This document provides sample questions and answers from an AWS Advanced Networking Specialty exam practice test. It includes 10 multiple choice questions covering topics like Amazon CloudFront cache behaviors, VPC flow logs, AWS Direct Connect configurations, and VPN connectivity solutions. The answers provided are intended to help students prepare for the actual certification exam.

1. AWS – Certified
Advanced Networking
Specialty Exam Dumps

2. Log on to www.testpreptraining.com for real exam dumps
AWS – Advance Network Specialty Exam
Dumps
1. Which one of the following is not true about Amazon Cloud Front
cache behaviors?
A. Forward query strings to the origin, and cache based on all parameters in the query
string.
B. Don't forward query strings to the origin at all then Cloud Front doesn?t cache based on
query string parameters.
C. For RTMP distributions, you can configure Cloud Front to forward query string
parameters to your origin.
D. Forward query strings to the origin, and cache based on specified parameters in the
query string.
2. You have a VPC and EC2 Instances hosted in the subnet. You need to
diagnose layer 7 traffic and see which requests are ACCEPTED and
REJECTED. Which of the following would help in fulfilling this
requirement?
A. Using Cloud watch logs
B. Enabling VPC Flow Logs
C. Enabling Cloud Trail
D. Installing IDS on each Instance
3. A company is planning on using a Cloud front Distribution. The origin
will be an 53 bucket They want to ensure that users cannot access the
objects in the 53 bucket via the public URL of the bucket objects. How
can you accomplish this? Please select:
A. Create a Cloud front Origin identity which has access via the AM policy
B. Place an IAM policy which ensures that users cannot access the objects
C. Create a Cloud front Origin identity which has access via the bucket policy
D. Create a separate lAM user that has access via the bucket policy
4. Your IT Security department has deployed a firewall on an AWS EC2
Instance. They have mandated at all traffic from certain applications
needs to move through the firewall. In such a case what considerations
should be made for the EC2 instance for maximum performance?
A. Driver support for the Intel Virtual function and Elastic Network Adapter (ENA)
B. Consider using an Amazon Linux AMI only

3. Log on to www.testpreptraining.com for real exam dumps
C. Consider using NACL's
D. The underlying Instance type
5. Your company is planning on hosting their own VPN server in AWS.
This will be hosted on an EC2 instance and using a software from the
AWS Marketplace. You are tasked with ensuring optimal performance of
the underlying VPN server. Which of the following aspects would you
consider? Choose 2 answers from the options given below.
A. Understand the packet limitations In the infrastructure
B. Ensure that the instance is using EBS optimized Volumes
C. Use a Network load balancer for scaling
D. Ensure that the instance is using Enhanced Networking
6. You have just recently set up a web and database tier in a VPC and
hosted the application. When testing the application, you are not able to
reach the home page for the app. You have verified the security groups.
What can help you diagnose the issue.
A. Use AWS Guard Duty to analyze the traffic
B. Use the AWS Trusted Advisor to see what can be done.
C. Use AWS WAF to analyze the traffic
D. Use VPC Flow logs to diagnose the traffic
7. Your company has setup an AWS Direct Connect connection with the
help of an AWS Partner. The customer gateway Is In an on-premise data
center. Your operations department needs to be informed whenever the
Direct Connect connection is down. How can you achieve this?
A. Use Cloud watch logs to check for the state of the tunnel
B. Use the AWS Direct Connect tunnel logging facility to check for any failures
C. Use Cloud watch metrics to check for the state of the tunnel
D. You will anyway be notified if the AWS Direct Connect connection is down.
8. You need to create a Private VIF for an existing AWS Direct Connect
connection. Which of the following is required during the configuration
process?
A. VLAN ID
B. Virtual Gateway
C. The Peer Public IP
D. Prefixes to advertise

4. Log on to www.testpreptraining.com for real exam dumps
9. You have configured a hosted zone in Route 53. You need to have the
ability to see the types of records being requested to the zone. How can
you configure this?
A. Configure Cloud trail
B. Configure VPC Flow Logs
C. Configure Cloud watch metrics
D. Configure Amazon Route 53 logging
10. Your company has many remote branch offices that need to connect
with your AWS VPC. Which of the following can help achieve this
connectivity in an easy manner?
A. AWS Direct Connect with a Private VIF
B. AWS Direct Connect with a Public V1F
C. VPC Peering
D. VPN Cloud hub

5. Log on to www.testpreptraining.com for real exam dumps
Answers
1. (C) For RTMP distributions, you can configure Cloud Front to forward query
string parameters to your origin.
2. (B) Enabling VPC Flow Logs
3. (C) Create a Cloud front Origin identity which has access via the bucket policy
4. (D) The underlying Instance type
5. (A) Understand the packet limitations In the infrastructure, (D) Ensure that the
instance is using Enhanced Networking
6. (D) Use VPC Flow logs to diagnose the traffic
7. (C) Use Cloud watch metrics to check for the state of the tunnel
8. (A) VLAN ID, (B) Virtual Gateway
9. (D) Configure Amazon Route 53 logging
10. (D) VPN Cloud hub

6. Microsoft
• Azure Fundamentals (AZ-900)
• Azure Administrator (AZ-103)
• Azure Security (AZ-500)
• Azure AI Solution (AI-100)
• Azure Technologies (AZ-300)
• Azure Architect Design (AZ-
301)
• Azure DevOps Solution (DP-
200)
Amazon (AWS)
• AWS SysOps Administrator
• AWS Solutions Architect
Associate
• AWS Machine Learning
• AWS Alexa Skill Builder
• AWS Big Data – Specialty
• AWS Cloud Practitioner
• AWS Developer - Associate
Google
• GCP Data Engineer
• GCP Cloud Engineer
• GCP DevOps Engineer
• GCP Cloud Network
• GCP Cloud Security
CompTIA
• CompTIA IT Fundamentals
(ITF+)
• CompTIA Project+ (PK0-
004)
• CompTIA Security+ (SY0-
501)
• CompTIA Network+ (N10-
007)
• CompTIA Cloud+ (CV0-
002)
Our Popular Exam Preps