AWS Certified Advanced Networking - Specialty Questions and Answers
200 questions organized by topic with detailed explanations
AWS
ANS-C01
200 questions
4 topics
Updated May 2026Network Design
60 questions18 easy29 medium13 hard~30% of exam
A business wants DNS to send traffic to a standby endpoint only when the primary endpoint is unhealthy. Which Route 53 r...An enterprise wants its on-premises DNS resolvers to resolve records that are hosted in a Route 53 private hosted zone f...Amazon EC2 instances in one or more VPCs must resolve corp.example.com by using DNS resolvers on the company's on-premis...
Network Implementation
52 questions14 easy25 medium13 hard~26% of exam
A company uses AWS Transit Gateway Connect for SD-WAN integration and wants routing plane redundancy so loss of one BGP ...A VPC peering connection has been accepted, but instances still cannot communicate over private IP addresses. Which acti...In a VPC subnet sharing model, what can participant accounts do in shared subnets?
Network Management and Operation
40 questions14 easy20 medium6 hard~20% of exam
An operations team temporarily disables an AWS Global Accelerator accelerator during maintenance and worries that the en...A team uses jumbo frames successfully between VPC attachments on a transit gateway, but when traffic fails over to a VPN...A performance engineer is concerned that enabling VPC Flow Logs on busy ENIs will reduce throughput and add latency. Wha...
Network Security, Compliance, and Governance
48 questions14 easy22 medium12 hard~24% of exam
A security analyst wants to diagnose whether an overly restrictive security group is blocking traffic to an instance. Wh...An organization wants one service to subscribe all member accounts in AWS Organizations to AWS Shield Advanced, automati...Which inspection engine does AWS Network Firewall use for stateful inspection?
All Questions
| # | Question | Topic | Difficulty |
|---|---|---|---|
| 1 | A business wants DNS to send traffic to a standby endpoint only when the primary endpoint is unhealt... | Network Design | easy |
| 2 | An operations team temporarily disables an AWS Global Accelerator accelerator during maintenance and... | Network Management and Operation | medium |
| 3 | A security analyst wants to diagnose whether an overly restrictive security group is blocking traffi... | Network Security, Compliance, and Governance | medium |
| 4 | A team uses jumbo frames successfully between VPC attachments on a transit gateway, but when traffic... | Network Management and Operation | hard |
| 5 | An organization wants one service to subscribe all member accounts in AWS Organizations to AWS Shiel... | Network Security, Compliance, and Governance | hard |
Sign in to see all 200 questions
Create a free account to browse all questions — completely free during our launch phase.
Ready to test your knowledge?
Take a full AWS Certified Advanced Networking - Specialty practice test with timed exam simulation.
Start Practice Test