- (Exam Topic 1)
A company runs a website from Sydney, Australia. Users in the United States (US) and Europe are reporting that images and videos are taking a long time to load. However, local testing in Australia indicates no performance issues. The website has a large amount of static content in the form of images and videos that are stored m Amazon S3.
Which solution will result In the MOST Improvement In the user experience for users In the US and Europe?

1. A. Configure AWS PrivateLink for Amazon S3.
2. B. Configure S3 Transfer Acceleration.
3. C. Create an Amazon CloudFront distributio
4. D. Distribute the static content to the CloudFront edge locations
5. E. Create an Amazon API Gateway API in each AWS Regio
6. F. Cache the content locally.

Correct Answer: D

- (Exam Topic 1)
A company has launched a social media website that gives users the ability to upload images directly to a centralized Amazon S3 bucket. The website is popular in areas that are geographically distant from the AWS Region where the S3 bucket is located. Users are reporting that uploads are slow. A SysOps administrator must improve the upload speed.
What should the SysOps administrator do to meet these requirements?

1. A. Create S3 access points in Regions that are closer to the users.
2. B. Create an accelerator in AWS Global Accelerator for the S3 bucket.
3. C. Enable S3 Transfer Acceleration on the S3 bucket.
4. D. Enable cross-origin resource sharing (CORS) on the S3 bucket.

Correct Answer: C
You might want to use Transfer Acceleration on a bucket for various reasons: ->Your customers upload to a centralized bucket from all over the world. ->You transfer gigabytes to terabytes of data on a regular basis across continents. ->You can't use all of your available bandwidth over the internet when uploading to Amazon S3." https://docs.aws.amazon.com/AmazonS3/latest/userguide/transfer-acceleration.html

- (Exam Topic 1)
A company is storing backups in an Amazon S3 bucket. The backups must not be deleted for at least 3 months after the backups are created.
What should a SysOps administrator do to meet this requirement?

1. A. Configure an IAM policy that denies the s3:DeleteObject action for all user
2. B. Three months after an object is written, remove the policy.
3. C. Enable S3 Object Lock on a new S3 bucket in compliance mod
4. D. Place all backups in the new S3 bucket with a retention period of 3 months.
5. E. Enable S3 Versioning on the existing S3 bucke
6. F. Configure S3 Lifecycle rules to protect the backups.
7. G. Enable S3 Object Lock on a new S3 bucket in governance mod
8. H. Place all backups in the new S3 bucket with a retention period of 3 months.

Correct Answer: D
To meet the requirements of the workload, a SysOps administrator should enable S3 Object Lock on a new S3 bucket in governance mode and place all backups in the new S3 bucket with a retention period of 3 months.
This will ensure that the backups are not deleted for at least 3 months after they are created. The other solutions (configuring an IAM policy that denies the s3:DeleteObject action for all users, enabling S3 Object Lock on a new S3 bucket in compliance mode, or enabling S3 Versioning on the existing S3 bucket and configuring S3 Lifecycle rules to protect the backups) will not meet the requirements, as they do not provide a way to ensure that the backups are not deleted for at least 3 months after they are created.

- (Exam Topic 1)
A company has two VPC networks named VPC A and VPC B. The VPC A CIDR block is 10.0.0.0/16 and the VPC B CIDR block is 172.31.0.0/16. The company wants to establish a VPC peering connection named
pcx-12345 between both VPCs.
Which rules should appear in the route table of VPC A after configuration? (Select TWO.)

1. A. Destination: 10.0.0.0/16, Target: Local
2. B. Destination: 172.31.0.0/16, Target: Local
3. C. Destination: 10.0.0.0/16, Target: pcx-12345
4. D. Destination: 172.31.0.0/16, Target: pcx-12345
5. E. Destination: 10.0.0.0/16. Target: 172.31.0.0/16

Correct Answer: AD
https://docs.aws.amazon.com/vpc/latest/peering/vpc-peering-routing.html

- (Exam Topic 1)
A SysOps administrator has used AWS Cloud Formation to deploy a sereness application into a production VPC. The application consists of an AWS Lambda function, an Amazon DynamoOB table, and an Amazon API Gateway API. The SysOps administrator must delete the AWS Cloud Formation stack without deleting the DynamoOB table.
Which action should the SysOps administrator take before deleting the AWS Cloud Formation stack?

1. A. Add a Retain deletion policy to the DynamoOB resource in the AWS CloudFormation stack.
2. B. Add a Snapshot deletion policy to the DynamoOB resource In the AWS CloudFormation stack.
3. C. Enable termination protection on the AWS Cloud Formation stack.
4. D. Update the application's IAM policy with a Deny statement for the dynamodb:DeleteTabie action.

Correct Answer: A