Amazon ANS-C01 Exam Questions

Exam Name: AWS Certified Advanced Networking – Specialty

Exam Code: ANS-C01

Related Certification(s): Amazon Specialty Certification

Certification Provider: Amazon

Actual Exam Duration: 170 Minutes

Number of ANS-C01 Practice Questions: 290 (updated: )

Expected ANS-C01 Exam Topics, as suggested by Amazon:
Topic 1: Network Design
The topic equips AWS networking specialists with the expertise to architect robust and optimized networking solutions. This involves designing edge network services to enhance user performance globally, integrating DNS solutions for public, private, and hybrid setups, and embedding load balancing for high availability, scalability, and security. It also addresses defining logging and monitoring strategies and creating routing frameworks between on-premises systems and the AWS Cloud, as well as across multiple AWS accounts, Regions, and VPCs.
Topic 2: Network Implementation
It assesses the ability of AWS networking specialists to configure and deploy network architectures effectively. This includes implementing routing between on-premises systems and AWS, establishing connectivity across multiple AWS accounts, Regions, and VPCs, and configuring complex hybrid DNS setups.
Topic 3: Network Management and Operation
The Network Management and Operation topic evaluates the capability to maintain and optimize AWS and hybrid networks. It focuses on monitoring and analyzing network traffic for troubleshooting, maintaining routing, and ensuring connectivity. This topic challenges the AWS networking specialist to demonstrate proficiency in operational excellence and performance tuning.
Topic 4: Network Security, Compliance, and Governance
The Network Security, Compliance, and Governance topic ensures AWS networking specialists can secure and govern their network environments. It involves implementing features to meet compliance and security needs, validating security through monitoring and logging services, and maintaining data confidentiality and communication integrity.
Free AWS ANS-C01 Exam Actual Questions
Note: AWS ANS-C01 Premium Questions were last updated on

Q1. A company is planning to create a service that requires encryption in transit. The traffic must not be decrypted between the client and the backend of the service. The company will implement the service by using the gRPC protocol over TCP port 443. The service will scale up to thousands of simultaneous connections. The backend of the service will be hosted on an Amazon Elastic Kubernetes Service (Amazon EKS) cluster with autoscaling configured. Which solution will meet these requirements?

Q2. A company is deploying a new application in AWS and needs a load balancer that routes traffic based on URL and terminates TLS at the load balancer. Which solution meets these requirements?

Q3. A company wants an application behind an ALB to be accessible only through AWS Global Accelerator and not directly through the internet. Which design meets this requirement?

Q4. Multiple AWS accounts require secure connectivity to a central shared services VPC. Which solution provides the most secure architecture?

Q5. A company uses AWS Direct Connect with multiple VIFs and the connection becomes saturated daily. What should the engineer do?