Review Questions – Connecting On-Premises Networks – ANS-C01 Study Guide

Review Questions

As a network cloud engineer for your company, you are exploring options available to create a hybrid network from your Glasgow data center to the eu-west-1 region in Dublin, Ireland. What are viable connection options?
1. DX
1. Kinesis data stream
1. Regional interconnect
1. Site-to-site VPN
1. VPC peering
What framework outlines responsibilities for security implementations in the AWS cloud?
1. AWS Macie
1. AWS Well-Architected Framework
1. IPSec
1. Shared responsibility model
1. AWS security framework service
What data center technology centralizes control plane operations into a central controller?
1. Routing
1. CloudHub
1. API Gateway
1. SDN
1. Control Tower
Which AWS networking service bypasses the public Internet to establish a direct VPC to AWS services connection?
1. CloudHub
1. PrivateLink
1. AWS Direct Connect
1. Control Tower
1. App Mesh
Which operating system test utility is used to test connectivity?
1. ping
1. traceroute
1. Reachability Analyzer
1. Route Analyzer
1. nslookup
What steps should be taken to enhance the security of your site-to-site VPN connection? (Select three.)
1. Implement IAM restrictions
1. Turn on KMS
1. Enable CloudTrail
1. Enable AWS Shield
1. Prevent exposing sensitive information in tags
What networking device forwards traffic based on MAC addresses?
1. Router
1. Gateway
1. Switch
1. Direct Connect
1. Load balancer
The software-defined networking architecture separates which networking functions from each other? (Select two.)
1. Control plane
1. Application plane
1. Security plane
1. Forwarding plane
1. Route forwarding table
What is required by AWS to establish a DX cross-connection?
1. Enable OSPF routing
1. Multimode fiber
1. Letter of Authorization
1. Peering agreement
1. CloudFront gateway
What networking device forwards traffic based on IP destination addresses?
1. Router
1. Gateway
1. Switch
1. Direct Connect
1. Load balancer
You are troubleshooting a connection over the Internet from your client laptop in Austin to an DynamoDB database located in the Asia-Pacific Tokyo region. You suspect that there is no active route. What client utility can you use to see where the traffic is being dropped?
1. Reachability Analyzer
1. traceroute
1. CloudTrail
1. Route Analyzer
1. ping
You are experiencing variable delays and congestion on your site-to-site VPN connection in the US West Oregon region. What alternative connection strategy is a viable solution?
1. Accelerated site-to-site
1. CloudHub
1. Data center peering
1. CloudHSM
What type of optical hardware does AWS use for Direct Connect interconnections?
1. LC
1. SC
1. SFP
1. SR
1. Multimode
Your site-to-site VPN connections are dropping, and you suspect that there is a routing issue in your service provider’s network. Which utility can be used to determine where the drops are occurring?
1. Route Analyzer
1. AWS Shield
1. ping
1. traceroute
1. AWS Detective
What data center technology uses Northbound and Southbound API calls for configuration operations?
1. Transit Gateway
1. CloudHub
1. API Gateway
1. SDN
1. Control Tower
What networking device translates protocols?
1. Router
1. Gateway
1. Switch
1. Direct Connect
1. Load balancer
Which AWS service is used to interconnect VPCs and on-premises workloads using a central regional router?
1. API Gateway
1. SDN
1. Transit Gateway
1. Route 53
1. CloudMap
You are investigating to see if there is a missing route in your Transit Gateway instance. Which AWS utility can provide you with source-to-destination routing information?
1. Reachability Analyzer
1. traceroute
1. CloudTrail
1. Route Analyzer
1. CloudWatch
What AWS service is used to share resources between accounts?
1. Resource Access Manager
1. CloudHub
1. CloudMap
1. AppFlow
1. CloudShell
What values does the traceroute utility display? (Select three.)
1. Jitter
1. Responding node IP/DNS name
1. Autonomous systems path
1. Hop count
1. Round-trip time