Welcome to FrankensTest

1.- Which of the following are true of a default VPC? (Select TWO.)

1. A default VPC spans multiple regions.

2. AWS creates a default VPC in each region.

3. AWS creates a default VPC in each Availability Zone.

4. By default, each default VPC is available to one AWS account.

2.- Which of the following is a valid CIDR for a VPC or subnet?

1. 10.0.0.0/28

2. 10.0.0.0/29

3. 10.0.0.0/8

4. 10.0.0.0/15

3.- Which of the following are true regarding subnets? (Select TWO.)

1. A VPC must have at least two subnets.

2. A subnet must have a CIDR that’s a subset of the CIDR of the VPC in which it resides.

3. A subnet spans one Availability Zone.

4. A subnet spans multiple Availability Zones.

4.- Which of the following is true of a new security group?

1. It contains an inbound rule denying access from public IP addresses.

2. It contains an outbound rule denying access to public IP addresses.

3. It contains an outbound rule allowing access to any IP address.

4. It contains an inbound rule allowing access from any IP address.

5. It contains an inbound rule denying access from any IP address.

5.- What’s the difference between a security group and a network access control list (NACL)? (Select TWO.)

1. A network access control list operates at the instance level.

2. A security group operates at the instance level.

3. A security group operates at the subnet level.

4. A network access control list operates at the subnet level.

6.- Which of the following is true of a VPC peering connection?

1. It’s a private connection that connects more than three VPCs.

2. It’s a private connection between two VPCs.

3. It’s a public connection between two VPCs.

4. It’s a virtual private network (VPN) connection between two VPCs.

7.- What are two differences between a virtual private network (VPN) connection and a Direct Connect connection? (Select TWO.)

1. A Direct Connect connection offers predictable latency because it doesn’t traverse the internet.

2. A VPN connection uses the internet for transport.

3. A Direct Connect connection uses AES 128- or 256-bit encryption.

4. A VPN connection requires proprietary hardware.

8.- Which of the following are true about registering a domain name with Route 53? (Select T WO.)

1. The registrar you use to register a domain name determines who will host DNS for that domain.

2. You can register a domain name for a term of up to 10 years.

3. Route 53 creates a private hosted zone for the domain.

4. Route 53 creates a public hosted zone for the domain.

9.- Which of the following Route 53 routing policies can return set of randomly ordered values?

1. Simple

2. Multivalue Answer

3. Failover

4. Latency

10.- Which of the following Route 53 routing policies doesn’t use health checks?

1. Latency

2. Multivalue Answer

3. Simple

4. Geolocation

11.- Which of the following types of Route 53 health checks works by making a test connection to a TCP port?

1. Simple

2. CloudWatch alarm C. Endpoint

3. Calculated

12.- You have two EC2 instances hosting a web application. You want to distribute 20 percent of traffic to one instance and 80 percent to the other. Which of the following Route 53 routing policies should you use?

1. Weighted

2. Failover

3. Multivalue Answer

4. Simple

13.- Resources in a VPC need to be able to resolve internal IP addresses for other resources in the VPC. No one outside of the VPC should be able to resolve these addresses. Which of the following Route 53 resources can help you achieve this?

1. A public hosted zone

2. A private hosted zone

3. Domain name registration

4. Health checks

14.- You want to provide private name resolution for two VPCs using the domain name company.pri. How many private hosted zones do you need to create?

1. 1

2. 2

3. 3

4. 4

15.- On how many continents are CloudFront edge locations distributed?

1. 7

2. 6

3. 5

4. 4

16.- From where does CloudFront retrieve content to store for caching?

1. Regions

2. Origins

3. Distributions

4. Edge locations

17.- Which CloudFront distribution type requires you to provide a media player?

1. Streaming

2. RTMP

3. Web

4. Edge

18.- You need to deliver content to users in the United States and Canada. Which of the following edge location options will be the most cost effective for your CloudFront distribution?

1. United States, Canada, and Europe

2. United States, Canada, Europe, and Asia

3. United States, Canada, Europe, Asia, and Africa

4. All edge locations

19.- Approximately how many different CloudFront edge locations are there?

1. About 50

2. More than 150

3. More than 300

4. More than 500

20.- Which of the following are valid origins for a CloudFront distribution? (Select TWO.)

1. EC2 instance

2. A public S3 bucket

3. A private S3 bucket that you don’t have access to

4. A private S3 bucket that you own

AWS Practitioner Chapter 10

Questions from the book AWS Certified Cloud Practitioner Study Guide by Ben Piper and David Clinton.