ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Advanced Networking - Specialty ANS-C01 All Questions

View all questions & answers for the AWS Certified Advanced Networking - Specialty ANS-C01 exam
Go to Exam

Exam AWS Certified Advanced Networking - Specialty ANS-C01 topic 1 question 133 discussion

Exam question from Amazon's AWS Certified Advanced Networking - Specialty ANS-C01
Question #: 133
Topic #: 1
[All AWS Certified Advanced Networking - Specialty ANS-C01 Questions]

A company's application is deployed on Amazon EC2 instances in a single VPC in an AWS Region. The EC2 instances are running in two Availability Zones. The company decides to use a fleet of traffic inspection instances from AWS Marketplace to inspect traffic between the VPC and the internet. The company is performing tests before the company deploys the architecture into production.

The fleet is located in a shared inspection VPC behind a Gateway Load Balancer (GWLB). To minimize the cost of the solution, the company deployed only one inspection instance in each Availability Zone that the application uses.

During tests, a network engineer notices that traffic inspection works as expected when the network is stable. However, during maintenance of the inspection instances, the internet sessions time out for some application instances. The application instances are not able to establish new sessions.

Which combination of steps will remediate these issues? (Choose two.)

  • A. Deploy one inspection instance in the Availability Zones that do not have inspection instances deployed.
  • B. Deploy one additional inspection instance in each Availability Zone where the inspection instances are deployed.
  • C. Enable the cross-zone load balancing attribute for the GWLB.
  • D. Deploy inspection instances in an Auto Scaling group. Define a scaling policy that is based on CPU load.
  • E. Attach the GWLB to all Availability Zones in the Region.
Show Suggested Answer Hide Answer
Suggested Answer: BC 🗳️
by Balasmaniam at June 11, 2023, 5:19 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Balasmaniam
Highly Voted 1 year, 10 months ago
Ans :BC https://aws.amazon.com/blogs/networking-and-content-delivery/centralized-inspection-architecture-with-aws-gateway-load-balancer-and-aws-transit-gateway/
upvoted 8 times
ExamTopix01
1 year, 8 months ago
It's CD
upvoted 3 times
...
...
dspd
Most Recent 2 months ago
Selected Answer: BC
""during maintenance of the inspection instances". So deploying additional instances in each AZ will fix this issue
upvoted 1 times
...
AzureDP900
3 months, 2 weeks ago
Selected Answer: BC
Deploying additional inspection instances : When an instance is maintained, other instances can become unavailable. By deploying an extra instance in each Availability Zone, the company can maintain availability of at least one instance per zone. Enabling cross-zone load balancing attribute for GWLB : This ensures that traffic sent to a GWLB can be routed to any available inspection instance in the network, regardless of its location within the region. This helps ensure that application instances remain connected even if an inspection instance is temporarily unavailable.
upvoted 1 times
...
46f094c
5 months ago
Selected Answer: CE
C is clear to LB... But E... why E? because even if it is useless, at least it has no cost. A,B and D has the costs of the new Instances, and they are not needed
upvoted 2 times
chang4li
2 months, 3 weeks ago
lol, E is not that useless as it appears - it enables other zones to utilize instances in these two zones
upvoted 1 times
...
...
Spaurito
5 months ago
CD - There are only 2 AZ's. They already have one inspection instance in place. A - is an option but not optimal C - allows for the use of both AZ's. D - allows for scaling when needed. May not be the best metric but will work for this scenario.
upvoted 1 times
...
Akshay0403
9 months, 2 weeks ago
Selected Answer: BC
Clearly BC. Questions says ""during maintenance of the inspection instances". So deploying additional instances in each AZ will address this issue
upvoted 2 times
...
hogtrough
10 months ago
Selected Answer: CD
Answer is CD. Not only is autoscaling cost-effective compared to a deploying an instance that will run forever simply for maintenance purposes, it will ensure that the performance needs are met.
upvoted 2 times
...
seochan
10 months, 3 weeks ago
Selected Answer: CD
I think it's CD, because the purpose is to "remediate" the problem, and just adding one additional inspection instance cannot assure remediation of this problem.
upvoted 3 times
...
[Removed]
1 year ago
My 5 cent why I think D cannot be right. The scenario does not mention anything on CPU related issues. So let's say we prepare a CPU based ASG we still would only have 2 instances, one per AZ and the degradation in maintenance case would be the same, one AZ would have no target, same impact. So although we want to minimize cost, B is better than D imho.
upvoted 2 times
...
michele_scar
1 year, 1 month ago
Selected Answer: BC
A and E wrong. It's between B C D. Should be correct D but autoscaling gruop with CPU load not solve the issue, you have to detach the instance, make maintenance and after re-attach to ASG. It's complicated. Finally B C correct.
upvoted 3 times
...
vikasj1in
1 year, 1 month ago
Selected Answer: CD
A. might distribute the load better across Availability Zones, but it does not directly address the issue of sessions timing out during maintenance. B. could help distribute the load and provide redundancy, but it might not fully address the issue of sessions timing out during maintenance. C. This helps maintain session persistence during maintenance activities. D. Deploying inspection instances in an Auto Scaling group allows the system to automatically replace instances that are undergoing maintenance or experiencing issues. Defining a scaling policy based on CPU load ensures that additional instances are added to handle increased traffic during maintenance, reducing the impact on existing sessions. E. This helps maintain session persistence during maintenance activities. However, this alone may not fully address the issue if there are not enough healthy instances to handle the traffic.
upvoted 2 times
...
jorgesoma
1 year, 2 months ago
It's a confused answer. Could be CD or BC... Non clear question from AWS dump.
upvoted 2 times
...
Arad
1 year, 5 months ago
Selected Answer: CD
I think CD is correct. The solution should be cost-effective, so why deploying an extra instance to site there when it is not necessary all the time, autoscaling group deploys an extra instance just when it is required, not always.
upvoted 2 times
_mavik_
1 year, 5 months ago
The solution should be cost-effective - there is not a requiremet. BC.
upvoted 1 times
...
...
Tofu13
1 year, 7 months ago
Selected Answer: BC
Same Link as Balasmaniam. Point 3 When you enable cross-zone load balancing, GWLB distributes traffic across all registered and healthy targets regardless of which AZs these targets are in.
upvoted 3 times
...
MohamedSherif1
1 year, 7 months ago
Selected Answer: CD
why not CD?
upvoted 3 times
...
Certified101
1 year, 8 months ago
Selected Answer: BC
BC is correct
upvoted 4 times
...
ISSDoksim
1 year, 8 months ago
BC - https://aws.amazon.com/blogs/networking-and-content-delivery/best-practices-for-deploying-gateway-load-balancer/
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago