Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Amazon ANS-C01 Exam - Topic 1 Question 64 Discussion

A company has multiple VPCs with subnets that use IPv4. Traffic from the VPCs to the internet uses a NAT gateway. The company wants to transition to IPv6.A network engineer creates multiple IPv6-only subnets in an existing testing VPC. The network engineer deploys a new Amazon EC2 instance that has an IPv6 address into one of the subnets. During testing, the network engineer discovers that the new EC2 instance is not able to communicate with an IPv4-only service through the internet. The network engineer needs to enable the IPv6 EC2 instance to communicate with the IPv4-only service.Which solution will meet this requirement?
A) Enable DNS64 for the IPv6-only subnets. Update the route tables for the IPv6-only subnets to send traffic through the NAT gateway.
B) Enable NAT64 for the testing VPC. Reconfigure the existing NAT gateway to support IPv6.
C) Enable DNS64 for the new EC2 instance. Create a new egress-only internet gateway that supports IPv6.
D) Enable NAT64 for each route table. Create a new NAT gateway that supports both IPv4 and IPv6.

Amazon ANS-C01 Exam - Topic 1 Question 64 Discussion

Actual exam question for Amazon's ANS-C01 exam
Question #: 64
Topic #: 1
[All ANS-C01 Questions]

A company has multiple VPCs with subnets that use IPv4. Traffic from the VPCs to the internet uses a NAT gateway. The company wants to transition to IPv6.

A network engineer creates multiple IPv6-only subnets in an existing testing VPC. The network engineer deploys a new Amazon EC2 instance that has an IPv6 address into one of the subnets. During testing, the network engineer discovers that the new EC2 instance is not able to communicate with an IPv4-only service through the internet. The network engineer needs to enable the IPv6 EC2 instance to communicate with the IPv4-only service.

Which solution will meet this requirement?

Show Suggested Answer Hide Answer
Suggested Answer: A

Understanding the Issue: The IPv6-only EC2 instance cannot communicate with IPv4-only services because IPv6 and IPv4 are not directly compatible. To bridge this gap, DNS64 and NAT64 are used together. However, AWS NAT gateways do not natively support NAT64, but you can use DNS64 to translate IPv4 DNS records (A records) into IPv6-compatible addresses (AAAA records).

DNS64 for IPv6-Only Subnets: DNS64 is a service that synthesizes AAAA records for IPv4-only services. This allows IPv6-only clients to resolve IPv4 addresses as IPv6-compatible addresses, enabling communication through the NAT gateway.

NAT Gateway with Route Table Updates: The NAT gateway enables outbound communication from private subnets to the internet. Updating the route tables for IPv6-only subnets to send traffic through the NAT gateway ensures that the IPv6 EC2 instance can reach IPv4 services.


by Brent at May 04, 2026, 02:11 PM

Limited Time Offer

25%

Off

Get Premium ANS-C01 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Leah
1 month ago
I practiced a similar question where we had to configure NAT gateways for IPv6, but I can't recall if we needed a separate gateway for IPv4 communication.
upvoted 0 times
...
Gilbert
1 month ago
I think enabling DNS64 might help, but I’m a bit confused about whether it’s necessary to update the route tables too.
upvoted 0 times
...
Tawna
1 month ago
I remember studying NAT64 and how it allows IPv6 instances to communicate with IPv4 services, but I'm not sure if I need to enable it for the entire VPC or just the instance.
upvoted 0 times
...

Save Cancel