WGU D319 OA AWS CLOUD ARCHITECTURE QUESTIONS AND VERIFIED ANSWERS, Exams of Nursing

WGU D319 OA AWS CLOUD ARCHITECTURE QUESTIONS AND VERIFIED ANSWERS

Typology: Exams

2025/2026

Available from 01/20/2026

felix-mugo
felix-mugo 🇺🇸

1

(1)

3.6K documents

1 / 37

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
WGU D319 OA AWS CLOUD
ARCHITECTURE QUESTIONS AND
VERIFIED ANSWER
S
An enterprise wants to build an application for selling concert tickets, with a web layer and an
application layer. Which Amazon service should be used so ticket orders are not lost if the application
layer fails? - VERIFIED ANSWERSQS
To comply with its disaster recovery requirements, an enterprise is required to store copies of all data in
a specific Amazon S3 bucket in an additional Region. How should this requirement be fulfilled? -
Enable versioning for the source bucket and configure Cross-Region Replication
An application is deployed in the us-west-1 and eu-west-1 Regions, and the users should be sent to the
Region with the fastest response for them, regardless of their location. The solution must minimize
administrative effort. Which routing policy should be used? - VERIFIED ANSWERLatency
A notification is sent to an Amazon SQS queue when an object is uploaded to an Amazon S3 bucket. An
Amazon ECS cluster processes messages from the queue. The required queue size fluctuates based on
the number of incoming messages and the processing speed. The company needs to design a scaling
strategy for auto scaling that will minimize the queue size. Which metric should be used for auto scaling
to minimize the queue size? - VERIFIED ANSWERAmazon SQS messages
A company hosts a website from two EC2 instances. Users access the website through an Elastic Load
Balancer (ELB). The company needs to ensure the website is highly available if one or more of the EC2
instances are unavailable. Which solution should this company use? - VERIFIED ANSWERConfigure the
ELB to implement Auto Scaling based on health checks
pf3
pf4
pf5
pf8
pf9
pfa
pfd
pfe
pff
pf12
pf13
pf14
pf15
pf16
pf17
pf18
pf19
pf1a
pf1b
pf1c
pf1d
pf1e
pf1f
pf20
pf21
pf22
pf23
pf24
pf25

Partial preview of the text

Download WGU D319 OA AWS CLOUD ARCHITECTURE QUESTIONS AND VERIFIED ANSWERS and more Exams Nursing in PDF only on Docsity!

WGU D319 OA AWS CLOUD

ARCHITECTURE QUESTIONS AND

VERIFIED ANSWERS

An enterprise wants to build an application for selling concert tickets, with a web layer and an application layer. Which Amazon service should be used so ticket orders are not lost if the application layer fails? - VERIFIED ANSWER SQS To comply with its disaster recovery requirements, an enterprise is required to store copies of all data in a specific Amazon S3 bucket in an additional Region. How should this requirement be fulfilled? - Enable versioning for the source bucket and configure Cross-Region Replication An application is deployed in the us-west-1 and eu-west-1 Regions, and the users should be sent to the Region with the fastest response for them, regardless of their location. The solution must minimize administrative effort. Which routing policy should be used? - VERIFIED ANSWER Latency A notification is sent to an Amazon SQS queue when an object is uploaded to an Amazon S3 bucket. An Amazon ECS cluster processes messages from the queue. The required queue size fluctuates based on the number of incoming messages and the processing speed. The company needs to design a scaling strategy for auto scaling that will minimize the queue size. Which metric should be used for auto scaling to minimize the queue size? - VERIFIED ANSWER Amazon SQS messages A company hosts a website from two EC2 instances. Users access the website through an Elastic Load Balancer (ELB). The company needs to ensure the website is highly available if one or more of the EC instances are unavailable. Which solution should this company use? - VERIFIED ANSWER Configure the ELB to implement Auto Scaling based on health checks

A company plans to migrate a legacy application to EC2 with no modifications to the application. The company hopes to add modern cloud features to immediately respond to changing needs. Which cloud feature will achieve this goal? - VERIFIED ANSWER Auto scaling A company plans to migrate a legacy application to EC2 with no modifications to the application. The application has regular seasonal increases in demand, and it must automatically adapt to these needs. Which scaling option should be included in the migration? - VERIFIED ANSWER Scheduled A company plans to migrate a legacy application to Amazon EC2 with no modifications to the application. The application constantly changes demands with no patterns, and it must automatically adapt to these needs. Which scaling option should be included in the migration? - VERIFIED ANSWER Dynamic A company plans to migrate a legacy application to Amazon EC2 with no modifications to the application. Once the application has completed a trial in the cloud, the company needs to use machine learning algorithms to adapt the application to changing demands. Which scaling option should be used?

  • VERIFIED ANSWER Predictive A web application uses a web server with a separate database server. The database provides results to the web server. Users report long delays in receiving their results. Logs reveal that the CPU utilization metric for the web server consistently reaches 100%. Performance metrics for the database are nominal. How can the response time be improved? - VERIFIED ANSWER By scaling the web server layer through the addition of web servers An administrator is concerned that a consumer may fail and not receive every message immediately. The administrator chooses to use Amazon Simple Queue Service (Amazon SQS) to ensure the consumer will be able to receive all the messages. Which mechanism does Amazon SQS use to allow the consumer to receive a queued message after the consumer is restored? - VERIFIED ANSWER Pull How should an administrator recover queued messages from Amazon Simple Queue Service (Amazon SQS) if the consumer fails? - VERIFIED ANSWER Pull the queue after the application is restored An application has the following storage requirements: Information is stored in multiple tables on a single server. Master records can be linked to zero or more child records by using shared keys.

Which solution is used with Amazon ECS to run containers without managing servers or clusters of EC instances? - VERIFIED ANSWER Fargate An application allows users from around the world to upload content to an Amazon S3 bucket. Which Amazon S3 feature minimizes upload times and costs? - VERIFIED ANSWER Transfer Acceleration Which type of volume should be used for an EC2 root with minimum latency? - VERIFIED ANSWER Instance store Which solution should be used to store application content that is accessed concurrently by a fleet of Amazon EC2-based Linux hosts? - VERIFIED ANSWER Amazon EFS A company is planning to move its on-premises Windows domain servers to the cloud. As part of this move, the company needs a storage solution that can host shared file systems for its Windows hosts. The file sharing will be done using Server Message Block (SMB) and needs to support file system access control lists (ACLs), shadow copies, and user quotas. Which storage solution supports these requirements? - VERIFIED ANSWER Amazon FSx A client has an on-premises data center and wants to establish a network link to an Amazon Virtual Private Cloud (VPC). The solution must ensure the maximum throughput and minimum latency. Which service provides these capabilities? - VERIFIED ANSWER AWS Direct Connect A client has an on-premises data center and needs to transfer large data sets to AWS over the network without affecting the internet bandwidth available for its on-premises workloads. Which service provides these capabilities? - VERIFIED ANSWER AWS Direct Connect A company needs to connect its VPC to the EC2 API. Which solution meets this requirement at the lowest cost and with the least configuration? - VERIFIED ANSWER Interface endpoint Data for an application is served from a single Amazon S3 bucket. Customers around the world upload data to the bucket. Which Amazon S3 feature will reduce latency? - VERIFIED ANSWER Transfer Acceleration

Which database solution allows the failover priority of each read replica to be configured? - VERIFIED ANSWER Amazon Aurora Which database scaling solution supports high-availability replication? - VERIFIED ANSWER Amazon ElastiCache for Redis A company has a multi-tier application that is very read intensive at the database layer. The company is looking to implement a caching strategy for the data, and its security department requires it to be encrypted. Which solution fits this requirement? - VERIFIED ANSWER Amazon ElastiCache for Redis An administrator needs a relational database that can support online analytical processing (OLAP) and provide fast performance despite many concurrent queries. Which solution should this administrator choose? - VERIFIED ANSWER Amazon Redshift An application running in an EC2 instance needs to access an Amazon S3 bucket with temporary credentials generated by AWS Security Token Service (AWS STS). Credentials cannot be stored in the EC instance. Which principal type should the client use to configure the application access to the Amazon S3 bucket? - VERIFIED ANSWER IAM role An organization has signed up for an AWS account. Which action should be performed to ensure the account is secured and used according to the principle of least privilege? - VERIFIED ANSWER Delete the root access keys and secret A company needs to configure an EC2 instance for delegate access to a DynamoDB table. Which policy should this company use? - VERIFIED ANSWER Permissions What is used in the IAM policy evaluation logic? - VERIFIED ANSWER An explicit allow in a resource-based policy overrides an implicit deny. A client has an Amazon Virtual Private Cloud (VPC) containing 10 Amazon EC2 instances. The client plans to develop an application that will call Amazon EC2 API from the EC2 instances. Which service should this client use to implement a private connectivity for the Amazon EC2 API calls from the VPC? - VERIFIED ANSWER Interface endpoint

Cryptographic secrets need to be hosted in a single-tenant service. The organization needs to manage the root of trust. What should this organization use store to the secrets? - VERIFIED ANSWER AWS CloudHSM cluster Which solution provides a customer-managed root of trust? - VERIFIED ANSWER AWS CloudHSM A company plans to host a public website in AWS. Users will access the website using SSL/TLS. The company requires the ability to delete keys if they are compromised. Which key solution should this company use? - VERIFIED ANSWER Customer-managed asymmetric key A company is building a high-performance computing (HPC) clustered workload on AWS using EC instances and is looking for a fully managed, shared storage solution for this workload. Once the HPC portion of the data processing is complete, the company would like to serve the resulting data directly on the internet. Which Amazon service would be the most cost-effective solution for these requirements? - VERIFIED ANSWER FSx for Lustre Which Amazon storage class monitors data usage and moves data to the most cost-effective location? - VERIFIED ANSWER S3 Intelligent-Tiering Which tool reduces time and costs by allowing a customer to automate the creation and track the changes of entire resource environments? - VERIFIED ANSWER CloudFormation An organization needs a low-cost system to host its website. Which elastic compute configuration meets the requirement at the least cost? - VERIFIED ANSWER A general purpose instance with a hard disk drive A development team needs a system to run recurring benchmark tests for an artificial intelligence application. To remove variability from one test to the other, the storage will be reinitialized for each test. Which elastic compute configuration meets the requirements while minimizing cost and administration time? - VERIFIED ANSWER An accelerated computing instance with an instance store A client wants to use a managed service to replace an EC2 instance that currently hosts a shared big data analytics store, accessible via the NFS protocol. The managed service must provide read-after-write consistency and low latency for read and write operations. Which Amazon service should this client choose? - VERIFIED ANSWER EFS

A client wants to use a managed service to replace an EC2 instance that currently hosts a Windows Server file server, with shares accessible via the SMB protocol. The managed service must provide support for Active Directory and Distributed File System. Which Amazon service should this client choose? - VERIFIED ANSWER FSx When users consume data from an Amazon S3 bucket, a company wants to reduce transfer costs by enforcing that the content is delivered using CloudFront. Which feature should be configured? - VERIFIED ANSWER Origin access identity A company needs to store backup data in Amazon S3. There are no restrictions on where the data can be stored geographically. The company wants to find the lowest cost for storage and transfers. Which boundary should this company consider comparing storage fees at? - VERIFIED ANSWER Region A client wants to implement redundant network access to EC2 instances with automatic failover in case the existing AWS Direct Connect connection fails. The solution must minimize cost. Which network access option should this client use? - VERIFIED ANSWER Site-to-Site VPN A client has 100 on-premises locations in the northwestern United States. Each location has network access to the same Amazon VPCs in the US West AWS Region via Internet Protocol Security (IPSec) tunnels. The client plans to create 500 Amazon VPCs in the same Region. The client needs to ensure all Amazon VPCs will be accessible from each of its on-premises locations. The solution must minimize cost of on-premises infrastructure. Which additional network access method should this client include in the solutioAn enterprise wants to build an application for selling concert tickets, with a web layer and an application layer. Which Amazon service should be used so ticket orders are not lost if the application layer fails? - VERIFIED ANSWER SQS To comply with its disaster recovery requirements, an enterprise is required to store copies of all data in a specific Amazon S3 bucket in an additional Region. How should this requirement be fulfilled? - VERIFIED ANSWER Enable versioning for the source bucket and configure Cross-Region Replication An application is deployed in the us-west-1 and eu-west-1 Regions, and the users should be sent to the Region with the fastest response for them, regardless of their location. The solution must minimize administrative effort. Which routing policy should be used? - VERIFIED ANSWER Latency

will be able to receive all the messages. Which mechanism does Amazon SQS use to allow the consumer to receive a queued message after the consumer is restored? - VERIFIED ANSWER Pull How should an administrator recover queued messages from Amazon Simple Queue Service (Amazon SQS) if the consumer fails? - VERIFIED ANSWER Pull the queue after the application is restored An application has the following storage requirements: Information is stored in multiple tables on a single server. Master records can be linked to zero or more child records by using shared keys. The solution must support up to 15 additional replicas. Which solution should be used? - VERIFIED ANSWER Amazon Aurora A Linux application needs to use a shared file system. Which solution should be used? - VERIFIED ANSWER Amazon EFS A company has data stored on premises and needs to identify a solution that stores snapshots of the local data in AWS. Which solution should be used? - VERIFIED ANSWER Stored Volume Gateway How should end-to-end confidentiality be achieved for data stored in an Amazon S3 bucket? - VERIFIED ANSWER By setting default encryption and a policy to enforce HTTPS connections on the bucket A client plans to use the internet to copy a large amount of data from an on-premises Network File System (NFS) store to Amazon S3. Which service will transfer the data in the shortest time? - VERIFIED ANSWER Amazon Web Services DataSync A client has an existing on-premises tape backup application and wants to back up the on-premises data directly to Amazon S3 buckets for long-term storage. Which service should be used to transfer on- premises backups to Amazon S3 buckets? - VERIFIED ANSWER AWS Storage Gateway Which type of instance provides the necessary resources to process machine learning applications at the highest speed? - VERIFIED ANSWER Accelerated computing

Which type of instance can process and analyze large amounts of unstructured data while minimizing page swapping of data to and from a disk? - VERIFIED ANSWER Memory optimized Which type of instance provides the necessary resources to host a website with the minimum cost? - VERIFIED ANSWER General purpose A company is worried about the scalability of its EC2 solution. The company has calculated the expected usage and wants to start with the number of instances that should be able to handle the workload. Which capacity setting should the company choose for the Auto Scaling group? - VERIFIED ANSWER Desired Which solution is used with Amazon ECS to run containers without managing servers or clusters of EC instances? - VERIFIED ANSWER Fargate An application allows users from around the world to upload content to an Amazon S3 bucket. Which Amazon S3 feature minimizes upload times and costs? - VERIFIED ANSWER Transfer Acceleration Which type of volume should be used for an EC2 root with minimum latency? - VERIFIED ANSWER Instance store Which solution should be used to store application content that is accessed concurrently by a fleet of Amazon EC2-based Linux hosts? - VERIFIED ANSWER Amazon EFS A company is planning to move its on-premises Windows domain servers to the cloud. As part of this move, the company needs a storage solution that can host shared file systems for its Windows hosts. The file sharing will be done using Server Message Block (SMB) and needs to support file system access control lists (ACLs), shadow copies, and user quotas. Which storage solution supports these requirements? - VERIFIED ANSWER Amazon FSx A client has an on-premises data center and wants to establish a network link to an Amazon Virtual Private Cloud (VPC). The solution must ensure the maximum throughput and minimum latency. Which service provides these capabilities? - VERIFIED ANSWER AWS Direct Connect

A company needs to configure an EC2 instance for delegate access to a DynamoDB table. Which policy should this company use? - VERIFIED ANSWER Permissions What is used in the IAM policy evaluation logic? - VERIFIED ANSWER An explicit allow in a resource-based policy overrides an implicit deny. A client has an Amazon Virtual Private Cloud (VPC) containing 10 Amazon EC2 instances. The client plans to develop an application that will call Amazon EC2 API from the EC2 instances. Which service should this client use to implement a private connectivity for the Amazon EC2 API calls from the VPC? - VERIFIED ANSWER Interface endpoint A company is building a new application, and as part of this new application, the company will provision a multi-tiered EC2 infrastructure across multiple Availability Zones and subnets. They will have an application server tier, a web server tier, and a database tier. For their network security, the company is looking for a solution that will enable them to create the rules once per tier type and apply the rules to all created instances. They also want the solution to filter traffic between the instances in the same tier. Which solution fits these requirements? - VERIFIED ANSWER Security group An engineer designs a network that must have 512 IP addresses available for use by the client.What is the smallest Classless Inter-Domain Routing (CIDR) block that meets the requirement? CIDR Total IP Addresses 21 2048 22 1, 23 512 24 256 - VERIFIED ANSWER 22 An architect wants to allow EC2 instances to have access to the internet for downloading patches. The instances use IPv4 and should be placed in a private subnet. The route table associated with the private subnet has an entry with the destination 0.0.0.0/0. What should be the target for the 0.0.0.0/ destination in the route table? - VERIFIED ANSWER NAT gateway An organization suspects attacks targeting its web server EC2 instances in a specific subnet and wants to block requests being sent to the 143.38.54/24 range. A custom network ACL is created and associated with this subnet. Which outbound rule or rules should be added to the network ACL to fulfill the

requirement? - VERIFIED ANSWER An ALLOW outbound rule with source 0.0.0.0/0 and a DENY outbound rule with destination 143.38.54/ Which IAM policy is applied directly to a user to control their permissions? - VERIFIED ANSWER Identity- based An organization wants to host the master keys used by Oracle Transparent Data Encryption (TDE) in AWS. Which type of customer-managed keys in Key Management Service (KMS) should be used? - VERIFIED ANSWER Symmetric keys with custom key store An organization is evaluating the options to protect data in the cloud and has the following requirements: Cryptographic secrets need to be hosted in a single-tenant service. The organization needs to manage the root of trust. What should this organization use store to the secrets? - VERIFIED ANSWER AWS CloudHSM cluster Which solution provides a customer-managed root of trust? - VERIFIED ANSWER AWS CloudHSM A company plans to host a public website in AWS. Users will access the website using SSL/TLS. The company requires the ability to delete keys if they are compromised. Which key solution should this company use? - VERIFIED ANSWER Customer-managed asymmetric key A company is building a high-performance computing (HPC) clustered workload on AWS using EC instances and is looking for a fully managed, shared storage solution for this workload. Once the HPC portion of the data processing is complete, the company would like to serve the resulting data directly on the internet. Which Amazon service would be the most cost-effective solution for these requirements? - VERIFIED ANSWER FSx for Lustre Which Amazon storage class monitors data usage and moves data to the most cost-effective location? - VERIFIED ANSWER S3 Intelligent-Tiering Which tool reduces time and costs by allowing a customer to automate the creation and track the changes of entire resource environments? - VERIFIED ANSWER CloudFormation

solution? - An enterprise wants to build an application for selling concert tickets, with a web layer and an application layer. Which Amazon service should be used so ticket orders are not lost if the application layer fails? - VERIFIED ANSWER SQS To comply with its disaster recovery requirements, an enterprise is required to store copies of all data in a specific Amazon S3 bucket in an additional Region. How should this requirement be fulfilled? - VERIFIED ANSWER Enable versioning for the source bucket and configure Cross-Region Replication An application is deployed in the us-west-1 and eu-west-1 Regions, and the users should be sent to the Region with the fastest response for them, regardless of their location. The solution must minimize administrative effort. Which routing policy should be used? - VERIFIED ANSWER Latency A notification is sent to an Amazon SQS queue when an object is uploaded to an Amazon S3 bucket. An Amazon ECS cluster processes messages from the queue. The required queue size fluctuates based on the number of incoming messages and the processing speed. The company needs to design a scaling strategy for auto scaling that will minimize the queue size. Which metric should be used for auto scaling to minimize the queue size? - VERIFIED ANSWER Amazon SQS messages A company hosts a website from two EC2 instances. Users access the website through an Elastic Load Balancer (ELB). The company needs to ensure the website is highly available if one or more of the EC instances are unavailable. Which solution should this company use? - VERIFIED ANSWER Configure the ELB to implement Auto Scaling based on health checks A company plans to migrate a legacy application to EC2 with no modifications to the application. The company hopes to add modern cloud features to immediately respond to changing needs. Which cloud feature will achieve this goal? - VERIFIED ANSWER Auto scaling A company plans to migrate a legacy application to EC2 with no modifications to the application. The application has regular seasonal increases in demand, and it must automatically adapt to these needs. Which scaling option should be included in the migration? - VERIFIED ANSWER Scheduled A company plans to migrate a legacy application to Amazon EC2 with no modifications to the application. The application constantly changes demands with no patterns, and it must automatically adapt to these needs. Which scaling option should be included in the migration? - VERIFIED ANSWER Dynamic

A company plans to migrate a legacy application to Amazon EC2 with no modifications to the application. Once the application has completed a trial in the cloud, the company needs to use machine learning algorithms to adapt the application to changing demands. Which scaling option should be used?

  • VERIFIED ANSWER Predictive A web application uses a web server with a separate database server. The database provides results to the web server. Users report long delays in receiving their results. Logs reveal that the CPU utilization metric for the web server consistently reaches 100%. Performance metrics for the database are nominal. How can the response time be improved? - VERIFIED ANSWER By scaling the web server layer through the addition of web servers An administrator is concerned that a consumer may fail and not receive every message immediately. The administrator chooses to use Amazon Simple Queue Service (Amazon SQS) to ensure the consumer will be able to receive all the messages. Which mechanism does Amazon SQS use to allow the consumer to receive a queued message after the consumer is restored? - VERIFIED ANSWER Pull How should an administrator recover queued messages from Amazon Simple Queue Service (Amazon SQS) if the consumer fails? - VERIFIED ANSWER Pull the queue after the application is restored An application has the following storage requirements: Information is stored in multiple tables on a single server. Master records can be linked to zero or more child records by using shared keys. The solution must support up to 15 additional replicas. Which solution should be used? - VERIFIED ANSWER Amazon Aurora A Linux application needs to use a shared file system. Which solution should be used? - VERIFIED ANSWER Amazon EFS A company has data stored on premises and needs to identify a solution that stores snapshots of the local data in AWS. Which solution should be used? - VERIFIED ANSWER Stored Volume Gateway How should end-to-end confidentiality be achieved for data stored in an Amazon S3 bucket? - VERIFIED ANSWER By setting default encryption and a policy to enforce HTTPS connections on the bucket

A company is planning to move its on-premises Windows domain servers to the cloud. As part of this move, the company needs a storage solution that can host shared file systems for its Windows hosts. The file sharing will be done using Server Message Block (SMB) and needs to support file system access control lists (ACLs), shadow copies, and user quotas. Which storage solution supports these requirements? - VERIFIED ANSWER Amazon FSx A client has an on-premises data center and wants to establish a network link to an Amazon Virtual Private Cloud (VPC). The solution must ensure the maximum throughput and minimum latency. Which service provides these capabilities? - VERIFIED ANSWER AWS Direct Connect A client has an on-premises data center and needs to transfer large data sets to AWS over the network without affecting the internet bandwidth available for its on-premises workloads. Which service provides these capabilities? - VERIFIED ANSWER AWS Direct Connect A company needs to connect its VPC to the EC2 API. Which solution meets this requirement at the lowest cost and with the least configuration? - VERIFIED ANSWER Interface endpoint Data for an application is served from a single Amazon S3 bucket. Customers around the world upload data to the bucket. Which Amazon S3 feature will reduce latency? - VERIFIED ANSWER Transfer Acceleration Which database solution allows the failover priority of each read replica to be configured? - VERIFIED ANSWER Amazon Aurora Which database scaling solution supports high-availability replication? - VERIFIED ANSWER Amazon ElastiCache for Redis A company has a multi-tier application that is very read intensive at the database layer. The company is looking to implement a caching strategy for the data, and its security department requires it to be encrypted. Which solution fits this requirement? - VERIFIED ANSWER Amazon ElastiCache for Redis An administrator needs a relational database that can support online analytical processing (OLAP) and provide fast performance despite many concurrent queries. Which solution should this administrator choose? - VERIFIED ANSWER Amazon Redshift

An application running in an EC2 instance needs to access an Amazon S3 bucket with temporary credentials generated by AWS Security Token Service (AWS STS). Credentials cannot be stored in the EC instance. Which principal type should the client use to configure the application access to the Amazon S3 bucket? - VERIFIED ANSWER IAM role An organization has signed up for an AWS account. Which action should be performed to ensure the account is secured and used according to the principle of least privilege? - VERIFIED ANSWER Delete the root access keys and secret A company needs to configure an EC2 instance for delegate access to a DynamoDB table. Which policy should this company use? - VERIFIED ANSWER Permissions What is used in the IAM policy evaluation logic? - VERIFIED ANSWER An explicit allow in a resource-based policy overrides an implicit deny. A client has an Amazon Virtual Private Cloud (VPC) containing 10 Amazon EC2 instances. The client plans to develop an application that will call Amazon EC2 API from the EC2 instances. Which service should this client use to implement a private connectivity for the Amazon EC2 API calls from the VPC? - VERIFIED ANSWER Interface endpoint A company is building a new application, and as part of this new application, the company will provision a multi-tiered EC2 infrastructure across multiple Availability Zones and subnets. They will have an application server tier, a web server tier, and a database tier. For their network security, the company is looking for a solution that will enable them to create the rules once per tier type and apply the rules to all created instances. They also want the solution to filter traffic between the instances in the same tier. Which solution fits these requirements? - VERIFIED ANSWER Security group An engineer designs a network that must have 512 IP addresses available for use by the client.What is the smallest Classless Inter-Domain Routing (CIDR) block that meets the requirement? CIDR Total IP Addresses 21 2048 22 1, 23 512 24 256 - VERIFIED ANSWER 22