ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam ANS-C00 All Questions

View all questions & answers for the ANS-C00 exam
Go to Exam

Exam ANS-C00 topic 1 question 108 discussion

Exam question from Amazon's ANS-C00
Question #: 108
Topic #: 1
[All ANS-C00 Questions]

A company's network engineering team is solely responsible for deploying VPC infrastructure using AWS CloudFormation. The company wants to give its developers the ability to launch applications using CloudFormation templates so that subnets can be created using available CIDR ranges.
What should be done to meet these requirements?

  • A. Create a CloudFormation template with Amazon EC2 resources that rely on cfn-init and cfn-signals to inform the stack of available CIDR ranges.
  • B. Create a CloudFormation template with a custom resource that analyzes traffic activity in VPC Flow Logs and reports on available CIDR ranges.
  • C. Create a CloudFormation template that references the Fn::Cidr intrinsic function within a subnet resource to select an available CIDR range.
  • D. Create a CloudFormation template with a custom resource that uses AWS Lambda and Amazon DynamoDB to manage available CIDR ranges.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by LexyA at May 8, 2020, 9:30 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
aaccee
Highly Voted 3 years, 8 months ago
D. As LexyA has already pointed out, Fn::Cidr only splits a CIDR into subnets, it does not check if the subnets are already in use or not. In order to be able to repeat the process, some kind of solution for keeping track of which subnets are in use and which are available is required. Thus, D is the best answer. The links mentioned in the comments also states that Fn::Cidr only splits a CIDR into subnets, without checking if the subnets are in use or not, which in this case is not good enough.
upvoted 18 times
...
skjs
Highly Voted 3 years, 8 months ago
C. https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/intrinsic-function-reference-cidr.html
upvoted 14 times
...
TonyGe
Most Recent 2 years, 6 months ago
D. AWS Lambda and Amazon DynamoDB are required to manage available cidrs in a automatic way.
upvoted 1 times
...
Marty2021
2 years, 11 months ago
Selected Answer: D
D - as only anwser that maintains a list of subnets to be referenced to ensure they are not in use.
upvoted 1 times
...
mabalon
3 years, 6 months ago
Selected Answer: C
My take is C. The fn::Cidr function does not select an available record by itself, but it´is necessary to create the networks. In my opinion you can play with fn::Cidr function and put some variables in the Ipblock field
upvoted 2 times
...
walkwolf3
3 years, 7 months ago
The keyword is "available". There are actually two requirments in the question. First, find out CIDR ranges to decide which ranges are available. Second, use the available ranges in the CloudFormation. If the question only asks you to use the range, it won't mention available. C just uses the CIDR range. D is to find out the CIDR range first, then uses available CIDR range. My take is C.
upvoted 1 times
walkwolf3
3 years, 7 months ago
Sorry for the typo, my take should be D.
upvoted 1 times
...
...
aws4myself
3 years, 7 months ago
C - can be the answer but question is to find out the available CIDRs, for which custom logic is needed and returned. Hence, Ans is D
upvoted 1 times
...
StelSen
3 years, 7 months ago
It's definitely D. Because, we wanted to ensure Developers can use CF to deploy the resource in Subnets. Not selecting CIDR range by themselves. Option C. will let Developer to choose the CIDR range. No guarantee whether its available or not Option D. is correct. This will help Developers to automatically choose the Subnet CIDR ranges and when you delete lambda can release CIDR ranges back to DynamoDB table.
upvoted 3 times
...
Huy
3 years, 7 months ago
Agree with D. Not sure you guys understand the question.
upvoted 1 times
...
ChauPhan
3 years, 7 months ago
D is the answer
upvoted 1 times
ChauPhan
3 years, 7 months ago
Sorry typo, C
upvoted 1 times
...
...
CloudArchitect
3 years, 7 months ago
My answer is C with D being a plausible solution.. https://aws.amazon.com/blogs/apn/amazon-vpc-for-on-premises-network-engineers-part-two/
upvoted 1 times
...
Kentik
3 years, 8 months ago
Yeah is C
upvoted 2 times
...
liono
3 years, 8 months ago
The developers have to create the subnets using available CIDR ranges thus the answer is C. Fn:Cidr function can be used in the cloudformation template to create subnets.
upvoted 3 times
...
CloudyMcClouderson
3 years, 8 months ago
C - https://medium.com/@yaofei/aws-cidr-using-cloudformation-and-terraform-4f10bd86dbca
upvoted 2 times
...
AWS786
3 years, 8 months ago
Correct answer is C
upvoted 2 times
...
SilverT
3 years, 8 months ago
My take is C
upvoted 2 times
...
yijetef290
3 years, 8 months ago
D D D D D D
upvoted 2 times
...
Load full discussion...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel