Which of the following options meets the organization’s requirements?

Correct Answer for the Question – Which of the following options meets the organization’s requirements? is given below An organization is deploying an application in a VPC that requires SSL mutual authentication with a client-side certificate, as that is the primary method of identifying clients. The Network Engineer has been tasked with defining the mechanism used … Read more

What should be done to meet these requirements?

Correct Answer for the Question – What should be done to meet these requirements? is given below A company has a hybrid IT architecture with two AWS Direct Connect connections to provide high availability. The services hosted on-premises are accessible using public IPs, and are also on the 172.16.0.0/16 range. The AWS resources are on the … Read more

What additional configuration is required to enable the applications in VPCs to communicate with each other and access on-premises resources?

Correct Answer for the Question – What additional configuration is required to enable the applications in VPCs to communicate with each other and access on-premises resources? is given below An organization has multiple applications running in VPCs across multiple AWS accounts. The network engineer has deployed a central VPC with a pair of software VPN instances … Read more

How should the Engineer allocate subnets across three Availability Zones for each tier?

Correct Answer for the Question – How should the Engineer allocate subnets across three Availability Zones for each tier? is given below A company is deploying a new web application that uses a three-tier model with a public-facing Network Load Balancer and web servers in an Amazon VPC. The application servers are hosted in the company’s … Read more

Which architecture will support this deployment while allowing for future expansion?

Correct Answer for the Question – Which architecture will support this deployment while allowing for future expansion? is given below An architecture is being designed to support an Amazon WorkSpaces deployment of 1,000 desktops.Which architecture will support this deployment while allowing for future expansion? A VPC with a /16 CIDR and one /21 subnet A VPC … Read more

What is the MOST likely reason for there to be a REJECT record?

Correct Answer for the Question – What is the MOST likely reason for there to be a REJECT record? is given below A Network Engineer has enabled VPC Flow Logs to troubleshoot an ICMP reachability issue for an echo reply from an Amazon EC2 instance. The flow logs reveal an ACCEPT record for the request from … Read more

How can the engineer meet the requirements?

Correct Answer for the Question – How can the engineer meet the requirements? is given below A network engineer has configured a private hosted zone using Amazon Route 53. The engineer needs to configure health checks for record sets within the zone that are associated with instances.How can the engineer meet the requirements? Configure a Route … Read more

What steps must be taken to order the cross-connect at the Direct Connect location?

Correct Answer for the Question – What steps must be taken to order the cross-connect at the Direct Connect location? is given below A company uses a single connection to the internet when connecting its on-premises location to AWS. It has selected an AWS Partner Network (APN) Partner to provide a point-to-point circuit for its first-ever … Read more

What action should accomplish this?

Correct Answer for the Question – What action should accomplish this? is given below A Network Engineer needs to create a public virtual interface on the company’s AWS Direct Connect connection and only import routes which originated from the same region as the Direct Connect locationWhat action should accomplish this? Configure a prefix list on the … Read more

Which architecture will minimize public exposure of the back-end instances?

Correct Answer for the Question – Which architecture will minimize public exposure of the back-end instances? is given below A network architect is designing an internet website. It has web, application, and database tiers that will run in AWS. The website uses Amazon DynamoDB.Which architecture will minimize public exposure of the back-end instances? A VPC with … Read more