- (Exam Topic 1)
A SysOps administrator has created a VPC that contains a public subnet and a private subnet. Amazon EC2 instances that were launched in the private subnet cannot access the internet. The default network ACL is active on all subnets in the VPC, and all security groups allow all outbound traffic:
Which solution will provide the EC2 instances in the private subnet with access to the internet?

1. A. Create a NAT gateway in the public subne
2. B. Create a route from the private subnet to the NAT gateway.
3. C. Create a NAT gateway in the public subne
4. D. Create a route from the public subnet to the NAT gateway.
5. E. Create a NAT gateway in the private subne
6. F. Create a route from the public subnet to the NAT gateway.
7. G. Create a NAT gateway in the private subne
8. H. Create a route from the private subnet to the NAT gateway.

Correct Answer: A
NAT Gateway resides in public subnet, and traffic should be routed from private subnet to NAT Gateway: https://docs.aws.amazon.com/vpc/latest/userguide/vpc-nat-gateway.html

- (Exam Topic 1)
A SysOps administrator created an Amazon VPC with an IPv6 CIDR block, which requires access to the internet. However, access from the internet towards the VPC is prohibited. After adding and configuring the required components to the VPC. the administrator is unable to connect to any of the domains that reside on the internet.
What additional route destination rule should the administrator add to the route tables?

1. A. Route ;:/0 traffic to a NAT gateway
2. B. Route ::/0 traffic to an internet gateway
3. C. Route 0.0.0.0/0 traffic to an egress-only internet gateway
4. D. Route ::/0 traffic to an egress-only internet gateway

Correct Answer: D
https://docs.aws.amazon.com/vpc/latest/userguide/egress-only-internet-gateway.html

- (Exam Topic 1)
A company has an initiative to reduce costs associated with Amazon EC2 and AWS Lambda. Which action should a SysOps administrator take to meet these requirements?

1. A. Analyze the AWS Cost and Usage Report by using Amazon Athena to identity cost savings.
2. B. Create an AWS Budgets alert to alarm when account spend reaches 80% of the budget.
3. C. Purchase Reserved Instances through the Amazon EC2 console.
4. D. Use AWS Compute Optimizer and take action on the provided recommendations.

Correct Answer: D

- (Exam Topic 1)
A company’s reporting job that used to run in 15 minutes is now taking an hour to run. An application generates the reports. The application runs on Amazon EC2 instances and extracts data from an Amazon RDS for MySQL database.
A SysOps administrator checks the Amazon CloudWatch dashboard for the RDS instance and notices that the Read IOPS metrics are high, even when the reports are not running. The SysOps administrator needs to improve the performance and the availability of the RDS instance.
Which solution will meet these requirements?

1. A. Configure an Amazon ElastiCache cluster in front of the RDS instanc
2. B. Update the reporting job to query the ElastiCache cluster.
3. C. Deploy an RDS read replic
4. D. Update the reporting job to query the reader endpoint.
5. E. Create an Amazon CloudFront distributio
6. F. Set the RDS instance as the origi
7. G. Update the reporting job to query the CloudFront distribution.
8. H. Increase the size of the RDS instance.

Correct Answer: B
Using an RDS read replica will improve the performance and availability of the RDS instance by offloading read queries to the replica. This will also ensure that the reporting job completes in a timely manner and does not affect the performance of other queries that might be running on the RDS instance. Additionally, updating the reporting job to query the reader endpoint will ensure that all read queries are directed to the read replica.
Reference: [1] https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_ReadRepl.html

- (Exam Topic 1)
A company uses AWS Organizations to manage multiple AWS accounts with consolidated billing enabled. Organization member account owners want the benefits of Reserved Instances (RIs) but do not want to share RIs with other accounts.
Which solution will meet these requirements?

1. A. Purchase RIs in individual member account
2. B. Disable Rl discount sharing in the management account.
3. C. Purchase RIs in individual member account
4. D. Disable Rl discount sharing in the member accounts.
5. E. Purchase RIs in the management accoun
6. F. Disable Rl discount sharing in the management account.
7. G. Purchase RIs in the management accoun
8. H. Disable Rl discount sharing in the member accounts.

Correct Answer: A
https://aws.amazon.com/premiumsupport/knowledge-center/ec2-ri-consolidated-billing/
RI discounts apply to accounts in an organization's consolidated billing family depending upon whether RI sharing is turned on or off for the accounts. By default, RI sharing for all accounts in an organization is turned on. The management account of an organization can change this setting by turning off RI sharing for an account. The capacity reservation for an RI applies only to the account the RI was purchased on, no matter whether RI sharing is turned on or off.