CPC Prep Virtual Private Cloud

Question 1

Which AWS service provides customers complete control over the virtual networking environment including selection of IP ranges, creation of subnets, and configurations of route tables and gateways?

Answer 1

Virtual Private Cloud

Question 2

Which service must you specify a range of IPv4 addresses in the form of a Classless Inter-Domain Routing (CIDR) block?

Answer 2

Virtual Private Cloud

Question 3

Which part of the AWS Global Infrastructure does the Virtual Private Cloud operate in?

Answer 3

Region

Question 4

How many VPCs can you create per region by default?

Answer 4

Up to 5

Question 5

What are the default creation Virtual Private Cloud AWS Global Infrastructure layout?

Answer 5

A VPC is created in each region and a subnet in each Availability Zone

Question 6

What are the two methods of connecting to your VPC?

Answer 6

1. AWS Managed VPN

2. AWS Direct Connect

Question 7

What is alternate method to using the Internet to connect customer’s data center to the Virtual Private Cloud?

Answer 7

AWS Direct Connect

Question 8

What are some of the benefits of AWS Direct Connect?

Answer 8

Predictable performance
Predictable bandwidth
Decreased latency

Question 9

What is used for connecting multiple sites to AWS?

Answer 9

VPN CloudHub

Question 10

Which AWS service enables customers to connect their Amazon VPC and their on-premises networks to a single gateway?

Answer 10

AWS Transit Gateway

Question 11

Which AWS service enables customers to only manage a single connection from the central gateway in to each Amazon VPC, on-premises data center, or remote office across the network?

Answer 11

AWS Transit Gateway

Question 12

Which AWS service acts as a hub that controls how traffic is routed among all the connected networks which act like spokes?

Answer 12

AWS Transit Gateway

Question 13

What is a segment of a VPCs IP address range where you can place groups of isolated resources?

Answer 13

Subnet

Question 14

What is the Amazon side of a connection to the public internet for IPv4/IPv6?

Answer 14

Internet Gateway

Question 15

What is used to interconnect subnets and direct traffic between internet gateways, virtual private gateways, NAT gateways, and subnets?

Answer 15

Router

Question 16

What is used as a direct connect between two VPCs?

Answer 16

Peering Connection

Question 17

What is a private connection to public AWS services?

Answer 17

VPC endpoints

Question 18

What enables internet access for EC2 instance in private subnets that are managed by the customer where they need to assign security groups?

Answer 18

NAT Instance

Question 19

What enables Internet access to EC2 instances in private subnets and is managed by AWS and does not have security groups?

Answer 19

NAT Gateway

Question 20

What is the customer side of a VPN connection

Answer 20

Customer Gateway

Question 21

What operates as an instance level firewall, supports allow rules, is stateful, evaluates all rules, and applies only if associated with a group?

Answer 21

Security Group

Question 22

What operates as a subnet level firewall, supports allow and deny rules, is stateless, processes rules in order, and is automatically applied to all instances in the subnet its associated with?

Answer 22

Network Access Control List (NACL)

Question 23

Which IP address type is lost when an instance is stopped, used in public subnets at no charge, and cannot be moved between instances?

Answer 23

Public IP address

Question 24

Which IP address is retained when the instance is stopped and is used in public and private subnets?

Answer 24

Private IP Address

Question 25

Which IP address is a static public IP address, is associated with a private IP address on the instance, and can be moved between instances and Elastic Network Adaptors?

Answer 25

Elastic IP Addresses

Question 26

What service connects VPCs and on-premises networks through a central hub?

Answer 26

AWS Transit Gateway

Question 27

Which service acts as a cloud router, ends complex peering relationships, automatically encrypts data, and data never travels over the public internet?

Answer 27

AWS Transit Gateway