Browse Exams Pricing

ExamsANS-C01Questions

ANS-C01 Exam Questions

305 real ANS-C01 exam questions with expert-verified answers and explanations. Page 1 of 7.

Question #1Network Implementation
A company is planning to create a service that requires encryption in transit. The traffic must not be decrypted between the client and the backend of the service. The company will...
EKS Load BalancingMutual TLSAWS Load Balancer ControllergRPC
Question #2Network Design
A company is deploying a new application in the AWS Cloud. The company wants a highly available web server that will sit behind an Elastic Load Balancer. The load balancer will rou...
Application Load BalancerALB Path-Based RoutingHTTPS/TLS OffloadingClient IP Preservation
Question #3Network Security
A company has developed an application on AWS that will track inventory levels of vending machines and initiate the restocking process automatically. The company plans to integrate...
AWS Global AcceleratorALBVPC NetworkingNetwork Security
Question #4Network Design
A global delivery company is modernizing its fleet management system. The company has several business units. Each business unit designs and maintains applications that are hosted...
AWS PrivateLinkVPC Endpoint ServiceMulti-account networkingNetwork security
Question #5Network Management and Operations
A company uses a 4 Gbps AWS Direct Connect dedicated connection with a link aggregation group (LAG) bundle to connect to five VPCs that are deployed in the us-east-1 Region. Each V...
AWS Direct ConnectCloudWatchNetwork TroubleshootingDirect Connect VIF
Question #6Design Network Solutions
A software-as-a-service (SaaS) provider hosts its solution on Amazon EC2 instances within a VPC in the AWS Cloud. All of the provider's customers also have their environments in th...
VPC Endpoint ServiceAWS PrivateLinkNetwork Load BalancerIP overlap
Question #7Design and Implement Security and Compliance for Networks
A network engineer is designing the architecture for a healthcare company's workload that is moving to the AWS Cloud. All data to and from the on-premises environment must be encry...
Direct Connect MACsecGateway Load BalancerThird-party firewallsAWS Shield Advanced
Question #8Monitor and Troubleshoot AWS Networks
A retail company is running its service on AWS. The company's architecture includes Application Load Balancers (ALBs) in public subnets. The ALB target groups are configured to sen...
NAT GatewayVPC Flow LogsNetwork TroubleshootingTraffic Monitoring
Question #9Design Complex Network Solutions
A banking company is successfully operating its public mobile banking stack on AWS. The mobile banking stack is deployed in a VPC that includes private subnets and public subnets....
AWS IPv6Egress-only Internet GatewayVPC routingPrivate subnet connectivity
Question #10Network Security
A company has deployed an AWS Network Firewall firewall into a VPC. A network engineer needs to implement a solution to deliver Network Firewall flow logs to the company's Amazon O...
AWS Network FirewallOpenSearch ServiceLog deliveryKinesis Data Firehose
Question #11Implement Hybrid DNS Solutions
A company is using custom DNS servers that run BIND for name resolution in its VPCs. The VPCs are deployed across multiple AWS accounts that are part of the same organization in AW...
Route 53 ResolverHybrid DNSEFS DNSVPC DNS Configuration
Question #12
An ecommerce company is hosting a web application on Amazon EC2 instances to handle continuously changing customer demand. The EC2 instances are part of an Auto Scaling group. The...
Network Load BalancerSSL/TLS passthroughEnd-to-end encryptionLoad Balancer types
Question #13Troubleshoot Network Issues
A company has two on-premises data center locations. There is a company-managed router at each data center. Each data center has a dedicated AWS Direct Connect connection to a Dire...
AWS Direct ConnectBGP routingRoute summarizationVPC route tables
Question #14Hybrid Connectivity
A company has expanded its network to the AWS Cloud by using a hybrid architecture with multiple AWS accounts. The company has set up a shared AWS account for the connection to its...
Route 53 ResolverPrivate Hosted ZonesHybrid DNSMulti-account DNS
Question #15Monitor and troubleshoot network issues
A company has multiple AWS accounts. Each account contains one or more VPCs. A new security guideline requires the inspection of all traffic between VPCs. The company has deployed...
AWS Transit GatewayTGW Appliance ModeStateful InspectionCross-AZ Routing
Question #16Secure and optimize network architectures
A company is using a NAT gateway to allow internet connectivity for private subnets in a VPC in the us-west-2 Region. After a security audit, the company needs to remove the NAT ga...
VPC EndpointsCloudWatch AgentSecurity GroupsVPC DNS
Question #17Design Network Solutions for Complex Infrastructures
An international company provides early warning about tsunamis. The company plans to use IoT devices to monitor sea waves around the world. The data that is collected by the IoT de...
Route 53 latency-based routingIoT device connectivityMulti-Region networkingGlobal traffic management
Question #18
A company is planning a migration of its critical workloads from an on-premises data center to Amazon EC2 instances. The plan includes a new 10 Gbps AWS Direct Connect dedicated co...
Direct ConnectMACsecSite-to-Site VPNNetwork Encryption
Question #19None
A network engineer must develop an AWS CloudFormation template that can create a virtual private gateway, a customer gateway, a VPN connection, and static routes in a route table....
CloudFormation troubleshootingAWS Site-to-Site VPNCloudFormation resource dependenciesAWS route tables
Question #20None
A company operates its IT services through a multi-site hybrid infrastructure. The company deploys resources on AWS in the us-east-1 Region and in the eu-west-2 Region. The company...
AWS Transit GatewayAWS Direct ConnectBGP Route AdvertisementHybrid Network Design
Question #21Design Complex Network Solutions
A company's network engineer needs to design a new solution to help troubleshoot and detect network anomalies. The network engineer has configured Traffic Mirroring. However, the m...
AWS Traffic MirroringGateway Load BalancerNetwork Security ScalingHigh Availability Design
Question #22
A company uses a hybrid architecture and has an AWS Direct Connect connection between its on-premises data center and AWS. The company has production applications that run in the o...
Route 53 ResolverHybrid DNSDNS forwardingPrivate Hosted Zones
Question #23Network Design for New and Existing Solutions
A government contractor is designing a multi-account environment with multiple VPCs for a customer. A network security policy requires all traffic between any two VPCs to be transp...
AWS Transit GatewayTGW routingNetwork inspectionHigh availability design
Question #24Implement Core Network Services
A company has deployed Amazon EC2 instances in private subnets in a VPC. The EC2 instances must initiate any requests that leave the VPC, including requests to the company's on- pr...
NAT GatewayPrivate Subnet NetworkingOutbound ConnectivityOperational Overhead
Question #25Design and Implement Hybrid Connectivity
A global company operates all its non-production environments out of three AWS Regions: eu- west-1, us-east-1, and us-west-1. The company hosts all its production workloads in two...
AWS Transit GatewayAWS Direct ConnectHybrid Cloud NetworkingVPN Connectivity
Question #26Optimize Network Performance and Cost
A company is building its website on AWS in a single VPC. The VPC has public subnets and private subnets in two Availability Zones. The website has static content such as images. T...
VPC EndpointsGateway EndpointsS3 Private AccessNAT Gateway Cost Optimization
Question #27Network Management and Operations
A company wants to improve visibility into its AWS environment. The AWS environment consists of multiple VPCs that are connected to a transit gateway. The transit gateway connects...
Transit Gateway Network ManagerDirect ConnectRoute Advertisement MonitoringCloudWatch Logs Insights
Question #28Network Security
A software company offers a software-as-a-service (SaaS) accounting application that is hosted in the AWS Cloud The application requires connectivity to the company's on-premises n...
AWS Direct ConnectMACsecNetwork encryptionHybrid connectivity
Question #29Network Design
A company delivers applications over the internet. An Amazon Route 53 public hosted zone is the authoritative DNS service for the company and its internet applications, all of whic...
Route 53 private hosted zonesSplit-horizon DNSVPC DNS configurationInternal DNS resolution
Question #30Design and Implement Network Management and Complex Network Architectures
A company is deploying an application. The application is implemented in a series of containers in an Amazon Elastic Container Service (Amazon ECS) cluster. The company will use th...
AWS ECS FargateNetwork Load BalancerAWS PrivateLinkSSL/TLS connectivity
Question #31Network Design
A company's development team has created a new product recommendation web service. The web service is hosted in a VPC with a CIDR block of 192.168.224.0/19. The company has deploye...
VPC Endpoint ServicePrivateLinkNetwork Load BalancerCross-VPC access
Question #32
A network engineer needs to update a company's hybrid network to support IPv6 for the upcoming release of a new application. The application is hosted in a VPC in the AWS Cloud. Th...
AWS Direct ConnectIPv6BGP peeringHybrid networking
Question #33Design and Implement Security and Compliance for Networks
A network engineer must provide additional safeguards to protect encrypted data at Application Load Balancers (ALBs) through the use of a unique random session key. What should the...
ALB security policyForward SecrecyTLS encryptionSession key protection
Question #34Network Implementation
A company has deployed a software-defined WAN (SD-WAN) solution to interconnect all of its offices. The company is migrating workloads to AWS and needs to extend its SD-WAN solutio...
AWS Transit Gateway ConnectBGP routingAS_PATH prependRoute preference
Question #35Connect On-premises to AWS
A company is planning to deploy many software-defined WAN (SD-WAN) sites. The company is using AWS Transit Gateway and has deployed a transit gateway in the required AWS Region. A...
Transit Gateway attachmentsSD-WAN integrationNetwork performanceVPC architecture
Question #36Implement AWS Networks
A company is deploying a new application on AWS. The application uses dynamic multicasting. The company has five VPCs that are all attached to a transit gateway Amazon EC2 instance...
AWS Transit GatewayDynamic multicastingIGMP multicastVPC networking
Question #37Manage and optimize network operations
A company has deployed a critical application on a fleet of Amazon EC2 instances behind an Application Load Balancer. The application must always be reachable on port 443 from the...
VPC Reachability AnalyzerSecurity group enforcementNetwork path validationAutomated network checks
Question #38Manage Network Operations
A security team is performing an audit of a company's AWS deployment. The security team is concerned that two applications might be accessing resources that should be blocked by ne...
VPC Flow LogsEKS CNINetwork traffic analysisFlow log configuration
Question #39
A data analytics company has a 100-node high performance computing (HPC) cluster. The HPC cluster is for parallel data processing and is hosted in a VPC in the AWS Cloud. As part o...
Route 53 ResolverDNS scalingVPC DNSHybrid DNS
Question #40Design and implement routing solutions
A company's network engineer is designing an active-passive connection to AWS from two on- premises data centers. The company has set up AWS Direct Connect connections between the...
AWS Direct ConnectBGP CommunitiesTransit GatewayActive-Passive Routing
Question #41
A real estate company is building an internal application so that real estate agents can upload photos and videos of various properties. The application will store these photos and...
VPC Interface EndpointNAT GatewayPrivate Subnet NetworkingCost Optimization
Question #42
A company has an AWS Direct Connect connection between its on-premises data center in the United States (US) and workloads in the us-east-1 Region. The connection uses a transit VI...
Direct Connect GatewayTransit GatewayMulti-Region NetworkingHybrid Cloud Connectivity
Question #43
A network engineer has deployed an Amazon EC2 instance in a private subnet in a VPC. The VPC has no public subnet. The EC2 instance hosts application code that sends messages to an...
IAM rolesVPC Interface EndpointsSQS connectivityPrivate subnet access
Question #44Design and Implement AWS Network Architectures
A network engineer needs to standardize a company's approach to centralizing and managing interface VPC endpoints for private communication with AWS services. The company uses AWS...
VPC EndpointsPrivateLinkRoute 53 ResolverCentralized Networking
Question #45
A company has created three VPCs: a production VPC, a nonproduction VPC, and a shared services VPC. The production VPC and the nonproduction VPC must each have communication with t...
AWS Transit GatewayTGW Route TablesVPC RoutingNetwork Segmentation
Question #46Implement AWS VPN Solutions
A company is using an AWS Site-to-Site VPN connection from the company's on-premises data center to a virtual private gateway in the AWS Cloud Because of congestion, the company is...
AWS Site-to-Site VPNVPN accelerationAWS Transit GatewayNetwork performance
Question #47Design Network Solutions
An Australian ecommerce company hosts all of its services in the AWS Cloud and wants to expand its customer base to the United States (US). The company is targeting the western US...
Transit GatewayTransit Gateway peeringMulti-region networkingCross-region connectivity
Question #48Migrate Existing Solutions
An IoT company sells hardware sensor modules that periodically send out temperature, humidity, pressure, and location data through the MQTT messaging protocol. The hardware sensor...
Network Load BalancerMQTT protocolBYOIPTCP listeners
Question #49Network Management and Operation
A company hosts an application on Amazon EC2 instances behind an Application Load Balancer (ALB). The company recently experienced a network security breach. A network engineer mus...
ALB loggingAmazon S3Amazon AthenaLog analysis
Question #50Network Implementation
A company is using Amazon Route 53 Resolver DNS Firewall in a VPC to block all domains except domains that are on an approved list. The company is concerned that if DNS Firewall is...
Route 53 Resolver DNS FirewallDNS Firewall fail openDNS fault tolerance

Page 1 of 7Next

study smarter, certify faster.

Product

Browse Exams
Pricing
PDF Downloads

Resources

Blog
Glossary
Topics
FAQ
Contact Us

Legal

Terms of Service
Privacy Policy
Cookie Policy
DMCA
Refund Policy

Company

About
Contact

© 2026 NerdExam. All rights reserved.Built for IT professionals

NerdExam is a trading name of WADL Solutions Limited, a company incorporated in Hong Kong (CR# 80143234). Registered office: Unit 2904-05, 29/F, Universal Trade Centre, 3 Arbuthnot Road, Central, Hong Kong.

CompTIA, AWS, Cisco, Microsoft, Google Cloud, Oracle, VMware, and other certification names referenced on this site are trademarks of their respective owners. NerdExam is not affiliated with, endorsed by, or sponsored by any certification vendor.