Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

AWS Cloud Practitioner > VPC & Networking Quiz > Flashcards

VPC & Networking Quiz Flashcards

1
Q

Your private subnets need to connect to the Internet while still remaining private. Which AWS-managed VPC component allows you to do this?

1 - NAT Instances
2 - Internet Gateway
3 - Security Groups
4 - NAT Gateways

A

NAT Gateways

NAT Gateways allow your instances in your private subnets to access the Internet while remaining private, and are managed by AWS.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

A public subnet is accessible from the Internet while a private subnet is not accessible from the Internet.

1 - Yes
2 - No, all subnets are accessible from the internet
3 - No, all subnets are NOT accessible from the internet

A

Yes

A public subnet is accessible from the Internet while a private subnet is not accessible from the Internet.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Which type of firewall has both ALLOW and DENY rules and operates at the subnet level?

1 - Network Access Control List (NACL)
2 - Web Application Firewall (WAF)
3 - Security Groups
4 - Guard Duty

A

Network Access Control List (NACL)

A network access control list (NACL) is an optional layer of security for your VPC that acts as a firewall for controlling traffic in and out of one or more subnets. They have both ALLOW and DENY rules.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

You would like to connect hundreds of VPCs and your on-premises data centers together. Which AWS service allows you to do link all these together efficiently?

1 - Transit Gateway
2 - Site - to -Site VPN
3 - Internet Gateway
4 - Direct Connect

A

Transit Gateway

Transit Gateway connects thousands of VPC and on-premises networks together in a single gateway.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

A company needs two VPCs to communicate with each other. What can they use?

1 - VPC Endpoints
2 - AWS Direct Connect
3 - Internet Gateway
4 - VPC Peering

A

VPC Peering

VPC Peering connection is a networking connection between two VPCs using AWS’ network.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

You need a logically isolated section of AWS, where you can launch AWS resources in a private network that you define. What should you use?

1 - Subnets
2 - Availability Zones
3 - A VPC
4 - NAT Instances

A

VPC

A virtual private cloud (VPC) is a virtual network dedicated to your AWS account. It is logically isolated from other virtual networks in the AWS Cloud. You can launch your AWS resources, such as Amazon EC2 instances, into your VPC.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

A company needs to have a private, secure and fast connection between its on-premises data centers and the AWS Cloud. Which connection should they use?

1 - AWS Connect
2 - Site-to-site VPN
3 - VPC Peering
4 - AWS Direct Connect

A

AWS Direct Connect

AWS Direct Connect is a cloud service solution that makes it easy to establish a dedicated private network connection from your premises to AWS.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Your VPC needs to connect with the Internet. Which VPC component can help?

1 - NAT Gateways
2 - NAT Instances
3 - Network ACL
4 - Internet Gateway

A

Internet Gateway

An internet gateway is a horizontally scaled, redundant, and highly available VPC component that allows communication between your VPC and the internet.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What is the scope of an Amazon VPC?

  1. A data center
  2. A region
  3. An availability zone
  4. A subnet
A

A Region

An Amazon VPC is created within a region. You can created multiple VPCs within a region and there is a default VPC created in every AWS region by default

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Which type of firewall operates at the instance level?

  1. A security group
  2. A network access control list (NACL)
  3. A route table
  4. A NAT Gateway
A

Security groups are considered to be instance-level firewalls

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

How can an organization create a private hybrid cloud connection between their on-premises data center and the AWS Cloud?

  1. AWS managed VPN
  2. VPN CloudHub
  3. Software VPN
  4. AWS Direct Connect
A

AWS Direct Connect is a private network connection to the AWS Cloud. It provides high bandwidth and low latency with reliable performance

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Which type of public IP address is retained when the instance is stopped?

  1. Public IP address
  2. Private IP address
  3. Elastic IP address
  4. Local IP address
A

3.Elastic IP address

With Elastic IP addresses, the address is retained when the instance is stopped. Remember that you do pay for unused Elastic IP addresses

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Which AWS-managed network service can be used to enable Internet connectivity for EC2 instances in private subnets?

  1. NAT Instance
  2. NAT Gateway
  3. Internet Gateway]
  4. Network ACL
A

2.NAT Gateway

A NAT Gateway is an AWS managed service that can be used for enabling instance in private subnets to access the Internet

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

A company needs a network connection to the AWS cloud with predictable performance. What should they use?

  1. AWS managed VPN
  2. VPN CloudHub
  3. VPC Peering
  4. AWS Direct Connect
A

AWS Direct Connect is a private network connection and offers predictable performance

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

AWS Cloud Practitioner (34 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions