Scribd Logo
Upload

Welcome to Scribd!

  • 3er Quiz Curso AWS Solutions Architect (VPC) - Respuestasvf

    Uploaded by

    Luis Lino
    28 views9 pages
    The document describes how to associate a public IP address to an EC2 instance launched into a public subnet without one assigned. It lists three options, and the correct answer is to create an Elastic IP address and associate it with the instance. By default, instances deployed into public subnets will automatically receive a public IP. The document presents multiple choice questions about VPC configuration and security. It covers topics like VPC peering, internet gateways, security groups vs network ACLs, and public IP addressing for instances. The questions test knowledge of default VPC and subnet configuration options and limitations.

    Original Description:

    Original Title

    3er Quiz Curso AWS Solutions Architect (VPC)_respuestasvf

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    The document describes how to associate a public IP address to an EC2 instance launched into a public subnet without one assigned. It lists three options, and the correct answer is to create an Elastic IP address and associate it with the instance. By default, instances deployed into public subnets will automatically receive a public IP. The document presents multiple choice questions about VPC configuration and security. It covers topics like VPC peering, internet gateways, security groups vs network ACLs, and public IP addressing for instances. The questions test knowledge of default VPC and subnet configuration options and limitations.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    28 views9 pages

    3er Quiz Curso AWS Solutions Architect (VPC) - Respuestasvf

    Uploaded by

    Luis Lino
    The document describes how to associate a public IP address to an EC2 instance launched into a public subnet without one assigned. It lists three options, and the correct answer is to create an Elastic IP address and associate it with the instance. By default, instances deployed into public subnets will automatically receive a public IP. The document presents multiple choice questions about VPC configuration and security. It covers topics like VPC peering, internet gateways, security groups vs network ACLs, and public IP addressing for instances. The questions test knowledge of default VPC and subnet configuration options and limitations.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 9

    Having just created a new VPC and launching an instance into its public 0/1

    subnet, you realise that you have forgotten to assign a public IP to the
    instance during creation. What is the simplest way to make your instance
    reachable from the outside world? *

    Create an Elastic IP and new network interface. Associate the Elastic IP to the new
    network interface, and the new network interface to your instance.

    Associate the private IP of your instance to the public IP of the internet gateway.

    Create an Elastic IP address and associate it with your instance.

    Nothing – by default all instances deployed into any public subnet will
    automatically receive a public IP.

    Respuesta correcta

    Create an Elastic IP address and associate it with your instance.

    True or False: A subnet can span multiple Availability Zones. * 1/1

    FALSE

    TRUE
    Are you permitted to conduct your own vulnerability scans on your own 1/1
    VPC without alerting AWS first? *

    Yes. You can perform any scan without alerting AWS first.

    No. You must always alert AWS before performing any type of vulnerability scan

    Depends on the type of scan and the service being scanned. Some scans can be
    performed without alerting AWS, some require you to alert.

    By default, instances in new subnets in a custom VPC can communicate 0/1


    with each other across Availability Zones. *

    TRUE

    FALSE

    Respuesta correcta

    TRUE

    True or False: You can accelerate your application by adding a second 1/1
    internet gateway to your VPC. *

    FALSE

    TRUE
    When peering VPCs, you may peer your VPC only with another VPC in 1/1
    your same AWS account. *

    FALSE

    TRUE

    True or False: An application load balancer must be deployed into at least 0/1
    two subnets. *

    TRUE

    FALSE

    Respuesta correcta

    TRUE
    Which of the following is a chief advantage of using VPC endpoints to 1/1
    connect your VPC to services such as S3? *

    Traffic between your VPC and the other service does not leave the Amazon
    network.

    VPC Endpoints offer a faster path through the public internet than you can realize
    with a NAT instance.

    VPC Endpoints require public IP addresses, offering rapid connectivity from the
    public internet.

    VPC endpoints are dedicated hardware devices that cannot be accessed without the
    correct IAM credentials.

    Which of the following allows you to SSH or RDP into an EC2 instance 1/1
    located in a private subnet? *

    NAT instance

    NAT gateway

    Internet gateway

    Bastion Host
    How many internet gateways can I attach to my custom VPC * 1/1

    One per Availability Zone.

    You have five VPCs in a 'hub and spoke' configuration, with VPC 'A' in the 1/1
    center and individually paired with VPCs 'B', 'C', 'D', and 'E', which make
    up the 'spokes'. There are no other VPC connections. Which of the
    following VPCs can VPC 'B' communicate with directly? *

    VPC 'A'

    VPCs 'A' and 'C'

    VPCs 'A' and 'E'

    VPCs 'C', 'D', and 'E'


    Which of the following is true? * 1/1

    Security Groups are stateful and Network Access Control Lists are stateless.

    Security Groups are stateless and Network Access Control Lists are stateful.

    Both Security Groups and Network Access Control Lists are stateless.

    Both Security Groups and Network Access Control Lists are stateful.

    Which of the following offers the largest range of internal IP addresses? * 1/1

    /16

    /28

    /24

    /20
    Security groups act like a firewall at the instance level, whereas _________ 1/1
    are an additional layer of security that act at the subnet level. *

    Network ACLs

    DB Security Groups

    VPC Security Groups

    Route Tables

    In a default VPC, all Amazon EC2 instances are assigned two IP 1/1
    addresses at launch. What are they? *

    A private IP address & public IP address

    A public IP address & secret IP address

    An Elastic IP address & public IP address

    An IPv6 address and Elastic IP address


    When I create a new security group, all outbound traffic is allowed by 1/1
    default. *

    TRUE

    FALSE

    By default, how many VPCs am I allowed in each AWS region? * 1/1

    5
    Select the incorrect statement. * 1/1

    In Amazon VPC, an instance retains its private IP.

    It is possible to have private subnets in a VPC.

    In Amazon VPC, an instance does not retain its private IP.

    You may have only 1 internet gateway per VPC.

    To save administration headaches, a consultant advises that you leave all 1/1
    security groups in web-facing subnets open on port 22 to 0.0.0.0/0
    CIDR. That way, you can connect wherever you are in the world. Is this a
    good security design? *

    Yes

    No

    Este formulario se creó en Certimas.

    Formularios

    You might also like