Multiple Choice
An organization is using a VPC endpoint for Amazon S3. When the security group rules for a set of instances were initially configured, access was restricted to allow traffic only to the IP addresses of the Amazon S3 API endpoints in the region from the published JSON file. The application was working properly, but now is logging a growing number of timeouts when connecting with Amazon S3. No internet gateway is configured for the VPC. Which solution will fix the connectivity failures with the LEAST amount of effort?
A) Create a Lambda function to update the security group based on AmazonIPSpaceChanged notifications.
B) Update the VPC routing to direct Amazon S3 prefix-list traffic to the VPC endpoint using the route table APIs.
C) Update the application server's outbound security group to use the prefix-list for Amazon S3 in the same region.
D) Create an additional VPC endpoint for Amazon S3 in the same route table to scale the concurrent connections to Amazon S3.
Correct Answer:
Verified
Correct Answer:
Verified
Q297: You work for a company that has
Q298: Considering the rules of IPv4 subnetting, how
Q299: An organization has created a web application
Q300: You have 99 routes in your dynamic
Q301: An organization is using a VPC endpoint
Q303: You wish to have a sub-1G connection
Q304: Your network utilizes jumbo frames on its
Q305: Your security team implements a host-based firewall
Q306: A Network Engineer is designing a new
Q307: A network engineer needs to create a