AWS-SysOps Amazon Exam Questions and Free Practice Test

Question 55

- (Topic 1)
You need to design a VPC for a web-application consisting of an Elastic Load Balancer (ELB). a fleet of web/application servers, and an RDS database The entire Infrastructure must be distributed over 2 availability zones.
Which VPC configuration works while assuring the database is not available from the Internet?

A. One public subnet for ELB one public subnet for the web-servers, and one private subnet for the database

B. One public subnet for ELB two private subnets for the web-servers, two private subnets for RDS

C. Two public subnets for ELB two private subnets for the web-servers and two private subnets for RDS

D. Two public subnets for ELB two public subnets for the web-servers, and two public subnets for RDS

Correct Answer:A

Question 56

- (Topic 2)
A sys admin is trying to understand EBS snapshots. Which of the below mentioned statements will not be
useful to the admin to understand the concepts about a snapshot?

A. The snapshot is synchronous

B. It is recommended to stop the instance before taking a snapshot for consistent data

C. The snapshot is incremental

D. The snapshot captures the data that has been written to the hard disk when the snapshot command was executed

Correct Answer:A

The AWS snapshot is a point in time backup of an EBS volume. When the snapshot command is executed it will capture the current state of the data that is written on the drive and take a backup. For a better and consistent snapshot of the root EBS volume, AWS recommends stopping the instance. For additional volumes it is recommended to unmount the device. The snapshots are asynchronous and incremental.

Question 57

- (Topic 3)
A user has created a VPC with public and private subnets using the VPC Wizard. The VPC has CIDR 20.0.0.0/16. The private subnet uses CIDR 20.0.0.0/24. Which of the below mentioned entries are required in the main route table to allow the instances in VPC to communicate with each other?

A. Destination : 20.0.0.0/24 and Target : VPC

B. Destination : 20.0.0.0/16 and Target : ALL

C. Destination : 20.0.0.0/0 and Target : ALL

D. Destination : 20.0.0.0/24 and Target : Local

Correct Answer:D

Question 58

- (Topic 3)
A user has configured an SSL listener at ELB as well as on the back-end instances. Which of the below
mentioned statements helps the user understand ELB traffic handling with respect to the SSL listener?

A. It is not possible to have the SSL listener both at ELB and back-end instances

B. ELB will modify headers to add requestor details

C. ELB will intercept the request to add the cookie details if sticky session is enabled

D. ELB will not modify the headers

Correct Answer:D

When the user has configured Transmission Control Protocol (TCP. or Secure Sockets Layer (SSL. for both front-end and back-end connections of the Elastic Load Balancer, the load balancer forwards the request to the back-end instances without modifying the request headers unless the proxy header is enabled. SSL does not support sticky sessions. If the user has enabled a proxy protocol it adds the source and destination IP to the header.

Question 59

- (Topic 3)
The compliance department within your multi-national organization requires that all data for your customers that reside in the European Union (EU) must not leave the EU and also
data for customers that reside in the US must not leave the US without explicit authorization.
What must you do to comply with this requirement for a web based profile management application running on EC2?

A. Run EC2 instances in multiple AWS Availability Zones in single Region and leverage an Elastic Load Balancer with session stickiness to route traffic to the appropriate zone to create their profile

B. Run EC2 instances in multiple Regions and leverage Route 53's Latency Based Routing capabilities to route traffic to the appropriate region to create their profile

C. Run EC2 instances in multiple Regions and leverage a third party data provider to determine if a user needs to be redirect to the appropriate region to create their profile

D. Run EC2 instances in multiple AWS Availability Zones in a single Region and leverage a third party data provider to determine if a user needs to be redirect to the appropriate zone to create their profile

Correct Answer:C

Question 60

- (Topic 1)
What would happen to an RDS (Relational Database Service) multi-Availability Zone deployment of the primary OB instance fails?

A. The IP of the primary DB instance is switched to the standby OB instance

B. The RDS (Relational Database Service) DB instance reboots

C. A new DB instance is created in the standby availability zone

D. The canonical name record (CNAME) is changed from primary to standby

Correct Answer:D

START AWS-SysOps EXAM