1. Question 1

Which information is needed to create a VPC?

• ❌ The Availability Zone

• ❌ The subnet

• ✅ The AWS Region that the VPC will reside in

• ❌ The group of subnets

Explanation:
A VPC is created at Region level, not AZ or subnet level.

---

2. Question 2

A route table can be attached to:

• ❌ AWS Accounts

• ❌ Availability Zone

• ✅ Subnets

• ❌ Regions

Explanation:
Route tables are associated only with subnets.

---

3. Question 3

Resources in a public subnet need internet access:

• ❌ Create a route to a private subnet

• ❌ Attach an internet gateway to their VPC

• ❌ Create a route to the internet gateway

• ❌ A and B

• ✅ B and C

Explanation:
A public subnet requires:

1. Internet Gateway attached to VPC

2. Route to IGW in route table

---

4. Question 4

What is Compute as a Service (CaaS)?

• ❌ Requires manual VM provisioning

• ✅ Provides virtual machines on demand via cloud

• ❌ On-premises discount model

• ❌ Delivers cloud apps (SaaS)

Explanation:
CaaS provides VM-based compute on demand.

---

5. Question 5

Default security group behavior

• ❌ Allows all inbound, blocks outbound

• ✅ Blocks all inbound, allows all outbound

• ❌ Allows all traffic

• ❌ Blocks all traffic

Explanation:
SG default = Inbound deny, Outbound allow.

---

6. Question 6

EC2 instance type indicates:

• ✅ Instance family + instance size

• ❌ Placement + size

• ❌ Tenancy + billing

• ❌ AMI + networking

Explanation:
Example: t3.micro → family t3, size micro.

---

7. Question 7

Difference between Fargate vs EC2 for ECS

• ✅ With Fargate, AWS manages infrastructure for containers

• ❌ With ECS on EC2, AWS manages EC2

• ❌ With Fargate, users manage capacity

• ❌ ECS on EC2 only needs source code

Explanation:
Fargate = serverless containers. EC2 = you manage servers.

---

8. Question 8

Which is true for serverless?

• ❌ Must manage servers

• ❌ Must manually scale

• ✅ Do not pay for idle resources

• ❌ Must manage availability

Explanation:
Serverless = auto scaling + pay-per-use.

---

9. Question 9

AWS Lambda is always best.

• ❌ True

• ✅ False

Explanation:
Lambda is great but not ideal for long-running, large workloads.

---

10. Question 10

EC2 provides:

• ❌ Container services

• ❌ Serverless

• ✅ Virtual Machines (VMs)

• ❌ Analytics

Explanation:
EC2 = VM-as-a-service.

---

11. Question 11

When do charges start?

• ❌ Pending

• ✅ Running

• ❌ Stopped

• ❌ Terminated

Explanation:
Billing starts when instance enters running state.

---

12. Question 12

Which part shows family + generation?

• ❌ 4x

• ❌ Large

• ❌ 4xlarge

• ✅ c5

Explanation:
c = compute family, 5 = generation 5.

---

13. Question 13

Which runtime hosts containers on EC2?

• ✅ Docker

• ❌ Container

• ❌ S3

• ❌ EC2

Explanation:
Docker is the container runtime.

---

14. Question 14

Event invoking Lambda?

• ❌ API call from IAM role

• ✅ Upload file to S3 bucket

• ❌ HTTP request to EC2 website

• ❌ WordPress without APIs

Explanation:
S3 events can trigger Lambda automatically.

---

15. Question 15

Serverless = no server management

• ✅ True

• ❌ False

Explanation:
Users don’t manage servers in serverless.

---

16. Question 16

Do all AWS services need VPC?

• ❌ True

• ✅ False

Examples not requiring VPC: S3, SNS, DynamoDB, Lambda (optional).

---

17. Question 17

Configure network size using:

• ✅ CIDR notation

• ❌ IPv6

• ❌ IPv4

• ❌ IP addresses

Explanation:
VPC and subnet size = CIDR blocks.

---

18. Question 18

Difference between NACL and SG

• ❌ NACL allow inbound, block outbound; SG block all

• ❌ NACL block all; SG allow all

• ❌ NACL block inbound, allow outbound; SG block all

• ✅ NACL allow all inbound & outbound by default; SG block inbound & allow outbound

Explanation:
Default behavior:

• NACL: Allow all in/out

• SG: Deny inbound, allow outbound

---

🧾 Summary Table

---