MultipleChoice
A company's network engineer needs to evaluate and monitor DNS traffic The company uses Amazon Route 53 as the DNS service for its public hosted zone All DNS queries must be captured for future analysis
What should the network engineer do to meet these requirements?
OptionsMultipleChoice
You deploy an Amazon EC2 instance that runs a web server into a subnet in a VPC. An Internet gateway is attached, and the main route table has a default route (0.0.0.0/0) configured with a target of the Internet gateway.
The instance has a security group configured to allow as follows:
* Protocol: TCP
* Port: 80 inbound, nothing outbound
The Network ACL for the subnet is configured to allow as follows:
* Protocol: TCP
* Port: 80 inbound, nothing outbound
When you try to browse to the web server, you receive no response.
Which additional step should you take to receive a successful response?
OptionsMultipleChoice
A multinational organization has applications deployed in three different AWS regions. These applications must securely communicate with each other by VPN. According to the organization's security team, the VPN must meet the following requirements:
* AES 128-bit encryption
* SHA-1 hashing
* User access via SSL VPN
* PFS using DH Group 2
* Ability to maintain/rotate keys and passwords
* Certificate-based authentication
Which solution should you recommend so that the organization meets the requirements?
OptionsMultipleChoice
A Network Engineer needs to create a public virtual interface on the company's AWS Direct Connect connection and only import routes which originated from the same region as the Direct Connect location
What action should accomplish this?
Options