QCrusher.com
Offcanvas
Cloud
AWS
BrowseAWS
Cloud Practitioner
Pre-test
Practice Set 1
Official Sample Questions
Associate
General
Solutions Architect
Practice Set 1
Official Sample Questions
Solutions Architect Pro
Official Sample Questions
DevOps Pro
Practice Set 1
Security Specialty
Practice Set 1
Browse AWS
AWS
Cloud Practitioner
Pre-test
Practice Set 1
Official Sample Questions
Associate
General
Solutions Architect
Practice Set 1
Official Sample Questions
Solutions Architect Pro
Official Sample Questions
DevOps Pro
Practice Set 1
Security Specialty
Practice Set 1
Cloud Practitioner
Practice Set 1
Test your knowledge for the exam.
Which components are used by an EC2 instance in a private subnet to access a public API on the internet?
VPC Endpoint
Internet Gateway
Virtual Private Gateway
AWS PrivateLink
NAT Gateway
Elastic Load Balancer
It requires:
NAT Gateway
Internet Gateway
And also correct Route Table routes.
Check
Which components are used by an EC2 instance in a private subnet to access a public API on the internet?
Elastic Load Balancer
VPC Endpoint
Virtual Private Gateway
NAT Gateway
Internet Gateway
AWS PrivateLink
It requires:
NAT Gateway
Internet Gateway
And also correct Route Table routes.
Check
Which AWS Services can run OCI containers without you having to manage any EC2’s/hosts?
ECS Fargate
ECR
Lambda
EKS Fargate
ECS Anywhere
EKS Fargate, ECS Fargate and Lambda run serverless containers. ECS Anywhere is a service to run containers outside of AWS on
hardware/VMs
you manage. ECR is storage for container images, not to run containers on.
Check
Which service decouples 2 services where a producer of a message sends the message to the service and the consumer of the message needs to pull the message from the service?
SES
SNS
SQS
SSM
Amazon Simple Queue Service (Amazon SQS) lets you send, store, and receive messages between software components at any volume, without losing messages or requiring other services to be available.
Source
Check
What is a correct
name
of an Availability Zone?
use1-az1
Europe (Ireland)
us-east-1
eu-west-1a
eu-west-1a
is the Availability Zone
name
which is random associated per account to AZ ID’s
use1-az1
is the Availability Zone
ID
us-east-1
is a Region
Code
(it misses the a, b, c suffix)
Europe (Ireland)
is a Region
Name
Check
What do you need to configure on an EC2 to select an operating system?
Optical Disc Image (ISO or UDF)
Operating System Version (OSV)
Virtual Machine Image (VMI)
Amazon Machine Image (AMI)
Open Container Initiative (OCI)
An Amazon Machine Image (AMI) is an image provided by AWS that provides the information required to launch an instance. You must specify an AMI when you launch an instance. You can launch multiple instances from a single AMI when you require multiple instances with the same configuration. You can use different AMIs to launch instances when you require instances with different configurations.
Source
Check
If you need to store a copy of your data in your own country where an AWS Region is not present, which service(s) could you use? (Choose all that apply)
Edge Locations
Availability Zones
Snow Family
Local Zone
Outposts
Correct:
Outposts
Correct:
Local Zone
Correct:
Snow Family
Incorrect:
Edge Locations
Incorrect:
Availability Zones
Check
Which of the following storage options stores the data in a single Availability Zone, supports back-up, and can be used to run the Operating System on?
S3
Instance Storage (Ephemeral)
EBS
FSx
EFS
Amazon Elastic Block Store (Amazon EBS) is an easy-to-use, scalable, high-performance block-storage service designed for Amazon Elastic Compute Cloud (Amazon EC2).
Source
Check
Which storage service stores the data across all Availability Zones in a Region, but requires a mount point in every Availability Zone for instances to connect through NFSv4?
EBS
S3
EFS
Instance Storage (Ephemeral)
Amazon Elastic File System (EFS) provides a simple, serverless, set-and-forget elastic file system. With Amazon EFS, you can create a file system, mount the file system on an Amazon EC2 instance, and then read and write data to and from your file system.
Source
Check
Which service can be used to connect two VPCs with the least amount of steps?
NAT Peering
Transit Peering
VPC Gateway
NAT Gateway
Transit Gateway
VPC Peering
Correct: VPC Peering, initiate the connection on VPC A and accept the incoming peering request on B and let the VPC Peering propagate route tables.
Incorrect: Transit Gateway, would also be possible but requires a lot more steps compared to VPC Peering.
Incorrect: NAT Gateway is for public internet connectivity.
Services that don’t exist: NAT Peering, VPC Gateway, Transit Peering.
Check
Which services can be connected to Transit Gateway?
Transit Gateway
Elastic IP Address
Site-to-Site VPN
VPC
Direct Connect
Transit Gateways connect with other Transit Gateways, VPCs, Site-to-Site VPNs, Direct Connect. The only not supported service is an Elastic IP Address (EIP), which is a public IP address.
Check
Which service enables customers to physically connect to AWS?
Site-to-Site VPN
VPC Peering
Network Load Balancer
Global Accelerator
Direct Connect
The AWS Direct Connect cloud service is the shortest path to your AWS resources. While in transit, your network traffic remains on the AWS global network and never touches the public internet.
Source
Check
If you want to move data from EFS to S3, which service could you use?
Storage Gateway
Database Migration Service (DMS)
AWS Backup
DataSync
Source
Check
Which service can be used to offload reads from an RDS instance to save costs?
ElastiCache
Aurora
MemoryDB
OpenSearch
ElastiCache is designed to store key-value data in memory. The key is the query, and the value the result. Aurora just another RDS instance which is the most expensive service and does not add any value. OpenSearch is also very expensive and not designed for caching queries. MemoryDB is a Redis OSS-compatible, durable, in-memory database service for ultra-fast performance.
Check
Which database service is compatible with MongoDB?
Redshift
Aurora
DocumentDB
DynamoDB
MemoryDB
Amazon DocumentDB (with MongoDB compatibility) - Scale enterprise workloads with ease using a fully managed native JSON document database.
Source
Check
What are main features of a Landing Zone?
Deployment Pipeline for workloads
Implementing Security Guardrails
Manage access to AWS Accounts
Creating AWS Accounts
Control Tower supports creating AWS accounts, implementing security guardrails and managing access to AWS accounts. It does create a deployment pipeline for workloads.
Check
Which service can run OCI (Docker) containers? (Choose all that apply)
App Runner
ECR
Fargate
ECS
Lambda
They can all run OCI Docker containers, except for ECR because this service stores OCI images and does not run them for you.
Check
You have built a python function that can validate server side if a JWT token is still valid. You would like to access the function on a public URL and return the response. Which service or feature does offer this functionality? (Choose all that apply)
Lambda Function URL
API Gateway
CloudFront Edge Functions
Route 53
Route 53 is the only service that cannot trigger a lambda function on a URL.
Check
What are features of CloudFront?
Egress proxy service with caching
CloudFront optimizes latency without caching
CloudFront can cache data close end-users
Load Balancing Network Traffic across multiple Regions
Securely deliver content with low latency and high transfer speeds. CloudFront cannot load balance network traffic and cannot be used as a proxy service for egress network traffic like for example
Squid
.
Check
Next Chapter: Official Sample Questions