Skip to content
Week 2: Quiz 1 of AWS Fundamentals Addressing Security Risk – Coursera.
Question 1: Which statement is true?
- You can only attach 1 elastic network interface (ENI) to each EC2 instance launched in VPC
- By default, each instance that you launch into a nondefault subnet has a public IPv4 address
- To use AWS Private Link, the VPC is required to have a NAT device
- Traffic within an Availability Zone, or between Availability Zones in all Regions, are routed over the AWS private global network
Question 2: What is a Security Group?
- Act as a firewall for associated Amazon EC2 instances, controlling both inbound and outbound traffic at the instance level
- Act as a firewall for associated subnets, controlling both inbound and outbound traffic at the subnet level
- Control who in your organization has permission to create and manage VPC flow logs
- Capture information about the IP traffic going to and from network interfaces in your VPC
Question 3: How many types of VPC Endpoints are available?
- Many. Each AWS Service will be supported by 1 type of VPC Endpoints
- Two: Amazon S3 and DynamoDB
- Two: Gateway Endpoint and Interface Endpoint
- One: VPC
Question 4: Which of these AWS resources cannot be monitored using VPC Flow logs?
- VPC
- A subnet in a VPC
- A network interface attached to EC2
- An Internet Gateway attached to VPC
Question 5: You can route traffic to a NAT Gateway through:
- Site-to-Site VPN connection
- AWS Direct Connect
- VPC Peering
- None of the
