Spring Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: 70track

Free Amazon Web Services CLF-C02 Practice Exam with Questions & Answers | Set: 3

Questions 41

Which AWS service or feature can be used to control inbound and outbound traffic on an Amazon EC2 instance?

Options:
A.

Internet gateways

B.

AWS Identity and Access Management (IAM)

C.

Network ACLs

D.

Security groups

Amazon Web Services CLF-C02 Premium Access
Questions 42

Which AWS service or feature offers security for a VPC by acting as a firewall to control traffic in and out of subnets?

Options:
A.

AWS Security Hub

B.

Security groups

C.

Network ACL

D.

AWSWAF

Questions 43

A customer runs an On-Demand Amazon Linux EC2 instance for 3 hours, 5 minutes, and 6 seconds.

For how much time will the customer be billed?

Options:
A.

3 hours, 5 minutes

B.

3 hours, 5 minutes, and 6 seconds

C.

3 hours, 6 minutes

D.

4 hours

Questions 44

Which abilities are benefits of the AWS Cloud? (Select TWO.)

Options:
A.

Trade variable expenses for capital expenses.

B.

Deploy globally in minutes.

C.

Plan capacity in advance of deployments.

D.

Take advantage of economies of scale.

E.

Reduce dependencies on network connectivity.

Questions 45

A company needs to implement identity management for a fleet of mobile apps that are running in the AWS Cloud.

Which AWS service will meet this requirement?

Options:
A.

Amazon Cognito

B.

AWS Security Hub

C.

AWS Shield

D.

AWS WAF

Questions 46

A company must be able to develop, test, and launch an application in the AWS Cloud quickly.

Which advantage of cloud computing will meet these requirements?

Options:
A.

Stop guessing capacity

B.

Trade fixed expense for variable expense

C.

Achieve economies of scale

D.

Increase speed and agility

Questions 47

Which AWS service is always available free of charge to users?

Options:
A.

Amazon Athena

B.

AWS Identity and Access Management (IAM)

C.

AWS Secrets Manager

D.

Amazon ElastiCache

Questions 48

A company wants to move its iOS application development and build activities to AWS.

Which AWS service or resource should the company use for these activities?

Options:
A.

AWS CodeCommit

B.

Amazon EC2 M1 Mac instances

C.

AWS Amplify

D.

AWS App Runner

Questions 49

Which benefit does AWS offer exclusively to users who have an AWS Enterprise Support plan?

Options:
A.

Access to a technical project manager

B.

Access to a technical account manager (TAM)

C.

Access to a cloud support engineer

D.

Access to a solutions architectA company wants to automatically set up and govern a multi-account AWS environment.

Questions 50

A company is creating a web application that requires a relational database to store customer data. Which AWS service should the company use to host the database?

Options:
A.

Amazon Aurora

B.

Amazon DynamoDB

C.

Amazon ElastiCache

D.

Amazon Redshift

Questions 51

Which design principle aligns with performance efficiency pillar of the AWS Well-Architected Framework?

Options:
A.

Using serverless architectures

B.

Scaling horizontally

C.

Measuring the cost of workloads

D.

Using managed services

Questions 52

A company wants to use AWS. The company has stringent requirements about low-latency access to on-premises systems and data residency.

Which AWS service should the company use to design a solution that meets these requirements?

Options:
A.

AWS Wavelength

B.

AWS Transit Gateway

C.

AWS Ground Station

D.

AWS Outposts

Questions 53

A company needs access to checks and recommendations that help the company follow AWS best practices for cost optimization, security, fault tolerance, performance, and service quotas.

Which combination of an AWS service and AWS Support plan on the AWS account will meet these requirements?

Options:
A.

AWS Trusted Advisor with AWS Developer Support

B.

AWS Health Dashboard with AWS Enterprise Support

C.

AWS Trusted Advisor with AWS Business Support

D.

AWS Health Dashboard with AWS Enterprise On-Ramp Support

Questions 54

A company notices suspicious network activity against an application that is running on a fleet of Amazon EC2 instances. The suspicious activity is coming from a single IP address.

Which AWS service should the company use to block access from this IP address?

Options:
A.

AWS Shield

B.

AWS Config

C.

Amazon GuardDuty

D.

AWS WAF

Questions 55

A company uses AWS and has a VPC that includes two public subnets. The company needs to allow and deny specific inbound and outbound traffic for each public subnet.

Which AWS service or tool can the company use to meet this requirement?

Options:
A.

Network ACL

B.

AWSWAF

C.

VPC route table entry

D.

Security group

Questions 56

A company runs Amazon EC2 instances in a research lab. The instances run for 3 hours each week and cannot be interrupted.

Options:
A.

Compute Savings Plan

B.

On-Demand Instances

C.

Convertible Reserved Instances

D.

Spot Instances

Questions 57

Treating infrastructure as code in the AWS Cloud allows users to:

Options:
A.

automate migration of on-premises hardware to AWS data centers.

B.

let a third party automate an audit of the AWS infrastructure.

C.

turn over application code to AWS so it can run on the AWS infrastructure.

D.

automate the infrastructure provisioning process.

Questions 58

Which AWS service is deployed to VPCs and provides protection from common network threats?

Options:
A.

AWSShield

B.

AWSWAF

C.

AWS Network Firewall

D.

AWS FirewallManager

Questions 59

A company wants a customized assessment of its current on-premises environment. The company wants to understand its projected running costs in the AWS Cloud.

Which AWS service or tool will meet these requirements?

Options:
A.

AWS Trusted Advisor

B.

Amazon Inspector

C.

AWS Control Tower

D.

Migration Evaluator

Questions 60

What is an AWS responsibility under the AWS shared responsibility model?

Options:
A.

Configure the security group rules that determine which ports are open on an Amazon EC2 Linux instance.

B.

Ensure the security of the internal network in the AWS data centers.

C.

Patch the guest operating system with the latest security patches on Amazon EC2.

D.

Turn on server-side encryption for Amazon S3 buckets.A company wants to deploy its critical application on AWS and maintain high availability.