1. You must design a VPC to a web application consists of an elastic load balancer (ELB). a fleet of web / RDS applications and database servers All the infrastructure must be spread over 2 Availability Zones. What VPC configuration works while ensuring the database is not available on the Internet?

A) None
B) A subnet public for ELB two private subnets for web servers, two private subnets for RDS
C) Two subnets for public ELB two private subnets for web servers and two subnets for RDS
D) Two subnets for public ELB two subnets public for web servers and two subnets public for RDS
E) A subnet public for ELB public subnet for web servers, and a private subnet for the database


2. You run a web application on AWS comprising the following components an elastic load balancer (ELB) a group of auto-scaling EC2 instances running Linux / PHP / Apache and Relational Database Service (RDS) My SQL . What security measures fall into the AWS responsibility?

A) None
B) Ensure all communications between EC2 instances and ELB is encrypted
C) Protect EC2 case against unsolicited applying the principle of least privileged access access
D) nstall latest security patches on ELB. RDS EC2 instances
E) Protect against IP spoofing or packet sniffing


3. A user intends to evaluate AWS for their internal use. The user does not want to incur charges on his account in the assessment. Among AWS services mentioned below would be burdened with so it is used?

A) None
B) AWS S3 with 1 GB of storage
C) AWS micro eg running 24 hours a day
D) AWS ELB running 24 hours a day
E) AWS PIOPS volume of 10 GB size


4. You have two instances within a Virtual Private Cloud Elastic Compute Cloud (EC2) (VPC) in the same area Availability (AZ), but in different subnets. An instance is running a database and one instance an application to interface with the database. You want to confirm that they can communicate with each other for your application works correctly. What two things do we need to confirm in VPC settings so that they can communicate EC2 instances inside the VPC? ((Select 2 replies))(Select 2answers)

A) LCD network that allows communication between the two subnets.
B) The default route is set to NAT instance or Internet Gateway (1GW) for them to communicate.
C) The two cases are the same instance class and using the same key pair.
D) Security groups are configured to allow the host application to talk to the database on the right port / protocol.



5. You have a Linux Web Server EC2 instance running in a VPC Instance is a public subnet and an EIP associated with it so you can connect to it over the Internet via HTTP or SSH L proceedings was also fully accessible at the last connected via SSH. and has also been serving Web requests on port 80. Now, you are not able to SSH into the host he responds to web requests on port 80 that worked the last time that you checked You have double checked that all network configuration settings (NACLS security etc.) are properly configured (and you havenà ¬ yt made changes to those anyway, since you were able to reach the last instance) routing tables groups . Igwa ¬ YEIP .. You look at the EC2 Console and notice that shows system status monitoring à ¬ Å?impaired.à ¬ Ÿ What should be your next step in troubleshooting and seek the return of example a healthy state so that you can log in again?

A) Stop and start the instance that he will redeploy on a healthy host system that will most likely fix the system status Impaired
B) Add another elastic network interface entity trying to connect via the new path from the net work stack of the OS can be locked causes the system state impaired
C) Restart your instance for the operating system will boot luck in a clean and healthy as most likely fix the system status Impaired
D) Add another private IP address dynamic instance and I try to connect via new carpet path, since the network stack of the operating system can be locked causes à ¬ ¬ Å?impairedà system status.
E) None