Chapter ANS-C01 specialty tier
Advanced Networking - Specialty
Editor's note — A study companion for the Advanced Networking - Specialty exam — every domain rebuilt from scratch, with worked practice questions and an exam-grade timed simulation.
65 questions 170 minutes threshold 700/1000 4 domains official guide
Table of Contents
I. Network Design 30% weight
VPC Architecture, CIDR Design, and Subnetting Route 53 DNS — Public, Private, and Hybrid Architectures Elastic Load Balancing Design — ALB, NLB, GWLB Network Monitoring and Logging Design Direct Connect — VIF Types, LAG, MACsec, and BGP Design VPN — Site-to-Site, Client VPN, and ECMP Edge Architecture — CloudFront and Global Accelerator II. Network Implementation 26% weight
VPC Routing — Longest Prefix Match, Propagation, and Blackhole Routes BGP Configuration — AS-Path Prepending, MED, Communities, and BFD Transit Gateway — Routing Tables, Attachments, and Connect PrivateLink, VPC Endpoints, and Endpoint Policies Route 53 Resolver — Hybrid DNS and Conditional Forwarding IaC for Network Infrastructure — CloudFormation, CDK, and Terraform Patterns III. Network Management And Operation 20% weight
VPC Flow Logs, Reachability Analyzer, and Traffic Mirroring Network Performance — ENA, EFA, Placement Groups, and Jumbo Frames Network Monitoring, Troubleshooting, and Cost Optimization Hybrid Connectivity Maintenance — BGP Limits, Route Management, and PrivateLink Access IV. Network Security Compliance And Governance 24% weight
AWS Network Firewall — Suricata Rules, TLS Inspection, and Centralized Deployment Security Groups and NACLs — Stateful vs Stateless, Advanced Scenarios WAF, Shield, and DDoS Protection Architecture Network Encryption — TLS, ACM, IPsec, and MACsec Compliance, Auditing, and Network Governance