AWS_Chapter 10
What are two differences between a virtual private network (VPN) connection and a Direct Connect connection? (Select TWO.)
. A Direct Connect connection offers predictable latency because it doesn't traverse the internet.. A VPN connection uses the internet for transport
Which of the following is true of a new security group?
. It contains an outbound rule allowing access to any IP address.
Approximately how many different CloudFront edge locations are there?
. More than 150
You want to provide private name resolution for two VPCs using the domain name company.pri. How many private hosted zones do you need to create?
1
Which of the following is a valid CIDR for a VPC or subnet?
10.0.0.0/28
On how many continents are CloudFront edge locations distributed?
6
Resources in a VPC need to be able to resolve internal IP addresses for other resources in the VPC. No one outside of the VPC should be able to resolve these addresses. Which of the following Route 53 resources can help you achieve this?
A private hosted zone
What's the difference between a security group and a network access control list (NACL)? (Select TWO.)
A security group operates at the instance level.A network access control list operates at the subnet level.
Which of the following are true regarding subnets? (Select TWO.)
A subnet must have a CIDR that's a subset of the CIDR of the VPC in which it resides, A subnet spans one Availability Zone.
Which of the following are true of a default VPC? (Select TWO.)
AWS creates a default VPC in each region, By default, each default VPC is available to one AWS account.
Which of the following are valid origins for a CloudFront distribution? (Select TWO.)
EC2 instance, A public S3 bucket
Which of the following types of Route 53 health checks works by making a test connection to a TCP port?
Endpoint
Which of the following is true of a VPC peering connection?
It's a private connection between two VPCs.
Which of the following Route 53 routing policies can return set of randomly ordered values?
Multivalue Answer
From where does CloudFront retrieve content to store for caching?
Origin
Which CloudFront distribution type requires you to provide a media player?
RTMP
Which of the following Route 53 routing policies doesn't use health checks?
Simple
You need to deliver content to users in the United States and Canada. Which of the following edge location options will be the most cost effective for your CloudFront distribution?
United States, Canada, and Europe
You have two EC2 instances hosting a web application. You want to distribute 20 percent of traffic to one instance and 80 percent to the other. Which of the following Route 53 routing policies should you use?
Weighted
Which of the following are true about registering a domain name with Route 53? (Select TWO.)
You can register a domain name for a term of up to 10 years.Route 53 creates a public hosted zone for the domain.