Free AWS-Solution-Architect-Associate Exam Braindumps

- (Exam Topic 3)
A company runs a web application on Amazon EC2 instances in multiple Availability Zones. The EC2 instances are in private subnets. A solutions architect implements an internet-facing Application Load Balancer (ALB) and specifies the EC2 instances as the target group. However, the internet traffic is not reaching the EC2 instances.
How should the solutions architect reconfigure the architecture to resolve this issue?

1. A. Replace the ALB with a Network Load Balance
2. B. Configure a NAT gateway in a public subnet to allow internet traffic.
3. C. Move the EC2 instances to public subnet
4. D. Add a rule to the EC2 instances’ security groups to allow outbound traffic to 0.0.0.0/0.
5. E. Update the route tables for the EC2 instances’ subnets to send 0.0.0.0/0 traffic through the internet gateway rout
6. F. Add a rule to the EC2 instances’ security groups to allow outbound traffic to 0.0.0.0/0.
7. G. Create public subnets in each Availability Zon
8. H. Associate the public subnets with the AL
9. I. Update the route tables for the public subnets with a route to the private subnets.

Correct Answer: D
https://aws.amazon.com/premiumsupport/knowledge-center/public-load-balancer-private-ec2/

- (Exam Topic 3)
A company is using a centralized AWS account to store log data in various Amazon S3 buckets. A solutions architect needs to ensure that the data is encrypted at rest before the data is uploaded to the S3 buckets. The data also must be encrypted in transit.
Which solution meets these requirements?

1. A. Use client-side encryption to encrypt the data that is being uploaded to the S3 buckets.
2. B. Use server-side encryption to encrypt the data that is being uploaded to the S3 buckets.
3. C. Create bucket policies that require the use of server-side encryption with S3 managed encryption keys (SSE-S3) for S3 uploads.
4. D. Enable the security option to encrypt the S3 buckets through the use of a default AWS Key Management Service (AWS KMS) key.

Correct Answer: A

- (Exam Topic 1)
A company runs a highly available image-processing application on Amazon EC2 instances in a single VPC The EC2 instances run inside several subnets across multiple Availability Zones. The EC2 instances do not communicate with each other However, the EC2 instances download images from Amazon S3 and upload images to Amazon S3 through a single NAT gateway The company is concerned about data transfer charges
What is the MOST cost-effective way for the company to avoid Regional data transfer charges?

1. A. Launch the NAT gateway in each Availability Zone
2. B. Replace the NAT gateway with a NAT instance
3. C. Deploy a gateway VPC endpoint for Amazon S3
4. D. Provision an EC2 Dedicated Host to run the EC2 instances

Correct Answer: A

- (Exam Topic 3)
A company hosts its web application on AWS using seven Amazon EC2 instances. The company requires that the IP addresses of all healthy EC2 instances be returned in response to DNS queries.
Which policy should be used to meet this requirement?

1. A. Simple routing policy
2. B. Latency routing policy
3. C. Multivalue routing policy
4. D. Geolocation routing policy

Correct Answer: C
Use a multivalue answer routing policy to help distribute DNS responses across multiple resources. For example, use multivalue answer routing when you want to associate your routing records with a Route 53 health check. For example, use multivalue answer routing when you need to return multiple values for a DNS query and route traffic to multiple IP addresses.
https://aws.amazon.com/premiumsupport/knowledge-center/multivalue-versus-simple-policies/

- (Exam Topic 3)
A company uses Amazon EC2 instances and AWS Lambda functions to run its application. The company has VPCs with public subnets and private subnets in its AWS account. The EC2 instances run in a private subnet in one of the VPCs. The Lambda functions need direct network access to the EC2 instances for the application to work.
The application will run for at least 1 year. The company expects the number of Lambda functions that the application uses to increase during that time. The company wants to maximize its savings on all application resources and to keep network latency between the services low.
Which solution will meet these requirements?

1. A. Purchase on an EC2 instance Savings Pla
2. B. Optimize the Lambda functions duration and memory usage and the number of invocation
3. C. Connect the Lambda functions to the private subnet that contains the EC2 instances.
4. D. Purchase on an EC2 instance Savings Pla
5. E. Optimize the Lambda functions duration and memory usage and the number of invocation, and the amount of data that is transfere
6. F. Connect the Lambda functions to a public subnet in the same VPC where the EC2 instances run.
7. G. Purchase a Compute Savings Pla
8. H. Optimize the Lambda functions duration and memory usage, the number of invocations, and the amount of data that is transferred Connect the Lambda function to the Private subnet that contains the EC2 instances.
9. I. Purchase a Compute Savings Pla
10. J. Optimize the Lambda functions‘ duration and memory usage, the number of invocations, and the amount of data that is transferred Keep the Lambda functions in the Lambda service VPC.

Correct Answer: C