1. A company wants to host a web application on AWS that will communicate to a database within a VPC. The application should be highly available.What should a solutions architect recommend?

A) Deploy two web servers with an Auto Scaling group, configure a domain that points to the two web servers, and then deploy a database architecture in multiple Availability Zones.
B) Deploy a load balancer in multiple Availability Zones with an Auto Scaling group for the web servers, and then deploy Amazon RDS in multiple Availability Zones.
C) Deploy a load balancer in the public subnet with an Auto Scaling group for the web servers, and then deploy the database on an Amazon EC2 instance in the private subnet.
D) Create two Amazon EC2 instances to host the web servers behind a load balancer, and then deploy the database on a large instance.



2. A company serves contents to its subscribers across the world using an application running on AWS. The application has several Amazon EC2 instances in a private subnet behind an Application Load Balancer (ALB). Due to a recent change in copyright restrictions, the Chief Information Officer (CIO) wants to block access for certain countries.Which action will meet these requirements?

A) Use ALB listener rules to return access denied responses to incoming traffic from blocked countries.
B) Use Amazon CloudFront to serve the application and deny access to blocked countries.
C) Modify the security group for EC2 instances to deny incoming traffic from blocked countries.
D) Modify the ALB security group to deny incoming traffic form blocked countries.



3. A solutions architect needs to ensure that API calls to Amazon DynamoDB from Amazon EC instances in a VPC do not traverse the internet. What should the solutions architect do to accomplish this? Select two(Select 2answers)

A) Create a new DynamoDB table that uses the endpoint
B) Create a route table entry for the endpoint
C) Create an ENI for the endpoint in each of the subnets of the VPC
D) Create a gateway endpoint for DynamoDB
E) Create a security group entry in the default security group to provide access


4. A company is concerned that two NAT instances in use will no longer be able to support the traffic needed for the company's application. A solution architect wants to implement a solution that is automatically scalable.What should the solutions architect recommend?

A) Replace the two NAT instances with Spot Instances in different Availability Zones and deploy a Network Load Balancer
B) Use Auto Scaling groups with Network Load Balancers for the NAT instances in different Availability Zones
C) Remove the two NAT instances and replace them with two NAT gateways in the same Availability Zone.
D) Remove the two NAT instances and replace them with two NAT gateways in different Availability Zones.



5. A solutions architect is designing the storage architecture for a new web application used for storing and viewing engineering drawings. All application components will be deployed on the AWS infra. The application design must support caching to minimize the amount of time that users wait for the engineering drawings to load. The application must be able to store petabytes of data.Which combination of storage and caching should the solutions architect use?

A) Amazon S3 with Amazon CloudFront
B) Amazon S3 Glacier with Amazon ElastiCache
C) AWS Storage Gateway with Amazon ElastiCache
D) Amazon Elastic BLock Store (Amazon EBS) volumes with Amazon CloudFront