static resource on your server. The request is automatically redirected to the nearest CloudFront server. For some reason, the requested resource does not exist on the CloudFront server. Which of the following is true?

Answer 28

CloudFront will query the origin server and then cache the resource on the edge location.

Question 29

With SAML-enabled single sign-on, ________. [Select 2]

Answer 29

1. After the client browser posts the SAML assertion, AWS sends the sign-in URL as a redirect, and the client browser is redirected to the Console.
2. The portal first verifies the user’s identity in your organization, then generates a SAML authentication response.

Question 30

Which of the following options allows users to have secure access to private files located in S3? [Select 3]

Answer 30

CloudFront Signed URLs
CloudFront Signed Cookies
CloudFront Origin Access Identity

Question 31

Which of the below are factors that have helped make public cloud so powerful? [Select 2]

Answer 31

Not having to deal with collateral damage of failed experiments.
The ability to try out new ideas and experiments without an upfront commitment.

Question 32

By definition, a public subnet within a VPC is one that ________.

Answer 32

Has at least one route in it’s routing table that uses an Internet Gateway (IGW).

Question 33

A single m4.medium NAT instance inside a VPC supports a company of 100 people. This NAT instance allows individual EC2 instances in private subnets to communicate out to the internet without being directly accessible via the internet. As the company has grown over the last year, they are finding that the additional traffic through the NAT instance is causing serious performance degradation. What might you do to solve this problem?

Answer 33

Increase the class size of the NAT instance from an m4.medium to and an m4.xLarge.

Question 34

Which of the following RDS database engines have a limit to the number of databases that can run per instance? [Select 2]

Answer 34

Oracle

SQL Server

Question 35

What is the maximum VisibilityTimeout of an SQS message in a FIFO queue?

Answer 35

12 hours

Question 36

Which of the following provide the lowest cost EBS options? [Select 2]

Answer 36

Cold (sc1)
Throughput Optimized (st1)

Question 37

You are running a media-rich website with a global audience from us-east-1 for a customer in the publishing industry. The website updates every 20 minutes. The web-tier of the site sits on three EC2 instances inside an Auto Scaling Group. The Auto Scaling group is configured to scale when CPU utilization of the instances is greater than 70%. The Auto Scaling group sits behind an Elastic Load Balancer, and your static content lives in S3 and is distributed globally by CloudFront. Your RDS database is already the largest instance size available. CloudWatch metrics show that your RDS instance usually has around 2GB of memory free, and an average CPU utilization of 75%. Currently, it is taking your users in Japan and Australia approximately 3 - 5 seconds to load your website, and you have been asked to help reduce these load-times. How might you improve your page load times? [Select 3]

Answer 37

Setup CloudFront with dynamic content support to enable the caching of reusable content from the media rich website.

Set up a clone of your production environment in the Asia Pacific region and configure latency based routing on Route 53.

Use ElasticCache to cache the most commonly accessed DB queries.

Question 38

Your server logs are full of what appear to be application-layer attacks, so you deploy AWS Web Application Firewall. Which of the following conditions may you set when configuring AWS WAF? [Select 3]

Answer 38

String Match Conditions
Size Constraint Conditions
IP Match Conditions

Question 39

You are leading a design team to implement an urgently needed collection and analysis project. You will be collecting data for an array of 50,000 anonymous data collectors which will be summarized each day and then rarely used again. The data will be pulled from collectors approximately once an hour. The Dev responsible for the DynamoDB design is concerned about how to design the Partition and Local keys to ensure efficient use of the DynamoDB tables. What advice would you provide. [Select 2]

Answer 39

1. Insert a calculated hash in front of the Date/Time value in the partition key to force DynamoDB to use partitions in parallel.
2. Create a new table each dat, and reconfigure the old table for infrequent use after the summation is complete.

Question 40

The Customer Experience manager comes to see you about some odd behaviors with the ticketing system: messages presented to the support team are not arriving in the order in which they were generated. You know that this is due to the way that the underlying SQS standard queue service is being used to manage messages. Which of the following are correct explanations? [Select 2]

Answer 40

1. If an agent abandons a message or take s break before finishing with a message, it will be offered in the queue again. In order to ensure that no message is lost, a message with persist in the SQS queue until it is processed successfully.
2. SQS uses multiple hosts, and each host only holds a portion of all the messages, When a staff member calls for their next message, the consumer process does not see all the hosts or all the messages. As such, messages are not necessarily delivered in the order in which they were generated.

Question 41

You are a solutions architect working for a large anti-virus company and your job is to secure your company’s production AWS environment. A new policy dictates that a particular public-facing subnet needs to allow RDP on port 3389 at the network ACL layer. You create an inbound rule allowing traffic to port 3389 on the ACL level. However, users complain that they still cannot connect. Which of the following answers may represent the root cause of the connectivity issues? [Select 2]

Answer 41

Network Access Control lists are stateless.

You need to create an outbound rule allowing RDP response traffic to go back again.

Question 42

In AWS Route 53, which of the following are true? [Select 2]

Answer 42

Route 53 allows you to create an Alias record at the top node of a DNS namespace (zone apex).

Alias Records provide a Route 53-specific extension to DNS functionality.

Question 43

You’re building out a single-region application in us-west-2. However, disaster recovery is a strong consideration, and you need to build the application so that if us-west-2 becomes unavailable, you can fail-over to us-west-1. Your application relies exclusively on pre-built AMI’s. In order to share those AMI’s with the region you’re using as a backup, which process would you follow?

Answer 43

Copy the AMI from US-west-2, manually apply launch permissions, user-defined tags, and Amazon S3 bucket permissions of the default AMI to the new instance, and launch the instance.

Question 44

Which of the below are database services from AWS? [Select 2]

Answer 44

RDS

DynamoDB

Question 45

You are a solutions architect working for a construction company. Your company is migrating their production estate to AWS, and you are in the process of setting up access to the AWS console using Identity Access Management (IAM). You have created 15 users for your system administrators. What further steps do you need to take to enable your system administrators to get access to the AWS console in a secure fashion? [Select 2]

Answer 45

Generate a password for each use and give these passwords to your system admin.

Have each use set up MFA once they have logged into the console.

Question 46

You work for a popular media outlet about to release a story that is expected to go viral. During load testing on the website, you discover that there is read contention on the database tier of your application. Your RDS instance consists of a MySQL database on an extra large instance. Which of the following approaches would be best to further scale this instance to meet the anticipated increase in traffic your viral story will generate? [Select 3]

Answer 46

Use ElasticCache to cache the frequently read, static data.

Add an RDS Read Replica for increases read performance.

Provision a larger instance side with provisioned IOPS.

Question 47

A client is concerned that someone other than approved administrators is trying to gain access to the Linux web app instances in their VPC. She asks what sort of network access logging can be added. Which of the following might you recommend? [Select 3]

Answer 47

Set up a Flow Log for the group of instances and forward them to CloudWatch.

Make use of an OS level logging tools such as iptables and log events to CloudWatch or S3.

Set up a Flow Log for the group of instances and forward them to S3.

Question 48

Which of the following features only relate to Spread Placement Groups?

Answer 48

The placement group can only have 7 running instances per AZ.

Question 49

You have been asked by your employer to create an identical copy of your production environment in another Region for disaster recovery purposes. In the list below, which AWS resources would you NOT need to recreate, because they are available universally across the console? [Select 2]

Answer 49

Identity Access Management Roles

Route 53

Question 50

Your company has hired a young and enthusiastic accountant. After reviewing the AWS documentation and usage graphs, he announces that you are wasting vast amounts of money running your Windows servers for a full hour instead of spinning them up only when they are needed and down again as soon as they are idle for 1 minute. He cites the AWS claim that you only pay for what you use, and that as a senior engineer, you should be more conscious of wasting company money. How do you respond?

Answer 50

You thank him for his concern, and advise him that he has misinterpreted the pricing document. Windows instances are billed by the full hours, and partial hours are billed as such.

Question 51

You run a meme creation website that stores the original images in S3 and each meme’s metadata in DynamoDB. You need to decide upon a low-cost storage option for the memes, themselves. If a meme object is unavailable or lost, a Lambda function will automatically recreate it but at a $10 licensing cost per creation. Which storage solution should you use to store the memes in the most cost-effective way?

Answer 51

S3 - IA

Question 52

You successfully configure VPC Peering between VPC-A and VPC-B. You then establish an IGW and a Direct-Connect connection in VPC-B. Can instances in VPC-A connect to your corporate office via the Direct-Connect service, and connect to the Internet via the IGW?

Answer 52

VPC peering does not support edge to edge routing.

Question 53

AWS provides a number of security-related managed services. From the options below, select which AWS service is related to protecting your infrastructure from which security issue. [Select 4]

Answer 53

AWS WAF blocks IP addresses based on rules.

AWS Shield protects from Distributed Denial-of-Service attacks.

Amazon Macie uses Machine Learning to protect sensitive data.

AWS WAF protects from cross-site scripting attacks.

Question 54

You have three AWS accounts (A, B & C) that share data. In an attempt to maximize performance between the accounts, you deploy the instances owned by these three accounts in ‘eu-west-1b’. During testing, you find inconsistent results in transfer latency between the instances. Transfer between accounts A and B is excellent, but transfers between accounts B and C, and C and A, are slower. What could be the problem?

Answer 54

The name of the AZs are randomly applies, so “eu-west-1b” is not necessarily at the same physical location for all three accounts.

Question 55

Your company provides an online image recognition service and uses SQS to decouple system components. Your EC2 instances poll the image queue as often as possible to keep end-to-end throughput as high as possible, but you realize that all this polling is resulting in both a large number of CPU cycles and skyrocketing costs. How can you reduce cost without compromising service?

Answer 55

Enable long polling by setting the ReceiveMessageWaitTimeSeconds to a number > 0.

Question 56

You are a solutions architect with a manufacturing company running several legacy applications. One of these applications needs to communicate with services that are currently hosted on-premise. The people who wrote this application have left the company, and there is no documentation describing how the application works. You need to ensure that this application can be hosted in a bespoke VPC, but remains able to communicate to the back-end services hosted on-premise. Which of the following answers will allow the application to communicate back to the on premise equipment without the need to reprogram the application? [Select 3]

Answer 56

You should ensure the VPC has internet gateway attached to it. That way, you can establish a site-to-site VPN with the on-premise environment.

You should configure an AWS Direct Connect link between the VPC and the site with the on-premise solution.

You should configure the VPC subnet in which the application sits so that it does not have an IP address range that conflicts with that of the on-premise VLAN in which the back end services sit.

Question 57

You have an enterprise solution that operates Active-Active with facilities in Regions US-West and India. Due to growth in the Asian market you have been directed by the CTO to ensure that only traffic in Asia (between Turkey and Japan) is directed to the India Region. Which of these will deliver that result? [Select 2]

Answer 57

Route53 - Geolocation routing policy.

Route53 - Geoproximity routing policy.

Question 58

In addition to choosing the correct EBS volume type for your specific task, what else can be done to increase the performance of your volume? [Select 3]

Answer 58

Stripe volume together in a RAID 0 config.

Schedule snapshots of you HDD based volumes for periods of low use.

Ensure that your EC2 instances are types that can be optimized for use with EBS.

Question 59

When editing permissions (policies and ACLs), to whom does the concept of the “Owner” refer?

Answer 59

The “Owner” refers to the identity and email address used to create the AWS account.

Question 60

You work for a toy company that has a busy online store. As you are approaching Christmas, you find that your store is getting more and more traffic. You ensure that the web tier of your store is behind an Auto Scaling group. However, you notice that the web tier is frequently scaling, sometimes multiple times in an hour, only to scale back after peak usage. You need to keep Auto Scaling from scaling up and down so rapidly. Which of the following options would help you to achieve this?

Answer 60

Modify the Auto Scaling group cool-down timers and modify the Amazon CloudWatch alarm period that triggers your Auto Scaling scale down policy.

Question 61

Which of the following are valid S3 data encryption options? [Select 4]

Answer 61

1. SSE-KMS
2. A client library such as Amazon S3 Encryption Client
3. SSE-C
4. Server-side Encryption (SSE)-S3

Question 62

You are consulting to a mid-sized company with a predominantly Mac & Linux desktop environment. In passing they comment that they have over 30TB of unstructured Word and spreadsheet documents of which 85% of these documents don’t get accessed again after about 35 days. They wish that they could find a quick and easy solution to have tiered storage to store these documents in a more cost-effective manner without impacting staff access. What options can you offer them? [Select 2]

Answer 62

1. Migrate documents to EFA storage and make use of life-cycle using Infrequent Access storage.
2. Migrate documents to File Gateway presented as NFS and make use of life-cycle using Infrequent Access storage.

Question 63

You work for a large media organization who has traditionally stored all their media on large SAN arrays. After evaluating AWS, they have decided to move their storage to the cloud. Staff will store their personal data on S3, and will have to use their Active Directory credentials in order to authenticate. These items will be stored in a single S3 bucket, and each staff member will have their own folder within that bucket named after their employee ID. Which of the following steps should you take in order to help set this up? [Select 3]

Answer 63

1. Use AWS security token service to create temporary tokens.
2. Create wither a federation proxy or identity power.
3. Create and IAM role.

Question 64

Which of the following Amazon S3 Storage Classes offer 99.999999999% (11 x 9s) durability?

Answer 64

Standard
Standard-Infrequent Access
One Zone-Infrequent Access

Question 65

Which of the below are compute service from AWS? [Select 2]

Answer 65

Lamda and EC2

Question 66

You work for a games development company that are re-architecting their production environment. They have decided to make all web servers stateless. Which of the following the AWS services will help them achieve this goal? [Select 3]

Answer 66

RDS
DynamoDB
ElastiCache

Question 67

You are a systems administrator and you need to monitor the health of your production environment. You decide to do this using CloudWatch. However, you notice that you cannot see the health of every important metric in the default dashboard. When monitoring the health of your EC2 instances, for which of the following metrics do you need to design a custom CloudWatch metric?

Answer 67

Memory Usage

Question 68

You are a solutions architect working for a busy media company with offices in Japan and the United States. Your production environment is hosted both in US-EAST-1 and AP-NORTHEAST-1. Your European users have been connecting to the production environment in Japan, and are seeing the site in Japanese rather than in English. You need to ensure that they view the English language version. Which of the routing policies could help you achieve this? [Select 2]

Answer 68

Geoproximity Routing

Geolocation

Question 69

Which of the following are a part of AWS’ Network and Content Delivery services? [Select 2]

Answer 69

VPC

Cloudfront

Question 70

At the monthly product meeting, one of the Product Owners proposes an idea to address an immediate shortcoming of the product system: storing a copy of the customer price schedule in the customer record in the database. You know that you can store large text or binary objects in DynamoDB. You give a tentative OK to do a Minimal Viable Product test, but stipulate that it must comply with the size limitation on the Attribute Name & Value. Which is the correct limitation?

Answer 70

The combined Value and Name combined must not exceed 400 KB.

Question 71

You have been monitoring a sensitive autoscaling group, and you expect it to scale-in as you enter a period of holiday downtime. The auto scaling group is distributed over three AZs ( AZ - A & -B have two instances each, and AZ -C has three instances). All instances have different CPU and Memory utilization, and all instances have been running for a different number of days. All instances come from different versions of a root AMI, and all instances have different numbers of sessions connected. Which instance will be the 1st to shut down?

Answer 71

The instance in AZ-C that has the oldest launch config will terminate first.

Question 72

You’ve been tasked with building a new application with a stateless web tier for a company that produces reusable rocket parts. Which three services could you use to achieve this?

Answer 72

RDS structured data, DynamoDB for unstructured data and ElastiCache.

Question 73

You work for a genomics company that is developing a cure for motor neuron disease by using advanced gene therapies. As a part of their research, they take extremely large data sets (usually in the terabytes) and analyze these data sets using Elastic Map Reduce. In order to keep costs low, they run the analysis for only a few hours in the early hours of the morning, using spot instances for the task nodes. The core nodes are on-demand instances. Lately however the EMR jobs have been failing. This is due to spot instances being unexpectedly terminated. Which of the following remedies would both keep costs manageable and mitigate the issues caused by terminated spot instances? [Select 2]

Answer 73

Change the task nodes to on-demand instances.

Increase the bid price for the task nodes so that you have a greater threshold before the task nodes are terminated.

Question 74

What are the four levels of AWS premium support?

Answer 74

Basic, Developer, Business and Enterprise

Question 75

You have provisioned a custom VPC with a subnet that has a CIDR block of 10.0.3.0/28 address range. Inside this subnet, you have 2 webservers, 2 application servers, 2 database servers, and a NAT. You have configured an Autoscaling group on the two web servers to automatically scale when the CPU utilization goes above 90%. Several days later you notice that autoscaling is no longer deploying new instances into the subnet, despite the CPU utilization of all web servers being at 100%. Which of the following answers may offer an explanation? [Select 2]

Answer 75

AWS reverses both the first four and the last IP address in each subnet’s CIDR block.

Your autoscaling group (ASG) has provisioned too many EC2 instances and has exhausted the number of internal IP addresses available in the subnet.

Question 76

If you don’t use one of the AWS SDKs, you can perform DynamoDB operations over HTTP using the POST request method. The POST method requires you to specify the operation in the header of the request and provide the data for the operation in JSON format in the body of the request. Which of the following are valid DynamoDB Headers attributes? [Select 4]

Answer 76

host
content-type
x-amz-target
x-maz-date

Question 77

How does AWS deliver high durability for DynamoDB?

Answer 77

DynamoDB data is automatically replicated across multiple AZs.