Which of the following statements are CORRECT regarding the AWS VPC service? (Select two)Question 25AnswerA.A Security Group can have both allow and deny rulesB.A Security Group can have allow rules onlyC.A Network Address Translation instance (NAT instance) is managed by AWSD.A Network Address Translation gateway (NAT gateway) is managed by AWS

6) What security constructs are associated with VPC subnets and EC2 instances?*10 pointsSecurity Group at the subnet level and NACL at EC2 levelBoth NACL and Security Group at the subnet levelBoth NACL and Security Group at EC2 levelNACL at the subnet level and Security Group at EC2 level

Which of the following AWS services support VPC Endpoint Gateway for a private connection from a VPC? (Select two)

Which AWS services or features have the capability to manage VPC traffic? (Choose TWO.)Amazon ConnectSecurity groupsNetwork ACLsAWS Direct ConnectAmazon GuardDuty

Which of the following entities are part of an Amazon Virtual Private Cloud (Amazon VPC) in the AWS Cloud? (Select two)Question 3AnswerA.API GatewayB.SubnetC.ObjectD.Internet GatewayE.AWS Storage Gateway

Which of the following statements is CORRECT regarding the scope of an Amazon Virtual Private Cloud (VPC)?Question 1Answera.Amazon VPC spans all subnets in all AWS regionsb.A VPC spans all Availability Zones (AZs) within an AWS regionc.A VPC spans all Availability Zones (AZs) in all AWS regionsd.A VPC spans all AWS regions within an Availability Zone (AZ)