- (Topic 1)
Which AWS service or feature captures information about the network traffic to and from an Amazon EC2 instance?

1. A. VPC Reachability Analyzer
2. B. Amazon Athena
3. C. VPC Flow Logs
4. D. AWS X-Ray

Correct Answer: C
The correct answer is C because VPC Flow Logs is an AWS service or feature that captures information about the network traffic to and from an Amazon EC2 instance. VPC Flow Logs is a feature that enables customers to capture information about the IP traffic going to and from network interfaces in their VPC. VPC Flow Logs can help customers to monitor and troubleshoot connectivity issues, such as traffic not reaching an instance or traffic being rejected by a security group. The other options are incorrect because they are not AWS services or features that capture information about the network traffic to and from an Amazon EC2 instance. VPC Reachability Analyzer is an AWS service or feature that enables customers to perform connectivity testing between resources in their VPC and identify configuration issues that prevent connectivity. Amazon Athena is an AWS service that enables customers to query data stored in Amazon S3 using standard SQL. AWS X-Ray is an AWS service that enables customers to analyze and debug distributed applications, such as those built using a microservices architecture.
Reference: VPC Flow Logs

- (Topic 3)
A company wants a time-series database service that makes it easier to store and analyze trillions of events each day.
Which AWS service will meet this requirement?

1. A. Amazon Neptune
2. B. Amazon Timestream
3. C. Amazon Forecast
4. D. Amazon DocumentDB (with MongoDB compatibility)

Correct Answer: B
Amazon Timestream is a fast, scalable, and serverless time-series database service for IoT and other operational applications that makes it easy to store and analyze trillions of events per day up to 1,000 times faster and at as little as 1/10th the cost of relational databases1. Amazon Timestream saves you time and cost in managing the lifecycle of time series data, and its purpose-built query engine lets you access and analyze recent and historical data together with a single query1. Amazon Timestream has built-in time series analytics functions, helping you identify trends and patterns in near real time1. The other options are not suitable for storing and analyzing trillions of events per day. Amazon Neptune is a graph database service that supports highly connected data sets. Amazon Forecast is a machine learning service that generates accurate forecasts based on historical data. Amazon DocumentDB (with MongoDB compatibility) is a document database service that supports MongoDB workloads.
References:
✑ 1: Time Series Database – Amazon Timestream – Amazon Web Services

- (Topic 1)
A company wants to centrally manage security policies and billing services within a multi- account AWS environment. Which AWS service should the company use to meet these requirements?

1. A. AWS Identity and Access Management (IAM)
2. B. AWS Organizations
3. C. AWS Resource Access Manager (AWS RAM)
4. D. AWS Config

Correct Answer: B
AWS Organizations is a service that helps you centrally manage and govern your environment as you grow and scale your AWS resources. You can use AWS Organizations to create groups of accounts and apply policies to them. You can also use AWS Organizations to consolidate billing for multiple accounts. Therefore, the correct answer is B. You can learn more about AWS Organizations and its features from this page.

- (Topic 2)
Which task is the responsibility of AWS when using AWS services?

1. A. Management of IAM user permissions
2. B. Creation of security group rules for outbound access
3. C. Maintenance of physical and environmental controls
4. D. Application of Amazon EC2 operating system patches

Correct Answer: C
AWS is responsible for maintaining the physical and environmental controls of the AWS Cloud, such as power, cooling, fire suppression, and physical security1. The customer is responsible for managing the IAM user permissions, creating security group rules for outbound access, applying Amazon EC2 operating system patches, and other aspects of security in the cloud1.

- (Topic 3)
A company wants its Amazon EC2 instances to share the same geographic area but use multiple independent underlying power sources.
Which solution achieves this goal?

1. A. Use EC2 instances in a single Availability Zone.
2. B. Use EC2 instances in multiple AWS Regions.
3. C. Use EC2 instances in multiple Availability Zones in the same AWS Region.
4. D. Use EC2 instances in the same edge location and the same AWS Region.

Correct Answer: C
The solution that achieves the goal of having Amazon EC2 instances share the same geographic area but use multiple independent underlying power sources is to use EC2 instances in multiple Availability Zones in the same AWS Region. An Availability Zone is a physically isolated location within an AWS Region that has its own power, cooling, and network connectivity. An AWS Region is a geographical area that consists of two or more Availability Zones. By using multiple Availability Zones, users can increase the fault tolerance and resilience of their applications, as well as reduce latency for end users3.
Using EC2 instances in a single Availability Zone, multiple AWS Regions, or the same edge location and the same AWS Region would not meet the requirement of having multiple independent power sources.