Skip to main content

AWS Certification Study - VPC questions Part I

1.You are going to design an application which should run in a virtual network closely resembles a traditional network that you'd operate in your own data center, with the benefits of using the scalable infrastructure of AWS. Which AWS feature allows you to define the virtual network?
    a) VGW
    b) VPC
    c) IGW
    d) Bastion Host
---------------------------------------------------------------------------------------------------------------------------
2.You have a EC2 instance which should be connected to the internet. You have created a VPC with private and public subnets. What is the best strategy to put this EC2 instance?

    a) Use public subnet for the EC2 instance
    b) Use private subnet for the EC2 instance because it is more secure
    c) Use Private subnet with Bastion host
    d) Use Private subnet with Network Gateway
---------------------------------------------------------------------------------------------------------------------------
3. A VPC spans all the Availability Zones in the region.True or False

   a) True
   b) False
--------------------------------------------------------------------------------------------------------------------------- 
 4. A Subnet spans many Availability Zones in the region. True or False?
  
    a) True
    b) False
---------------------------------------------------------------------------------------------------------------------------
5. If a subnet's traffic is routed to an internet gateway, the subnet is known as?

    a) Public Subnet
    b) Private Subnet
    c) Default Subnet
    d) Non Default Subnet
--------------------------------------------------------------------------------------------------------------------------- 
6. If a subnet doesn't have a route to the internet gateway, but has its traffic routed to a virtual private gateway for a Site-to-Site VPN connection, the subnet is known as?
 
    a) VPN-only-subnet
    b) VPC-Only-subnet
    c) VGW-only-subnet
    d) Private subnet
 ---------------------------------------------------------------------------------------------------------------------------
7. What is the maximum number of IP addresses allowed in a VPC with IPv4 CIDR block?
   
    a) 65536
    b) 32676
    c) 256
    d) 1024 
---------------------------------------------------------------------------------------------------------------------------
8. Select the VPC with maximum number of IP addresses.

    a) /16
    b) /20
    c)/28
    d) /24 
--------------------------------------------------------------------------------------------------------------------------
9. Suppose you have subnet with CIDR block 10.0.0.0/24. How many IP addresses are available for your application to use?

    a) 256
    b) 255
    c) 254
    d) 251 
--------------------------------------------------------------------------------------------------------------------------
10. Which of the following is true,
 
    a) You can create a VPC with multiple IPV4 CIDR blocks
    b) You can associate a secondary CIDR block to a VPC with one CIDR block
    c) A VPC can never have multiple CIDR blocks
    d) A VPC can have a maximum of 2 CIDR blocks
--------------------------------------------------------------------------------------------------------------------------
11. You have a subnet which should reach computers in the corporate network over the Site-to-Site VPN connection. What routing table entry should be there for your subnet?
 
    a) Route to IGW
    b) Route to NAT instance
    c) Route to NAT Gateway
    d) Route to VGW
--------------------------------------------------------------------------------------------------------------------------
12. You need to capture the traffic that flows to and from the network interfaces in your VPC or subnet. Then which log mechanism you should be using?

    a) VPC Flow logs
    b) CloudTrail
    c) CloudWatch
    d) Splunk
--------------------------------------------------------------------------------------------------------------------------
13. AWS supports Site-to-Site VPN connections over IPv6.
 
    a) True
    b) False
--------------------------------------------------------------------------------------------------------------------------
14. When you have a default VPC, each default subnet is a public subnet.
    
    a) True
    b) False
--------------------------------------------------------------------------------------------------------------------------
15. By default, each instance that you launch into a nondefault subnet has a private IPv4 address, but no public IPv4 address.  
    
    a) True    
    b) False
 --------------------------------------------------------------------------------------------------------------------------
Answers:
1)b  2)a 3)a 4)b 5)a 6) 7)a 8)a 9)b 10)b 11)d 12)a 13)b 14)a 15)a

Comments

Post a Comment

Popular posts from this blog

How to format and install macOS in your old Macbook/ iMac

 You can follow these steps to install a mac OS on an old Mac book following these steps. Here I assume that you have the actual bootable CD for the OS for installation. 1. Restart the laptop 2. Press Command + R key until it shows recovery mode 3. Open Disk Utilities 4. Select the hard drive and try to partition the drive. For example I have created a partition called Partition1 5. Insert bootable CD and restart the laptop. When option comes choose to boot from the CD. 6. Choose partition1 as the place to install the OS 7. Continue the installation process. 8. Once installation is completed then it might need to restart for further updates. 9. Most of the times a more recent compatible version of the OS might be available. In order to upgrade to the more latest compatible OS follow below steps. 11. Find the latest compatible version of OS. 12. Go to apple support sites and manually download the image and click to install. 13. Follow installation instructions and this would upgrade you
Post a Comment
Read more

How to create a minikube single node cluster for learning Kubernetes

In this post I will explain how to setup a minikube single node kubernetes cluster using AWS EC2 instance which would help anyone who is trying to learn kubernetes and also help them to gain practical knowledge in kubernetes by running kubernetes commands, creating kubernetes objects etc. Minikube is a single node kubernetes cluster which means a kubernetes cluster with only one node that is a single VM. Minikube is only used for learning purposes and it is not an alternative for a real kubernetes cluster and should not be used for development and production usage. In this example I have launched an AWS EC2 instance with below configuration where I will install minikube and related tools. AWS EC2 Instance Configuration AMI: Ubuntu Free tier eligible 64 bit Instance type : t2-large ( For me t2-small or t2-micro is giving performance issues due to less memory) Once the EC2 instance is up and running, login to the instance using below command on terminal. If you are using wi
27 comments
Read more

log4j - How to write log to multiple log files using log4j.properties

In Java applications some times you may need to write your log messages to specific log files with its own specific log properties. If you are using log4j internally then first step that you need to do is to have a proper log4j.properties file. Below example shows 2 log4j appenders which write to 2 different log files, one is a debug log and another one is a reports log. Debug log file can have all log messages and reports log can have log messages specific to reporting on say splunk monitoring. # Root logger option log4j.rootLogger=ALL,STDOUT,debugLog log4j.logger.reportsLogger=INFO,reportsLog log4j.additivity.reportsLogger=false     log4j.appender.STDOUT=org.apache.log4j.ConsoleAppender log4j.appender.STDOUT.layout=org.apache.log4j.PatternLayout log4j.appender.STDOUT.layout.ConversionPattern=%d{yyyy-MM-dd HH:mm:ss} %-5p %C:%L - %m%n     # Direct log messages to a log file log4j.appender.debugLog=org.apache.log4j.RollingFileAppender log4j.appender.debugLo
25 comments
Read more