Aws Certified Solutions Architect Associate Flashcards
Amazon Glacier is designed for: (Choose 2 answers)A. active database storage.B. infrequently accessed data.C. data archives.D. frequently accessed data.E. cached session data.
B. infrequently accessed data.C. data archives.
Your web application front end consists of multiple EC2 instances behind an Elastic Load Balancer. Youconfigured ELB to perform health checks on these EC2 instances. If an instance fails to pass healthchecks, which statement will be true?A. The instance is replaced automatically by the ELB.B. The instance gets terminated automatically by the ELB.C. The ELB stops sending traffic to the instance that failed its health check.D. The instance gets quarantined by the ELB for root cause analysis.
C. The ELB stops sending traffic to the instance that failed its health check.
You are building a system to distribute confidential training videos to employees. Using CloudFront, whatmethod could be used to serve content that is stored in S3, but not publicly accessible from S3 directly?A. Create an Origin Access Identity (OAI) for CloudFront and grant access to the objects in your S3 bucket to that OAI.B. Add the CloudFront account security group "amazon-cf/amazon-cf-sg" to the appropriate S3 bucketpolicy.C. Create an Identity and Access Management (IAM) User for CloudFront and grant access to theobjects in your S3 bucket to that IAM User.D. Create a S3 bucket policy that lists the CloudFront distribution ID as the Principal and the targetbucket as the Amazon Resource Name (ARN).
A. Create an Origin Access Identity (OAI) for CloudFront and grant access to the objects in your S3 bucket to that OAI.
Which of the following will occur when an EC2 instance in a VPC with anassociated Elastic IP is stopped and started? (Choose 2 answers)A. The Elastic IP will be dissociated from the instanceB. All data on instance-store devices will be lostC. All data on EBS (Elastic Block Store) devices will be lostD. The ENI (Elastic Network Interface) is detachedE. The underlying host for the instance is changed
B. All data on instance-store devices will be lostE. The underlying host for the instance is changed
In the basic monitoring package for EC2, Amazon CloudWatch provides the following metrics:A. web server visible metrics such as number failed transaction requestsB. operating system visible metrics such as memory utilizationC. database visible metrics such as number of connectionsD. hypervisor visible metrics such as CPU utilization
D. hypervisor visible metrics such as CPU utilization, disk I/O, network I/O
Which is an operational process performed by AWS for data security?A. AES-256 encryption of data stored on any shared storage deviceB. Decommissioning of storage devices using industry-standard practicesC. Background virus scans of EBS volumes and EBS snapshotsD. Replication of data across multiple AWS RegionsE. Secure wiping of EBS data when an EBS volume is unmounted
B. Decommissioning of storage devices using industry-standard practices
You are developing a highly available web application using stateless web servers. Which services are suitable for storing session state data? Choose 3 answers A. Amazon CloudWatchB. Amazon Relational Database Service (RDS)C. Elastic Load BalancingD. Amazon ElastiCacheE. AWS Storage GatewayF. Amazon DynamoDB
B. Amazon Relational Database Service (RDS)D. Amazon ElastiCacheF. Amazon DynamoDB
You have a business-critical two-tier web app currently deployed in two AZs in a single region, using Elastic Load Balancing and Auto Scaling. The app depends on synchronous replication (very low latency connectivity) at the database layer. The application needs to remain fully available even if one application AZ goes off-line, and Auto Scaling cannot launch new instances in the remaining Availability Zones. How can the current architecture be enhanced to ensure this? A. Deploy in two regions using Weighted Round Robin (WRR), with Auto Scaling minimums set for 50 percent peak load per Region.B. Deploy in two regions using Weighted Round Robin (WRR), with Auto Scaling minimums set for 100 percent peak load per region.C. Deploy in three Availability Zones, with Auto Scaling minimum set to handle 50 percent peak load per zone.D. Deploy in three Availability Zones, with Auto Scaling minimum set to handle 33 percent peak load per zone.
C. Deploy in three Availability Zones, with Auto Scaling minimum set to handle 50 percent peak load per zone.
You are deploying an application on EC2 that must call AWS APIs. What method of securely passing credentials to the application should you use? A. Use AWS Identity and Access Management roles for EC2 instances.B. Pass API credentials to the instance using instance userdata.C. Embed the API credentials into your JAR files.D. Store API credentials as an object in Amazon Simple Storage Service.
A. Use AWS Identity and Access Management roles for EC2 instances.
Which route must be added to your routing table in order to allow connections to the Internet from your subnet? A. Destination: 0.0.0.0/0 --> Target: your Internet gatewayB. Destination: 192.168.1.257/0 --> Target: your Internet gatewayC. Destination: 0.0.0.0/33 --> Target: your virtual private gatewayD. Destination: 0.0.0.0/0 --> Target: 0.0.0.0/24E. Destination: 10.0.0.0/32 --> Target: your virtual private gateway
A. Destination: 0.0.0.0/0 --> Target: your Internet gateway
A customer's nightly EMR job processes a single 2-TB data file stored on Amazon Simple Storage Service (S3). The EMR job runs on two On-Demand core nodes and three On-Demand task nodes. Which of the following may help reduce the EMR job completion time?Choose 2 answers A. Use three Spot Instances rather than three On-Demand instances for the task nodes.B. Change the input split size in the MapReduce job configuration.C. Use a bootstrap action to present the S3 bucket as a local filesystem.D. Launch the core nodes and task nodes within an Amazon Virtual Cloud.E. Adjust the number of simultaneous mapper tasks.F. Enable termination protection for the job flow.
B. Change the input split size in the MapReduce job configuration.E. Adjust the number of simultaneous mapper tasks.
Which of the following is a durable key-value store? A. Amazon Simple Storage ServiceB. Amazon Simple Workflow ServiceC. Amazon Simple Queue ServiceD. Amazon Simple Notification Service
A. Amazon Simple Storage Service
After creating a new AWS account, you use the API to request 40 on-demand EC2 instances in a single AZ. After 20 successful requests, subsequent requests failed. What could be a reason for this issue, and how would you resolve it? A. You encountered a soft limit of 20 instances per region. Submit the limit increase form and retry the failed requests once approved.B. AWS allows you to provision no more than 20 instances per Availability Zone. Select a different Availability Zone and retry the failed request.C. You need to use Amazon Virtual Private Cloud (VPC) in order to provision more than 20 instances in a single Availability Zone. Simply terminate the resources already provisioned and re-launch them all in a VPC.D. You encountered an API throttling situation and should try the failed requests using an exponential decay retry algorithm.
A. You encountered a soft limit of 20 instances per region. Submit the limit increase form and retry the failed requests once approved.
Amazon Glacier is designed for: Choose 2 answers A. Frequently accessed dataB. Active database storageC. Data archivesD. Infrequently accessed dataE. Cached session data
C. Data archivesD. Infrequently accessed data
You have an application running in us-west-2 that requires six EC2 instances running at all times. With three AZs available in that region (us-west-2a, us-west-2b, and us-west-2c), which of the following deployments provides 100 percent fault tolerance if any single AZ in us-west-2 becomes unavailable?Choose 2 answers A. Us-west-2a with two EC2 instances, us-west-2b with two EC2 instances, and us-west-2c with two EC2 instancesB. Us-west-2a with three EC2 instances, us-west-2b with three EC2 instances, and us-west-2c with no EC2 instancesC. Us-west-2a with four EC2 instances, us-west-2b with two EC2 instances, and us-west-2c with two EC2 instancesD. Us-west-2a with six EC2 instances, us-west-2b with six EC2 instances, and us-west-2c with no EC2 instancesE. Us-west-2a with three EC2 instances, us-west-2b with three EC2 instances, and us-west-2c with three EC2 instances
D. Us-west-2a with six EC2 instances, us-west-2b with six EC2 instances, and us-west-2c with no EC2 instancesE. Us-west-2a with three EC2 instances, us-west-2b with three EC2 instances, and us-west-2c with three EC2 instances
What action is required to establish a VPC VPN connection between an on-premises data center and an Amazon VPC virtual private gateway? A. Modify the main route table to allow traffic to a network address translation instance.B. Use a dedicated network address translation instance in the public subnet.C. Assign a static Internet-routable IP address to an Amazon VPC customer gateway.D. Establish a dedicated networking connection using AWS Direct Connect.
C. Assign a static Internet-routable IP address to an Amazon VPC customer gateway.
How can software determine the public and private IP addresses of the EC2 instance that it is running on? A. Query the local instance metadata.B. Query the local instance userdata.C. Query the appropriate Amazon CloudWatch metric.D. Use an ipconfig or ifconfig command.
A. Query the local instance metadata.
A VPC public subnet is one that: A. Has at least one route in its associated routing table that uses an Internet Gateway (IGW).B. Includes a route in its associated routing table via a Network Address Translation (NAT) instance.C. Has a Network Access Control List (NACL) permitting outbound traffic to 0.0.0.0/0.D. Has the Public Subnet option selected in its configuration.
A. Has at least one route in its associated routing table that uses an Internet Gateway (IGW).
In reviewing the Auto Scaling events for your application you notice that your application is scaling up and down multiple times in the same hour. What design choice could you make to optimize for cost while preserving elasticity?Choose 2 answers A. Modify the Auto Scaling policy to use scheduled scaling actionsB. Modify the Auto Scaling group termination policy to terminate the oldest instance first.C. Modify the Auto Scaling group cool-down timers.D. Modify the Amazon CloudWatch alarm period that triggers your Auto Scaling scale down policy.E. Modify the Auto Scaling group termination policy to terminate the newest instance first.
C. Modify the Auto Scaling group cool-down timers.D. Modify the Amazon CloudWatch alarm period that triggers your Auto Scaling scale down policy.
What combination of the following options will protect S3 objects from both accidental deletion and accidental overwriting? A. Enable S3 versioning on the bucket.B. Access S3 data using only signed URLs.C. Disable S3 delete using an IAM bucket policy.D. Enable S3 Reduced Redundancy Storage.E. Enable multi-factor authentication (MFA) protected access.
A. Enable S3 versioning on the bucket. E. Enable multi-factor authentication (MFA) protected access.
What does Amazon S3 stand for?A. Simple Storage Solution.B. Storage Storage Storage (triple redundancy Storage).C. Storage Server Solution.D. Simple Storage Service.
D. Simple Storage Service.
Before I delete an EBS volume, what can I do if I want to recreate the volume later?A. Create a copy of the EBS volume (not a snapshot)B. Store a snapshot of the volume C. Download the content to an EC2 instanceD. Back up the data in to a physical disk
B. Store a snapshot of the volume
Select the most correct answer: The device name /dev/sda1 (within Amazon EC2 ) is _____A. Possible for EBS volumesB. Reserved for the root device C. Recommended for EBS volumesD. Recommended for instance store volumes
B. Reserved for the root device
If I want an instance to have a public IP address, which IP address should I use?A. Elastic IP Address B. Class B IP AddressC. Class A IP AddressD. Dynamic IP Address
A. Elastic IP Address
What does RRS stand for when talking about S3?A. Redundancy Removal SystemB. Relational Rights StorageC. Regional Rights StandardD. Reduced Redundancy Storage
D. Reduced Redundancy Storage
What does Amazon SWF stand for?A. Simple Web FlowB. Simple Work FlowC. Simple Wireless FormsD. Simple Web Form
B. Simple Work Flow
What is the Reduced Redundancy option in Amazon S3?A. Less redundancy for a lower cost.B. It doesn't exist in Amazon S3, but in Amazon EBS.C. It allows you to destroy any copy of your files outside a specific jurisdiction.D. It doesn't exist at all
A. Less redundancy for a lower cost.
Fill in the blanks: Resources that are created in AWS are identified by a unique identifier called an _____.A. Amazon Resource NumberB. Amazon Resource Name tagC. Amazon Resource NameD. Amazon Reesource Namespace
C. Amazon Resource Name
What does the command 'ec2-run-instances ami-e3a5408a -n 20 -g appserver' do?A. Start twenty instances as members of appserver group.B. Creates 20 rules in the security group named appserverC. Terminate twenty instances as members of appserver group.D. Start 20 security groups
A. Start twenty instances as members of appserver group.
Every user you create in the IAM system starts with ______.A. partial permissionsB. full permissionsC. no permissions
C. no permissions
What does Amazon EC2 provide?A. Virtual servers in the Cloud.B. A platform to run code (Java, PHP, Python), paying on an hourly basis.C. Computer Clusters in the Cloud.D. Physical servers, remotely managed by the customer.
A. Virtual servers in the Cloud.
Amazon SWF is designed to help users do what?A. Design graphical user interface interactionsB. Manage user identification and authorizationC. Store Web contentD. Coordinate synchronous and asynchronous tasks which are distributed and fault tolerant.
D. Coordinate synchronous and asynchronous tasks which are distributed and fault tolerant.
What are the initial settings of an user created security group?A. Allow all inbound traffic and Allow no outbound trafficB. Allow no inbound traffic and Allow no outbound trafficC. Allow no inbound traffic and Allow all outbound trafficD. Allow all inbound traffic and Allow all outbound traffic
C. Allow no inbound traffic and Allow all outbound traffic
What does Amazon Elastic Beanstalk provide?A. A scalable storage appliance on top of Amazon Web Services.B. An application container on top of Amazon Web Services.C. A service by this name doesn't exist.D. A scalable cluster of EC2 instances.
B. An application container on top of Amazon Web Services.
What does the AWS Storage Gateway provide?A. Integration of on-premises IT environments with Cloud Storage.B. A direct encrypted connection to Amazon S3.C. A backup solution that provides an on-premises Cloud storage.D. It provides an encrypted SSL endpoint for backups in the Cloud.
A. Integration of on-premises IT environments with Cloud Storage.
How many relational database engines does RDS currently support?A. Six: Amazon Aurora, Oracle, Microsoft SQL Server, PostgreSQL, MySQL and MariaDB B. Just two: MySQL and Oracle.C. Five: MySQL, PostgreSQL, MongoDB, Cassandra and SQLite.D. Just one: MySQL.
A. Six: Amazon Aurora, Oracle, Microsoft SQL Server, PostgreSQL, MySQL and MariaDB
Fill in the blanks: The base URI for all requests for instance metadata is _____A. http://254.169.169.254/latest/B. http://169.169.254.254/latest/C. http://127.0.0.1/latest/D. http://169.254.169.254/latest/
D. http://169.254.169.254/latest/
While creating the snapshots using the the command line tools, which command should I be using?A. ec2-deploy-snapshotB. ec2-fresh-snapshotC. ec2-create-snapshot D. ec2-new-snapshot
C. ec2-create-snapshot
What are the two permission types used by AWS?A. Resource-based and Product-basedB. Product-based and Service-basedC. Service-basedD. User-based and Resource-based
D. User-based and Resource-based
What is the maximum key length of a tag?A. 512 Unicode charactersB. 64 Unicode charactersC. 256 Unicode charactersD. 128 Unicode characters
D. 128 Unicode characters
Security Groups can't _____.A. be nested more than 3 levelsB. be nested at allC. be nested more than 4 levelsD. be nested more than 2 levels
B. be nested at all
Changes to the backup window take effect ______.A. from the next billing cycleB. after 30 minutesC. immediately D. after 24 hours
C. immediately
Which is the default region in AWS?A. eu-west-1B. us-east-1 C. us-east-2D. ap-southeast-1
B. us-east-1
What are the Amazon EC2 API tools?A. They don't exist. The Amazon EC2 AMI tools, instead, are used to manage permissions.B. Command-line tools to the Amazon EC2 web service.C. They are a set of graphical tools to manage EC2 instances.D. They don't exist. The Amazon API tools are a client interface to Amazon Web Services.
B. Command-line tools to the Amazon EC2 web service.
What are the two types of licensing options available for using Amazon RDS for Oracle?A. BYOL and Enterprise LicenseB. BYOL and License IncludedC. Enterprise License and License IncludedD. Role based License and License Included
B. BYOL and License Included
What does a "Domain" refer to in Amazon SWF?A. A security group in which only tasks inside can communicate with each otherB. A special type of workerC. A collection of related WorkflowsD. The DNS record for the Amazon SWF service
C. A collection of related Workflows
EBS Snapshots occur _____A. Asynchronously B. SynchronouslyC. Weekly
A. Asynchronously
How can I change the security group membership for interfaces owned by other AWS, such as Elastic Load Balancing?A. By using the service specific console or API\CLI commandsB. None of theseC. Using Amazon EC2 API/CLID. Using all these methods
A. By using the service specific console or API\CLI commands
What is the maximum write throughput I can provision per table for a single DynamoDB table?A. 5,000 us east, 1,000 all other regionsB. 100,000 us east, 10, 000 all other regions C. Designed to scale without limits, but if you go beyond 40,000 us east/10,000 all other regions you have to contact AWS first.D. There is no limit
C. Designed to scale without limits, but if you go beyond 40,000 us east/10,000 all other regions you have to contact AWS first.
What does the ec2-revoke command do with respect to the Amazon EC2 security groups?A. Removes one or more security groups from a rule.B. Removes one or more security groups from an Amazon EC2 instance.C. Removes one or more rules from a security group.D. Removes a security group from an account.
C. Removes one or more rules from a security group.
What is Amazon Glacier?A. There is no such thingB. A security tool that allows "freezing" an EBS volume to perform computer forensics on it.C. A low-cost storage service that provides secure and durable storage for data archiving and backup.D. A security tool that allows "freezing" an EC2 instance to perform computer forensics on it.
C. A low-cost storage service that provides secure and durable storage for data archiving and backup.
What does specifying the mapping /dev/sdc=none do when launching an EC2 instance?A. Prevents /dev/sdc from creating the instance.B. Prevents /dev/sdc from deleting the instance.C. Set the value of /dev/sdc to 'zero'.D. Prevents /dev/sdc from attaching to the instance.
D. Prevents /dev/sdc from attaching to the instance.
A/An _____ acts as a firewall that controls the traffic allowed to reach one or more instances. A. security groupB. ACLC. IAMD. Private IP Addresses
A. security group
While launching an RDS DB instance, on which page I can select the Availability Zone?A. ReviewB. DB Instance DetailsC. Management OptionsD. Additional Configuration
D. Additional Configuration
What does the ec2-create-group command do with respect to the Amazon EC2 security groups? A. Groups the user created security groups in to a new group for easy access.B. Creates a new security group for use with your account.C. Creates a new group inside the security group.D. Creates a new rule inside the security group.
B. Creates a new security group for use with your account.
In the Launch Db Instance Wizard, where can I select the backup and maintenance options?A. DB Instance DetailsB. ReviewC. Management OptionsD. Engine Selection
C. Management Options
While performing volume status checks using volume status checks, if the status is insufficient-data, if the status is 'insufficient-data', what does it mean?A. checks may still be in progress on the volumeB. check has passedC. check has failedD. there is no such status
A. checks may still be in progress on the volume
While creating an EC2 snapshot using the API, which Action should I be using?A. MakeSnapShotB. FreshSnapshotC. DeploySnapshotD. CreateSnapshot
D. CreateSnapshot
What happens to the I/O operations while you take a database snapshot in a single AZ database?A. I/O operations to the database are suspended for a few minutes while the backup is in progress.B. I/O operations to the database are sent to a Replica (if available) for a few minutes while the backup is in progress.C. I/O operations will be functioning normallyD. I/O operations to the database are suspended for an hour while the backup is in progress
A. I/O operations to the database are suspended for a few minutes while the backup is in progress.
When should I choose Provisioned IOPS over Standard RDS storage? A. If you have batch-oriented workloadsB. If you use production online transaction processing (OLTP) workloads.C. If you have workloads that are not sensitive to consistent performanceD. If you infrequently read or write to the drive.
B. If you use production online transaction processing (OLTP) workloads.
What is the minimum charge for the data transferred between Amazon RDS and Amazon EC2 Instances in the same Availability Zone? A. USD 0.10 per GBB. No charge. It is free.C. USD 0.02 per GBD. USD 0.01 per GB
B. No charge. It is free.
Which service enables AWS customers to manage users and permissions in AWS?A. AWS Access Control Service (ACS)B. AWS Identity and Access Management (IAM)C. AWS Identity Manager (AIM)D. AWS Security Groups
B. AWS Identity and Access Management (IAM)
Fill in the blanks: "To ensure failover capabilities, consider using a _____ for incoming traffic on a network interface".A. primary public IPB. secondary private IPC. secondary public IPD. add on secondary IP
B. secondary private IP
If I have multiple Read Replicas for my master DB Instance and I promote one of them, what happens to the rest of the Read Replicas?A. The remaining Read Replicas will still replicate from the older master DB InstanceB. The remaining Read Replicas will be deletedC. The remaining Read Replicas will be combined to one read replica
A. The remaining Read Replicas will still replicate from the older master DB Instance
What does Amazon CloudFormation provide?A. The ability to setup Autoscaling for Amazon EC2 instances.B. None of these.C. A template resource creation for Amazon Web Services.D. A template to map network resources for Amazon Web Services.
C. A template resource creation for Amazon Web Services.
What are the four levels of AWS Premium Support?A. Basic, Developer, Business, EnterpriseB. Basic, Startup, Business, EnterpriseC. Free, Bronze, Silver, GoldD. All support is free
A. Basic, Developer, Business, Enterprise
What can I access by visiting the URL: http://status.aws.amazon.com/ ?A. Amazon Cloud WatchB. Status of the Amazon RDS DBC. AWS Service Health DashboardD. AWS Cloud Monitor
C. AWS Service Health Dashboard
Please select the Amazon EC2 resource which cannot be tagged.A. Images (AMIs, kernels, RAM disks)B. Amazon EBS volumesC. Elastic IP addressesD. VPCs
C. Elastic IP addresses
Select the incorrect statement.A. In Amazon EC2, private IP address is only returned to Amazon EC2 when the instance is stopped or terminatedB. In Amazon VPC, an instance retains its private IP address when the instance is stopped.C. In Amazon VPC, an instance does NOT retain its private IP address when the instance is stopped.D. In Amazon EC2, the private IP address is associated exclusively with the instance for its lifetime
C. In Amazon VPC, an instance does NOT retain its private IP address when the instance is stopped.
How are the EBS snapshots saved on Amazon S3?A. ExponentiallyB. IncrementallyC. EBS snapshots are not stored in the Amazon S3D. Decrementally
B. Incrementally
What happens when you create a topic on Amazon SNS?A. The topic is created, and it has the name you specified for it.B. An ARN (Amazon Resource Name) is created.C. You can create a topic on Amazon SQS, not on Amazon SNS.D. This question doesn't make sense.
B. An ARN (Amazon Resource Name) is created.
The _____ service is targeted at organizations with multiple users or systems that use AWS products such as Amazon EC2, Amazon SimpleDB, and the AWS Management Console.A. Amazon RDSB. AWS Integrity ManagementC. AWS Identity and Access ManagementD. Amazon EMR
C. AWS Identity and Access Management
Is there a limit to how many groups a user can be in?A. Yes for all users except rootB. Yes unless special permission grantedC. Yes for all usersD. No
C. Yes for all users
Select the correct set of options. The initial settings for the default security group are:A. Allow no inbound traffic, Allow all outbound traffic and Allow instances associated with this security group to talk to each otherB. Allow all inbound traffic, Allow no outbound traffic and Allow instances associated with this security group to talk to each otherC. Allow no inbound traffic, Allow all outbound traffic and Does NOT allow instances associated with this security group to talk to each otherD. Allow all inbound traffic, Allow all outbound traffic and Does NOT allow instances associated with this security group to talk to each other
A. Allow no inbound traffic, Allow all outbound traffic and Allow instances associated with this security group to talk to each other
What does Amazon Route53 provide?A. A global Content Delivery Network.B. None of these.C. A scalable Domain Name System.D. An SSH endpoint for Amazon EC2.
C. A scalable Domain Name System.
What does Amazon ElastiCache provide?A. A service by this name doesn't exist. Perhaps you mean Amazon CloudCache.B. A virtual server with a huge amount of memory.C. A managed In-memory cache service.D. An Amazon EC2 instance with the Memcached software already pre-installed.
C. A managed In-memory cache service.
What is a Security Group?A. None of these.B. A list of users that can access Amazon EC2 instances.C. An Access Control List (ACL) for AWS resources.D. It acts as a virtual firewall that controls the traffic for one or more instances.
D. It acts as a virtual firewall that controls the traffic for one or more instances.
Please select the Amazon EC2 resource which can be tagged.A. Key pairsB. Elastic IP addressesC. Placement groupsD. EBS snapshots
D. EBS snapshots
What is Amazon Glacier?A. It's a security tool that allows to "freeze" an EC2 instance and perform computer forensics on it.B. A security tool that allows to "freeze" an EBS volume and perform computer forensics on it.C. A low-cost storage service that provides secure and durable storage for data archiving and backup.D. You mean Amazon "Iceberg": it's a low-cost storage service.
C. A low-cost storage service that provides secure and durable storage for data archiving and backup.
Every user you create in the IAM system starts with ______.A. full permissionsB. no permissionsC. partial permissions
B. no permissions
Select the correct statement:A. You don't need not specify the resource identifier while stopping a resourceB. You can terminate, stop, or delete a resource based solely on its tagsC. You can't terminate, stop, or delete a resource based solely on its tagsD. You don't need to specify the resource identifier while terminating a resource
C. You can't terminate, stop, or delete a resource based solely on its tags
Please select the most correct answer regarding the persistence of the Amazon Instance Store:A. The data on an instance store volume persists only during the life of the associated Amazon EC2 instanceB. The data on an instance store volume is lost when the security group rule of the associated instance is changed.C. The data on an instance store volume persists even after associated Amazon EC2 instance is deleted
A. The data on an instance store volume persists only during the life of the associated Amazon EC2 instance
Does AWS allow for the use of Multi Factor Authentication tokens?A. Yes, with both hardware or virtual MFA devicesB. Yes, but only virtual MFA devices.C. Yes, but only physical (hardware) MFA devices.D. No
A. Yes, with both hardware or virtual MFA devices
What does Amazon SWF stand for?A. Simple Wireless FormsB. Simple Web FormC. Simple Work FlowD. Simple Web Flow
C. Simple Work Flow
What does Amazon Elastic Beanstalk provide?A. An application container on top of Amazon Web Services.B. A scalable storage appliance on top of Amazon Web Services.C. A scalable cluster of EC2 instances.D. A service by this name doesn't exist.
A. An application container on top of Amazon Web Services.
Are you able to integrate a multi-factor token service with the AWS Platform?A. Yes, using the AWS multi-factor token devices to authenticate users on the AWS platform.B. No, you cannot integrate multi-factor token devices with the AWS platform.C. Yes, you can integrate private multi-factor token devices to authenticate users to the AWS platform.
A. Yes, using the AWS multi-factor token devices to authenticate users on the AWS platform.
My Read Replica appears "stuck" after a Multi-AZ failover and is unable to obtain or apply updates from the source DB Instance. What do I do?A. You will need to delete the Read Replica and create a new one to replace it.B. You will need to disassociate the DB Engine and re associate it.C. The instance should be deployed to Single AZ and then moved to Multi- AZ once againD. You will need to delete the DB Instance and create a new one to replace it.
A. You will need to delete the Read Replica and create a new one to replace it.
Which DNS name can only be resolved within Amazon EC2?A. Internal DNS nameB. External DNS nameC. Global DNS nameD. Private DNS name
A. Internal DNS name
Does Amazon RDS for SQL Server currently support importing data into the msdb database?A. NoB. Yes
A. No
How can I change the security group membership for interfaces owned by other AWS services, such as Elastic Load Balancing?A. using all these methodsB. By using the service specific console or API\CLI commandsC. None of these
B. By using the service specific console or API\CLI commands
In a management network scenario, which interface on the instance handles public-facing traffic?A. Primary network interfaceB. Subnet interfaceC. Secondary network interface
C. Secondary network interface
Select the correct set of steps for exposing the snapshot only to specific AWS accounts:A. Select public for all the accounts and check mark those accounts with whom you want to expose the snapshots and click save.B. SelectPrivate, enter the IDs of those AWS accounts, and clickSave.C. SelectPublic, enter the IDs of those AWS accounts, and clickSave.D. SelectPublic, mark the IDs of those AWS accounts as private, and clickSave.
B. SelectPrivate, enter the IDs of those AWS accounts, and clickSave.
Is decreasing the storage size of a DB Instance permitted?A. Depends on the RDMS usedB. YesC. No
C. No
When should I choose Provisioned IOPS over Standard RDS storage?A. If you use production online transaction processing (OLTP) workloads.B. If you have batch-oriented workloadsC. If you have workloads that are not sensitive to consistent performance
A. If you use production online transaction processing (OLTP) workloads.
You can use _____ and _____ to help secure the instances in your VPC.A. security groups and multi-factor authenticationB. security groups and 2-Factor authenticationC. security groups and biometric authenticationD. security groups and network ACLs
D. security groups and network ACLs
What does Amazon RDS stand for?A. Regional Data Server.B. Relational Database Service.C. Nothing.D. Regional Database Service.
B. Relational Database Service.
What does ec2-create-group do with respect to the Amazon EC2 security groups?A. Creates a new rule inside the security group.B. Creates a new security group for use with your account.C. Creates a new group inside the security group.D. Groups the user created security groups in to a new group for easy access.
B. Creates a new security group for use with your account.
What does Amazon ELB stand for?A. Elastic Linux BoxB. Encrypted Linux BoxC. Encrypted Load BalancingD. Elastic Load Balancer
D. Elastic Load Balancer
Location of Instances are _____A. RegionalB. based on Availability ZoneC. Global
B. based on Availability Zone
Is there any way to own a direct connection to Amazon Web Services?A. You can create an encrypted tunnel to VPC, but you don't own the connection.B. Yes, it's called Amazon Dedicated Connection.C. No, AWS only allows access from the public Internet.D. Yes, it's called Direct Connect
D. Yes, it's called Direct Connect
What is an isolated database environment running in the cloud (Amazon RDS) called?A. DB InstanceB. DB UnitC. DB ServerD. DB Volume
A. DB Instance
What does Amazon SES stand for?A. Simple Elastic Server.B. Simple Email Service.C. Software Email Solution.D. Software Enabled Server.
B. Simple Email Service.
Can I attach more than one policy to a particular entity?A. Yes alwaysB. Only if within GovCloudC. NoD. Only if within VPC
A. Yes always
What's an ECU?A. Extended Cluster User.B. None of these.C. Elastic Computer Usage.D. Elastic Compute Unit
D. Elastic Compute Unit
What does the "Server Side Encryption" option on Amazon S3 provide?A. It provides an encrypted virtual disk in the Cloud.B. It doesn't exist for Amazon S3, but only for Amazon EC2.C. It encrypts the files that you send to Amazon S3, on the server side.D. It allows to upload files using an SSL endpoint, for a secure transfer.
C. It encrypts the files that you send to Amazon S3, on the server side.
What does Amazon EBS stand for?A. Elastic Block Storage.B. Elastic Business Server.C. Elastic Blade Server.D. Elastic Block Store.
A. Elastic Block Storage.
Do the system resources on the Micro instance meet the recommended configuration for Oracle?A. Yes completelyB. Yes but only for certain situationsC. Not in any circumstance
C. Not in any circumstance
Are you able to integrate a multi-factor token service with the AWS Platform?A. No, you cannot integrate multi-factor token devices with the AWS platform.B. Yes, you can integrate private multi-factor token devices to authenticate users to the AWS platform.C. Yes, using the AWS multi-factor token devices to authenticate users on the AWS platform.
C. Yes, using the AWS multi-factor token devices to authenticate users on the AWS platform.
Amazon EC2 provides a repository of public data sets that can be seamlessly integrated into AWS cloud- based applications. What is the monthly charge for using the public data sets?A. A 1 time charge of 10$ for all the datasets.B. 1$ per dataset per monthC. 10$ per month for all the datasetsD. There is no charge for using the public data sets
D. There is no charge for using the public data sets
In the Amazon RDS Oracle DB engine, the Database Diagnostic Pack and the Database Tuning Pack are only available with _____.A. Oracle Standard EditionB. Oracle Express EditionC. Oracle Enterprise EditionD. None of these
C. Oracle Enterprise Edition
What happens to the I/O operations while you take a database snapshot?A. I/O operations to the database are suspended for an hour while the backup is in progress.B. I/O operations to the database are sent to a Replica (if available) for a few minutes while the backup is in progress.C. I/O operations will be functioning normallyD. I/O operations to the database are suspended for a few minutes while the backup is in progress.
D. I/O operations to the database are suspended for a few minutes while the backup is in progress.
What is the name of licensing model in which I can use your existing Oracle Database licenses to run Oracle deployments on Amazon RDS?A. Bring Your Own LicenseB. Role Bases LicenseC. Enterprise LicenseD. License Included
A. Bring Your Own License
Does Amazon Route 53 support NS Records?A. Yes, it supports Name Service records.B. NoC. It supports only MX records.D. Yes, it supports Name Server records.
D. Yes, it supports Name Server records.
When using consolidated billing there are two account types. What are they?A. Paying account and Linked accountB. Parent account and Child accountC. Main account and Sub account.D. Main account and Secondary account.
A. Paying account and Linked account
Regarding the attaching of ENI to an instance, what does 'warm attach' refer to?A. Attaching an ENI to an instance when it is stopped.B. This question doesn't make sense.C. Attaching an ENI to an instance when it is runningD. Attaching an ENI to an instance during the launch process
A. Attaching an ENI to an instance when it is stopped.
You are a solutions architect working for a company that specializes in ingesting large data feeds (using Kinesis) and then analyzing these feeds using Elastic Map Reduce (EMR). The results are then stored on a custom MySQL database which is hosted on an EC2 instance which has 3 volumes, the root/boot volume, and then 2 additional volumes which are striped in to a RAID 1. Your company recently had an outage and lost some key data and have since decided that they will need to run nightly back ups. Your application is only used during office hours, so you can afford to have some down time in the middle of the night if required. You decide to take a snapshot of all three volumes every 24 hours. In what manner should you do this?A. Take a snapshot of each volume independently, while the EC2 instance is running.B. Stop the EC2 instance and take a snapshot of each EC2 instance independently. Once the snapshots are complete, start the EC2 instance and ensure that all relevant volumes are remounted.C. Add two additional volumes to the existing RAID 0 volume and mirror these volumes creating a RAID 10. Take a snap of only the two new volumes.D. Create a read replica of the existing EC2 instance and then take your snapshots from the read replica and not the live EC2 instance.
B. Stop the EC2 instance and take a snapshot of each EC2 instance independently. Once the snapshots are complete, start the EC2 instance and ensure that all relevant volumes are remounted.
What are the valid methodologies for encrypting data on S3?A. Server Side Encryption (SSE)-S3, SSE-C, SSE-KMS or a client library such as Amazon S3 Encryption Client.B. Server Side Encryption (SSE)-S3, SSE-A, SSE-KMS or a client library such as Amazon S3 Encryption Client.C. Server Side Encryption (SSE)-S3, SSE-C, SSE-SSL or a client library such as Amazon S3 Encryption Client.D. Server Side Encryption (SSE)-S3, SSE-C, SSE-SSL or a server library such as Amazon S3 Encryption Client.
A. Server Side Encryption (SSE)-S3, SSE-C, SSE-KMS or a client library such as Amazon S3 Encryption Client.
In Identity and Access Management, when you first create a new user, certain security credentials are automatically generated. Which of the below are valid security credentials?A. Access Key ID, Authorized KeyB. Private Key, Secret Access KeyC. Private Key, Authorized KeyD. Access Key ID, Secret Access Key
D. Access Key ID, Secret Access Key
Amazon Web Services offer 3 different levels of support, which of the below are valid support levels.A. Corporate, Business, DeveloperB. Enterprise, Business, DeveloperC. Enterprise, Business, Free TierD. Enterprise, Company, Free Tier
B. Enterprise, Business, Developer
You are a solutions architect working for a large digital media company. Your company is migrating their production estate to AWS and you are in the process of setting up access to the AWS console using Identity Access Management (IAM). You have created 5 users for your system administrators. What further steps do you need to take to enable your system administrators to get access to the AWS console?A. Generate an Access Key ID & Secret Access Key, and give these to your system administrators.B. Enable multi-factor authentication on their accounts and define a password policy.C. Generate a password for each user created and give these passwords to your system administrators.D. Give the system administrators the secret access key and access key id, and tell them to use these credentials to log in to the AWS console.
C. Generate a password for each user created and give these passwords to your system administrators.
Amazon S3 buckets in all Regions provide which of the following?A. Read-after-write consistency for PUTS of new objects AND Strongly consistent for POST & DELETESB. Read-after-write consistency for POST of new objects AND Eventually consistent for overwrite PUTS & DELETESC. Read-after-write consistency for PUTS of new objects AND Eventually consistent for overwrite PUTS & DELETESD. Read-after-write consistency for POST of new objects AND Strongly consistent for POST & DELETES
C. Read-after-write consistency for PUTS of new objects AND Eventually consistent for overwrite PUTS & DELETES
What function of an AWS VPC is stateless?A. Security GroupsB. Elastic Load BalancersC. Network Access Control ListsD. EC2
C. Network Access Control Lists
Which of the following services allows you root access (i.e. you can login using SSH)?A. Elastic Load BalancerB. Elastic Map ReduceC. ElasticacheD. RDS
B. Elastic Map Reduce
When trying to grant an amazon account access to S3 using access control lists what method of identification should you use to identify that account with?A. The email address of the account or the canonical user IDB. The AWS account numberC. The ARND. An email address with a 2FA tokenSubmit
A. The email address of the account or the canonical user ID
Which of the following is not supported by AWS Import/Export?A. Import to Amazon S3B. Export from Amazon S3C. Import to Amazon EBSD. Import to Amazon GlacierE. Export to Amazon Glacier
E. Export to Amazon Glacier
Which of the following is not a service of the security category of the AWS trusted advisor service?A. Security Groups - Specific Ports UnrestrictedB. MFA on Root AccountC. IAM UseD. Vulnerability scans on existing VPCs.
D. Vulnerability scans on existing VPCs.
What are the different types of virtualization available on EC2?A. Pseudo-Virtual (PV) & Hardware Virtual Module (HSM)B. Para-Virtual (PV) & Hardware Virtual Machine (HVM)C. Pseudo-Virtual (PV) & Hardware Virtual Machine (HVM)D. Para-Virtual (PV) & Hardware Virtual Module (HSM)Submit
B. Para-Virtual (PV) & Hardware Virtual Machine (HVM)
Which of the following is not a valid configuration type for AWS Storage gateway.A. Gateway-accessed volumesB. Gateway-cached volumesC. Gateway-stored volumesD. Gateway-Virtual Tape Library
A. Gateway-accessed volumes
You are hosting a website in Ireland called aloud.guru and you decide to have a static DR site available on S3 in the event that your primary site would go down. Your bucket name is also called "acloudguru". What would be the S3 URL of the static website?A. https://acloudguru.s3-website-eu-west-1.amazonaws.comB. https://s3-eu-east-1.amazonaws.com/acloudguruC. https://acloudguru.s3-website-us-east-1.amazonaws.comD. https://s3-eu-central-1.amazonaws.com/acloudguru
A. https://acloudguru.s3-website-eu-west-1.amazonaws.com
Which of the following is NOT a valid SNS subscribers?A. LambdaB. SWFC. SQSD. EmailE. HTTPSF. SMS
B. SWF
You have a high performance compute application and you need to minimize network latency between EC2 instances as much as possible. What can you do to achieve this?A. Use Elastic Load Balancing to load balance traffic between availability zonesB. Create a CloudFront distribution and to cache objects from an S3 bucket at Edge Locations.C. Create a placement group within an Availability Zone and place the EC2 instances within that placement group.D. Deploy your EC2 instances within the same region, but in different subnets and different availability zones so as to maximize redundancy.
C. Create a placement group within an Availability Zone and place the EC2 instances within that placement group.
Amazon S3 buckets in the US Standard region do not provide eventual consistency.A. TrueB. False
B. False
You are creating your own relational database on an EC2 instance and you need to maximize IOPS performance. What can you do to achieve this goal?A. Add a single additional volume to the EC2 instance with provisioned IOPS.B. Create the database on an S3 bucket.C. Add multiple additional volumes with provisioned IOPS and then create a RAID 0 stripe across those volumes.D. Attach the single volume to multiple EC2 instances so as to maximize performance.
C. Add multiple additional volumes with provisioned IOPS and then create a RAID 0 stripe across those volumes.
Which of the services below do you get root access to?A. Elasticache & Elastic MapReduceB. RDS & DynamoDBC. EC2 & Elastic MapReduceD. Elasticache & DynamoDB
C. EC2 & Elastic MapReduce
It is possible to transfer a reserved instance from one Availability Zone to another.A. TrueB. False
A. True
You have an EC2 instance which needs to find out both its private IP address and its public IP address. To do this you need to;A. Run IPCONFIG (Windows) or IFCONFIG (Linux)B. Retrieve the instance Metadata from http://169.254.169.254/latest/meta-data/C. Retrieve the instance Userdata from http://169.254.169.254/latest/meta-data/D. Use the following command; AWS EC2 displayIP
B. Retrieve the instance Metadata from http://169.254.169.254/latest/meta-data/
To retrieve instance metadata or userdata you will need to use the following IP Address;A. http://127.0.0.1B. http://192.168.0.254C. http://10.0.0.1D. http://169.254.169.254
D. http://169.254.169.254
In order to enable encryption at rest using EC2 and Elastic Block Store you need toA. Configure encryption when creating the EBS volumeB. Configure encryption using the appropriate Operating Systems file systemC. Configure encryption using X.509 certificatesD. Mount the EBS volume in to S3 and then encrypt the bucket using a bucket policy.
A. Configure encryption when creating the EBS volume
You can select a specific Availability Zone in which to place your DynamoDB TableA. TrueB. False
B. False
Amazon's Redshift uses which block size for its columnar storage?A. 2KBB. 8KBC. 16KBD. 32KBE. 1024KB / 1MB
E. 1024KB / 1MB
You run a website which hosts videos and you have two types of members, premium fee paying members and free members. All videos uploaded by both your premium members and free members are processed by a fleet of EC2 instances which will poll SQS as videos are uploaded. However you need to ensure that your premium fee paying members videos have a higher priority than your free members. How do you design SQS?A. SQS allows you to set priorities on individual items within the queue, so simply set the fee paying members at a higher priority than your free members.B. Create two SQS queues, one for premium members and one for free members. Program your EC2 fleet to poll the premium queue first and if empty, to then poll your free members SQS queue.C. SQS would not be suitable for this scenario. It would be much better to use SNS to encode the videos.Submit
B. Create two SQS queues, one for premium members and one for free members. Program your EC2 fleet to poll the premium queue first and if empty, to then poll your free members SQS queue.
You work for a cosmetic company which has their production website on AWS. The site itself is in a two-tier configuration with web servers in the front end and database servers at the back end. The site uses using Elastic Load Balancing and Auto Scaling. The databases maintain consistency by replicating changes to each other as and when they occur. This requires the databases to have extremely low latency. Your website needs to be highly redundant and must be designed so that if one availability zone goes offline and Auto Scaling cannot launch new instances in the remaining Availability Zones the site will not go offline. How can the current architecture be enhanced to ensure this?A. Deploy your site in three different AZ's within the same region. Configure the Auto Scaling minimum to handle 50 percent of the peak load per zone.B. Deploy your website in 2 different regions. Configure Route53 with a failover routing policy and set up health checks on the primary site.C. Deploy your site in three different AZ's within the same region. Configure the Auto Scaling minimum to handle 33 percent of the peak load per zone.D. Deploy your website in 2 different regions. Configure Route53 with Weighted Routing. Assign a weight of 25% to region 1 and a weight of 75% to region 2.
A. Deploy your site in three different AZ's within the same region. Configure the Auto Scaling minimum to handle 50 percent of the peak load per zone.
You working in the media industry and you have created a web application where users will be able to upload photos they create to your website. This web application must be able to call the S3 API in order to be able to function. Where should you store your API credentials whilst maintaining the maximum level of security.A. Save the API credentials to your php files.B. Don't save your API credentials. Instead create a role in IAM and assign this role to an EC2 instance when you first create it.C. Save your API credentials in a public Github repository.D. Pass API credentials to the instance using instance userdata.
B. Don't save your API credentials. Instead create a role in IAM and assign this role to an EC2 instance when you first create it.
You are a student currently learning about the different AWS services. Your employer asks you to tell him a bit about Amazon's glacier service. Which of the following best describes the use cases for Glacier?A. Infrequently accessed data & data archivesB. Hosting active databasesC. Replicating Files across multiple availability zones and regionsD. Frequently Accessed Data
A. Infrequently accessed data & data archives
You work for a toy company that has a busy online store. As you are approaching christmas you find that your store is getting more and more traffic. You ensure that the web tier of your store is behind an Auto Scaling group, however you notice that the web tier is frequently scaling, sometimes multiple times in an hour, only to scale back after peak usage. You need to prevent this so that Auto Scaling does not scale as rapidly, just to scale back again. What option would help you to achieve this?A. Configure Auto Scaling to terminate your oldest instances first, then adjust your CloudWatch alarm.B. Configure Auto Scaling to terminate your newest instances first, then adjust your CloudWatch alarm.C. Change your Auto Scaling so that it only scales at scheduled times.D. Modify the Auto Scaling group cool-down timers & modify the Amazon CloudWatch alarm period that triggers your Auto Scaling scale down policy.
D. Modify the Auto Scaling group cool-down timers & modify the Amazon CloudWatch alarm period that triggers your Auto Scaling scale down policy.
You work in the genomics industry and you process large amounts of genomic data using a nightly Elastic Map Reduce (EMR) job. This job processes a single 3 Tb file which is stored on S3. The EMR job runs on 3 on-demand core nodes and four on-demand task nodes. The EMR job is now taking longer than anticipated and you have been asked to advise how to reduced the completion time?A. Use four Spot Instances for the task nodes rather than four On-Demand instances.B. You should reduce the input split size in the MapReduce job configuration and then adjust the number of simultaneous mapper tasks so that more tasks can be processed at once.C. Store the file on Elastic File Service instead of S3 and then mount EFS as an independent volume for your core nodes.D. Configure an independent VPC in which to run the EMR jobs and then mount EFS as an independent volume for your core nodes.E. Enable termination protection for the job flow.
B. You should reduce the input split size in the MapReduce job configuration and then adjust the number of simultaneous mapper tasks so that more tasks can be processed at once.
By definition a public subnet within a VPC is one that;A. In it's routing table it has at least one route that uses an Internet Gateway (IGW).B. Has at least one route in it's routing table that routes via a Network Address Translation (NAT) instance.C. Where the the Network Access Control List (NACL) permitting outbound traffic to 0.0.0.0/0.D. Has had the public subnet check box ticked when setting up this subnet in the VPC console.
A. In it's routing table it has at least one route that uses an Internet Gateway (IGW).
You have been asked to identify a service on AWS that is a durable key value store. Which of the services below meets this definition?A. Mobile HubB. KinesisC. Simple Storage Service (S3)D. Elastic File Service (EFS)
C. Simple Storage Service (S3)
You are a solutions architect working for a biotech company who is pioneering research in immunotherapy. They have developed a new cancer treatment that may be able to cure up to 94% of cancers. They store their research data on S3, however recently an intern accidentally deleted some critical files. You've been asked to prevent this from happening in the future. What options below can prevent this?A. Make sure the interns can only access data on S3 using signed URLs.B. Enable S3 versioning on the bucket & enable Enable Multifactor Authentication (MFA) on the bucket.C. Use S3 Infrequently Accessed storage to store the data on.D. Create an IAM bucket policy that disables deletes.Submit
B. Enable S3 versioning on the bucket & enable Enable Multifactor Authentication (MFA) on the bucket.
You run an automobile reselling company that has a popular online store on AWS. The application sits behind an Auto Scaling group and requires new instances of the Auto Scaling group to identify their public and private IP addresses. How can you achieve this?A. By using Ipconfig for windows or Ifconfig for Linux.B. By using a cloud watch metric.C. Using a Curl or Get Command to get the latest meta-data from http://169.254.169.254/latest/meta-data/D. Using a Curl or Get Command to get the latest user-data from http://169.254.169.254/latest/user-data/
C. Using a Curl or Get Command to get the latest meta-data from http://169.254.169.254/latest/meta-data/
Your company has decided to set up a new AWS account for test and dev purposes. They already use AWS for production, but would like a new account dedicated for test and dev so as to not accidentally break the production environment. You launch an exact replica of your production environment using a CloudFormation template that your company uses in production. However CloudFormation fails. You use the exact same CloudFormation template in production, so the failure is something to do with your new AWS account. The CloudFormation template is trying to launch 60 new EC2 instances in a single AZ. After some research you discover that the problem is;A. For all new AWS accounts there is a soft limit of 20 EC2 instances per region. You should submit the limit increase form and retry the template after your limit has been increased.B. For all new AWS accounts there is a soft limit of 20 EC2 instances per availability zone. You should submit the limit increase form and retry the template after your limit has been increased.C. You cannot launch more than 20 instances in your default VPC, instead reconfigure the CloudFormation template to provision the instances in a custom VPC.D. Your CloudFormation template is configured to use the parent account and not the new account. Change the account number in the CloudFormation template and relaunch the template.Submit
A. For all new AWS accounts there is a soft limit of 20 EC2 instances per region. You should submit the limit increase form and retry the template after your limit has been increased.
You have developed a new web application in us-west-2 that requires six Amazon Elastic Compute Cloud (EC2) instances running at all times. You have three availability zones available in that region (us-west-2a, us-west-2b, and us-west-2c). You need 100 percent fault tolerance if any single Availability Zone in us-west-2 becomes unavailable. How would you do this, each answer has 2 answers, select the answer with BOTH correct answers.A. Answer 1 - Us-west-2a with two EC2 instances, us-west-2b with two EC2 instances, and us-west-2c with two EC2 instances. Answer 2 - Us-west-2a with six EC2 instances, us-west-2b with six EC2 instances, and us-west-2c with no EC2 instancesB. Answer 1 - Us-west-2a with six EC2 instances, us-west-2b with six EC2 instances, and us-west-2c with no EC2 instances. Answer 2 - Us-west-2a with three EC2 instances, us-west-2b with three EC2 instances, and us-west-2c with three EC2 instances.C. Answer 1 - Us-west-2a with three EC2 instances, us-west-2b with three EC2 instances, and us-west-2c with no EC2 instances. Answer 2 - Us-west-2a with three EC2 instances, us-west-2b with three EC2 instances, and us-west-2c with three EC2 instances.D. Answer 1 - Us-west-2a with three EC2 instances, us-west-2b with three EC2 instances, and us-west-2c with three EC2 instances. Answer 2 - Us-west-2a with four EC2 instances, us-west-2b with two EC2 instances, and us-west-2c with two EC2 instances.
B. Answer 1 - Us-west-2a with six EC2 instances, us-west-2b with six EC2 instances, and us-west-2c with no EC2 instances. Answer 2 - Us-west-2a with three EC2 instances, us-west-2b with three EC2 instances, and us-west-2c with three EC2 instances.
You need to add a route to your routing table in order to allow connections to the internet from your subnet. What route should you add?A. Destination: 192.168.1.258/0 --> Target: your Internet gatewayB. Destination: 0.0.0.0/33 --> Target: your virtual private gatewayC. Destination: 0.0.0.0/0 --> Target: 0.0.0.0/24D. Destination: 10.0.0.0/32 --> Target: your virtual private gatewayE. Destination: 0.0.0.0/0 --> Target: your Internet gateway
E. Destination: 0.0.0.0/0 --> Target: your Internet gateway